Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208471 6.9 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - Linux 上で稼働する複数の Mozilla 製品における application-launch スクリプトに関する権限昇格の脆弱性 CWE-DesignError
CVE-2010-3182 2011-01-27 14:24 2010-10-19 Show GitHub Exploit DB Packet Storm
208472 7.6 危険 GNOME Project
レッドハット		 - Evince の TFM フォントパーサにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2643 2011-01-26 15:32 2011-01-5 Show GitHub Exploit DB Packet Storm
208473 7.6 危険 GNOME Project
レッドハット		 - Evince の AFM フォントパーサにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2642 2011-01-26 15:30 2011-01-5 Show GitHub Exploit DB Packet Storm
208474 7.6 危険 GNOME Project
レッドハット		 - Evince の VF フォントパーサにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2641 2011-01-26 15:21 2011-01-5 Show GitHub Exploit DB Packet Storm
208475 7.6 危険 GNOME Project
レッドハット		 - Evince の PK フォントパーサにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2640 2011-01-26 15:10 2011-01-5 Show GitHub Exploit DB Packet Storm
208476 5 警告 MODX - MODx Evolution におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3930 2011-01-26 14:02 2011-01-26 Show GitHub Exploit DB Packet Storm
208477 7.5 危険 MODX - MODx Evolution における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3929 2011-01-26 14:01 2011-01-26 Show GitHub Exploit DB Packet Storm
208478 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4042 2011-01-26 13:28 2010-10-19 Show GitHub Exploit DB Packet Storm
208479 6.8 警告 Google - Linux 上で稼働する Google Chrome のサンドボックス実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4041 2011-01-26 13:26 2010-10-19 Show GitHub Exploit DB Packet Storm
208480 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-4040 2011-01-26 13:23 2010-10-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4021 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Convoy Media Category Library allows Reflected XSS.This issue affects Media Category Library: fro… CWE-79
Cross-site Scripting 		CVE-2025-22344 2025-01-13 23:15 2025-01-13 Show GitHub Exploit DB Packet Storm
4022 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Infosoft Consultant Order Audit Log for WooCommerce allows Reflected XSS.This issue affects Order… CWE-79
Cross-site Scripting 		CVE-2025-22337 2025-01-13 23:15 2025-01-13 Show GitHub Exploit DB Packet Storm
4023 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Scripts Food Store – Online Food Delivery & Pickup allows Reflected XSS.This issue affects Foo… CWE-79
Cross-site Scripting 		CVE-2025-22314 2025-01-13 23:15 2025-01-13 Show GitHub Exploit DB Packet Storm
4024 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eniture Technology Distance Based Shipping Calculator allows Reflected XSS.This issue affects Dis… CWE-79
Cross-site Scripting 		CVE-2024-56301 2025-01-13 23:15 2025-01-13 Show GitHub Exploit DB Packet Storm
4025 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saleswonder.biz Team WP2LEADS allows Reflected XSS.This issue affects WP2LEADS: from n/a through … CWE-79
Cross-site Scripting 		CVE-2024-56065 2025-01-13 23:15 2025-01-13 Show GitHub Exploit DB Packet Storm
4026 - - - A vulnerability was found in liujianview gymxmjpa 1.0. It has been rated as critical. Affected by this issue is the function LoosDaoImpl of the file src/main/java/com/liujian/gymxmjpa/controller/Loos… - CVE-2025-0408 2025-01-13 23:15 2025-01-13 Show GitHub Exploit DB Packet Storm
4027 - - - CloudStack users can add and read comments (annotations) on resources they are authorised to access.  Due to an access validation issue that affects Apache CloudStack versions from 4.16.0, users who… CWE-200
Information Exposure 		CVE-2025-22828 2025-01-13 22:16 2025-01-13 Show GitHub Exploit DB Packet Storm
4028 - - - Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to write data outside the Guest's virtualised GPU memory. - CVE-2024-52936 2025-01-13 20:15 2025-01-13 Show GitHub Exploit DB Packet Storm
4029 - - - Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory. - CVE-2024-52935 2025-01-13 20:15 2025-01-13 Show GitHub Exploit DB Packet Storm
4030 - - - Software installed and run as a non-privileged user may conduct improper GPU system calls resulting in platform instability and reboots. - CVE-2024-47897 2025-01-13 20:15 2025-01-13 Show GitHub Exploit DB Packet Storm