Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 2:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225251	4.3	警告	GNOME Project Canonical	-	Gnome Online Accounts における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-1799	2013-04-3 17:14	2013-03-25	Show	GitHub Exploit DB Packet Storm

225252	4.3	警告	GNOME Project Canonical	-	Gnome Online Accounts における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-0240	2013-04-3 17:13	2013-03-25	Show	GitHub Exploit DB Packet Storm

225253	5	警告	iThemes	-	WordPress 用 BackupBuddy プラグインにおける設定情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-2744	2013-04-3 15:09	2013-04-2	Show	GitHub Exploit DB Packet Storm

225254	7.5	危険	iThemes	-	WordPress 用 BackupBuddy プラグインにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2013-2743	2013-04-3 15:09	2013-04-2	Show	GitHub Exploit DB Packet Storm

225255	7.5	危険	iThemes	-	WordPress 用 BackupBuddy プラグインにおけるアクセス権を取得される脆弱性	CWE-DesignError	CVE-2013-2742	2013-04-3 15:07	2013-04-2	Show	GitHub Exploit DB Packet Storm

225256	7.6	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2011-3090	2013-04-3 14:48	2012-05-15	Show	GitHub Exploit DB Packet Storm

225257	10	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3089	2013-04-3 14:46	2012-05-15	Show	GitHub Exploit DB Packet Storm

225258	10	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3086	2013-04-3 14:45	2012-05-15	Show	GitHub Exploit DB Packet Storm

225259	10	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3081	2013-04-3 14:44	2012-04-30	Show	GitHub Exploit DB Packet Storm

225260	7.5	危険	iThemes	-	WordPress 用 BackupBuddy プラグインにおける重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2013-2741	2013-04-3 14:42	2013-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315661	-	-	-	In the OAuth library for nim prior to version 0.11, the `state` values generated by the `generateState` function do not have sufficient entropy. These can be successfully guessed by an attacker allow…	-	CVE-2024-42475	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

315662	-	-	-	ECMA-262 is the language specification for the scripting language ECMAScript. A problem in the ECMAScript (JavaScript) specification of async generators, introduced by a May 2021 spec refactor, may l…	-	CVE-2024-43357	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

315663	-	-	-	Cross Site Scripting vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information via the lack of file type filtering in the file attachment parameter.	-	CVE-2024-27731	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

315664	-	-	-	Insecure Permissions vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information and execute arbitrary code via the cid parameter of the calendar event feature.	-	CVE-2024-27730	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

315665	-	-	-	Vulnerability in Xiexe XSOverlay before build 647 allows non-local websites to send the malicious commands to the WebSocket API, resulting in the arbitrary code execution.	-	CVE-2024-23168	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

315666	-	-	-	XML External Entity (XXE) vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC versions up to 1.0.4 allows authenticated users to submit malicious XML via unspecified features which cou…	-	CVE-2024-22218	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

315667	-	-	-	Module savepoints could be abused to inject references to malicious code delivered through the same domain. Attackers could perform malicious API requests or extract information from the users accoun…	-	CVE-2024-25582	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

315668	-	-	-	Authorization Bypass Through User-Controlled Key vulnerability in Propovoice Propovoice CRM.This issue affects Propovoice CRM: from n/a through 1.7.6.4.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-43350	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

315669	-	-	-	Authorization Bypass Through User-Controlled Key vulnerability in Dylan James Zephyr Project Manager.This issue affects Zephyr Project Manager: from n/a through 3.3.100.	-	CVE-2024-43322	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

315670	-	-	-	Authorization Bypass Through User-Controlled Key vulnerability in Checkout Plugins Stripe Payments For WooCommerce by Checkout.This issue affects Stripe Payments For WooCommerce by Checkout: from n/a…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-43315	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm