Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208771 6.4 警告 アップル - Apple iOS の WebKit におけるユーザインターフェースになりすまされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1757 2010-12-10 14:38 2010-06-22 Show GitHub Exploit DB Packet Storm
208772 4.3 警告 アップル - Apple Safari の WebKit における任意のキー操作を強制される脆弱性 CWE-Other
その他 		CVE-2010-1422 2010-12-10 14:37 2010-06-10 Show GitHub Exploit DB Packet Storm
208773 4.3 警告 アップル - Apple Safari の WebKit におけるクリップボードを変更される脆弱性 CWE-DesignError
CVE-2010-1421 2010-12-10 14:37 2010-06-10 Show GitHub Exploit DB Packet Storm
208774 4.3 警告 アップル - Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1418 2010-12-10 14:35 2010-06-10 Show GitHub Exploit DB Packet Storm
208775 9.3 危険 アップル - Apple Safari の WebKit の Cascading Style Sheets 実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1417 2010-12-10 14:35 2010-06-10 Show GitHub Exploit DB Packet Storm
208776 4.3 警告 アップル - Apple Safari の WebKit における他のサイトから画像を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1416 2010-12-10 14:35 2010-06-10 Show GitHub Exploit DB Packet Storm
208777 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1415 2010-12-10 14:33 2010-06-10 Show GitHub Exploit DB Packet Storm
208778 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1414 2010-12-10 14:32 2010-06-10 Show GitHub Exploit DB Packet Storm
208779 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1410 2010-12-10 14:32 2010-06-10 Show GitHub Exploit DB Packet Storm
208780 4.3 警告 アップル - Apple Safari の WebKit における制限を回避される脆弱性 CWE-189
CWE-264
CVE-2010-1408 2010-12-10 14:31 2010-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4131 6.4 MEDIUM
Network 		- - The GatorMail SmartForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gatormailsmartform' shortcode in all versions up to, and including, 1.1.0 due to insuffici… CWE-79
Cross-site Scripting 		CVE-2024-11386 2025-01-11 17:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4132 - - - HCL MyXalytics is affected by username enumeration vulnerability. This allows a malicious user to perform enumeration of application users, and therefore compile a list of valid usernames. - CVE-2024-42174 2025-01-11 16:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4133 - - - HCL MyXalytics is affected by an improper password policy implementation vulnerability. Weak passwords and lack of account lockout policies allow attackers to guess or brute-force passwords if the u… - CVE-2024-42173 2025-01-11 16:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4134 - - - HCL MyXalytics is affected by broken authentication. It allows attackers to compromise keys, passwords, and session tokens, potentially leading to identity theft and system control. This vulnerabil… - CVE-2024-42172 2025-01-11 16:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4135 - - - HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs with a session token to access the victim's login session. - CVE-2024-42171 2025-01-11 16:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4136 - - - HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs with a session token to access the victim's login session. - CVE-2024-42170 2025-01-11 16:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4137 6.4 MEDIUM
Network 		- - The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via button block link in all versions up to, and including, 3.4.2 … CWE-79
Cross-site Scripting 		CVE-2024-12304 2025-01-11 13:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4138 - - - A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem. - CVE-2025-0106 2025-01-11 12:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4139 - - - An arbitrary file deletion vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to delete arbitrary files accessible to the www-data user on the host filesystem. - CVE-2025-0105 2025-01-11 12:15 2025-01-11 Show GitHub Exploit DB Packet Storm
4140 - - - A reflected cross-site scripting (XSS) vulnerability in Palo Alto Networks Expedition enables attackers to execute malicious JavaScript code in the context of an authenticated Expedition user’s brows… - CVE-2025-0104 2025-01-11 12:15 2025-01-11 Show GitHub Exploit DB Packet Storm