Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 18, 2025, 10:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208831 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey の Web ワーカー機能における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0160 2010-03-9 11:01 2010-02-17 Show GitHub Exploit DB Packet Storm
208832 2.1 注意 サイバートラスト株式会社
GNOME Project
レッドハット		 - NetworkManager の nm-connection-editor における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-4145 2010-03-8 12:28 2009-12-23 Show GitHub Exploit DB Packet Storm
208833 6.8 警告 サイバートラスト株式会社
GNOME Project
レッドハット		 - NetworkManager における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-4144 2010-03-8 12:28 2009-12-23 Show GitHub Exploit DB Packet Storm
208834 5 警告 Squid-cache.org - Squid の htcpHandleTstRequest 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0639 2010-03-8 12:28 2010-02-12 Show GitHub Exploit DB Packet Storm
208835 9.3 危険 OpenOffice.org Project
レッドハット		 - OpenOffice.org の filter/ww8/ww8par2.cxx におけるサービス運用妨害 (DoS) の脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3302 2010-03-5 10:33 2010-02-12 Show GitHub Exploit DB Packet Storm
208836 9.3 危険 OpenOffice.org Project
レッドハット		 - OpenOffice.org の filter/ww8/ww8par2.cxx における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-3301 2010-03-5 10:33 2010-02-12 Show GitHub Exploit DB Packet Storm
208837 9.3 危険 OpenOffice.org Project
レッドハット		 - OpenOffice.org の GIFLZWDecompressor::GIFLZWDecompressor 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2950 2010-03-5 10:32 2010-02-12 Show GitHub Exploit DB Packet Storm
208838 9.3 危険 OpenOffice.org Project
レッドハット		 - OpenOffice.org の XPMReader::ReadXPM 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2949 2010-03-5 10:32 2010-02-12 Show GitHub Exploit DB Packet Storm
208839 4.3 警告 アドビシステムズ - Adobe BlazeDS における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3960 2010-03-5 10:32 2010-02-11 Show GitHub Exploit DB Packet Storm
208840 6.8 警告 Linux
レッドハット		 - KVM の pit_ioport_read 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2010-0309 2010-03-4 13:41 2010-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 18, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
81 5.4 MEDIUM
Network 		themeisle orbit_fox The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Pricing Table widget in all versions up to, and including, 2.10.43 due to insufficient in… Update CWE-79
Cross-site Scripting 		CVE-2025-0311 2025-01-17 06:29 2025-01-10 Show GitHub Exploit DB Packet Storm
82 5.4 MEDIUM
Network 		themeisle orbit_fox The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title_tag’ parameter in all versions up to, and including, 2.10.43 due to insufficient input sani… Update CWE-79
Cross-site Scripting 		CVE-2024-13183 2025-01-17 06:28 2025-01-10 Show GitHub Exploit DB Packet Storm
83 7.2 HIGH
Network 		simple-help simplehelp SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files anywhere on the file system by uploading a crafted zip file (i.e. zip slip). This can be exploited to… New CWE-59
Link Following 		CVE-2024-57728 2025-01-17 06:24 2025-01-16 Show GitHub Exploit DB Packet Storm
84 7.5 HIGH
Network 		simple-help simplehelp SimpleHelp remote support software v5.5.7 and before is vulnerable to multiple path traversal vulnerabilities that enable unauthenticated remote attackers to download arbitrary files from the SimpleH… New CWE-22
Path Traversal 		CVE-2024-57727 2025-01-17 06:22 2025-01-16 Show GitHub Exploit DB Packet Storm
85 8.8 HIGH
Network 		simple-help simplehelp SimpleHelp remote support software v5.5.7 and before has a vulnerability that allows low-privileges technicians to create API keys with excessive permissions. These API keys can be used to escalate p… New NVD-CWE-noinfo
CVE-2024-57726 2025-01-17 06:22 2025-01-16 Show GitHub Exploit DB Packet Storm
86 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kopatheme Kopa Nictitate Toolkit allows Stored XSS.This issue affects Kopa Nictitate Toolkit: fro… New CWE-79
Cross-site Scripting 		CVE-2025-23965 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
87 - - - Missing Authorization vulnerability in Sven Hofmann & Michael Schoenrock Mark Posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mark Posts: from n/a thr… New CWE-862
 Missing Authorization 		CVE-2025-23963 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
88 - - - Missing Authorization vulnerability in Goldstar Goldstar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Goldstar: from n/a through 2.1.1. New CWE-862
 Missing Authorization 		CVE-2025-23962 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
89 - - - Missing Authorization vulnerability in WP Tasker WordPress Graphs & Charts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress Graphs & Charts: from n… New CWE-862
 Missing Authorization 		CVE-2025-23961 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
90 - - - Missing Authorization vulnerability in Sur.ly Sur.ly allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sur.ly: from n/a through 3.0.3. New CWE-862
 Missing Authorization 		CVE-2025-23957 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm