Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208811	4.3	警告	Kajona	-	Kajona のバックエンドにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-0917	2015-01-9 18:16	2015-01-5	Show	GitHub Exploit DB Packet Storm

208812	5.1	警告	マイクロソフト	-	Microsoft IIS の IP セキュリティ機能におけるワイルドカードドメイン制限のルールセットを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-4078	2015-01-9 17:59	2014-11-11	Show	GitHub Exploit DB Packet Storm

208813	5.8	警告	Canonical libvirt.org	-	libvirt の qemu/qemu_driver.c 内の qemuDomainGetBlockIoTune 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-3633	2015-01-9 17:57	2014-09-17	Show	GitHub Exploit DB Packet Storm

208814	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-8439	2015-01-9 17:57	2014-11-25	Show	GitHub Exploit DB Packet Storm

208815	4	警告	レッドハット	-	libvirt の virConnectGetAllDomainStats の qemu の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8131	2015-01-9 16:53	2014-12-11	Show	GitHub Exploit DB Packet Storm

208816	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite のバックエンドにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8993	2015-01-9 16:50	2014-12-3	Show	GitHub Exploit DB Packet Storm

208817	4.3	警告	Zoho Corporation	-	ZOHO ManageEngine ADSelfService Plus におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3779	2015-01-9 16:44	2014-05-13	Show	GitHub Exploit DB Packet Storm

208818	5	警告	DELL EMC (旧 EMC Corporation)	-	EMC Documentum Web Development Kit におけるフィッシング攻撃を実行される脆弱性	CWE-189 数値処理の問題	CVE-2014-4639	2015-01-9 16:41	2014-06-24	Show	GitHub Exploit DB Packet Storm

208819	5	警告	DELL EMC (旧 EMC Corporation)	-	EMC Documentum Web Development Kit におけるフレームインジェクション攻撃を実行される脆弱性	CWE-200 情報漏えい	CVE-2014-4638	2015-01-9 16:41	2014-06-24	Show	GitHub Exploit DB Packet Storm

208820	6.4	警告	DELL EMC (旧 EMC Corporation)	-	EMC Documentum Web Development Kit におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-4637	2015-01-9 16:40	2014-06-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252121	5.3	MEDIUM Network	stylemixthemes	cost_calculator_builder	The Cost Calculator Builder PRO plugin for WordPress is vulnerable to price manipulation in all versions up to, and including, 3.2.1. This is due to the plugin allowing the price field to be manipula…	NVD-CWE-Other	CVE-2024-6010	2024-10-24 01:15	2024-09-7	Show	GitHub Exploit DB Packet Storm

252122	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix double free in OPTEE transport Channels can be shared between protocols, avoid freeing the same channel d…	CWE-415 Double Free	CVE-2024-49853	2024-10-24 01:14	2024-10-21	Show	GitHub Exploit DB Packet Storm

252123	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() The kref_put() function will call nport->release if the …	CWE-416 Use After Free	CVE-2024-49852	2024-10-24 01:14	2024-10-21	Show	GitHub Exploit DB Packet Storm

252124	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: crypto: stm32/cryp - call finalize with bh disabled The finalize operation in interrupt mode produce a produces a spinlock recurs…	NVD-CWE-noinfo	CVE-2024-47658	2024-10-24 01:14	2024-10-9	Show	GitHub Exploit DB Packet Storm

252125	9.8	CRITICAL Network	moridrin	ssv_events	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Moridrin SSV Events allows PHP Local File Inclusion.This issue affects SSV Events: from n/a through 3.2…	CWE-22 Path Traversal	CVE-2024-49286	2024-10-24 01:13	2024-10-20	Show	GitHub Exploit DB Packet Storm

252126	5.4	MEDIUM Network	mightyplugins	mighty_builder	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mighty Plugins Mighty Builder allows Stored XSS.This issue affects Mighty Builder: from n/…	CWE-79 Cross-site Scripting	CVE-2024-48049	2024-10-24 01:12	2024-10-20	Show	GitHub Exploit DB Packet Storm

252127	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX [Why & How] It actually exposes '6' types in enum dmu…	CWE-129 Improper Validation of Array Index	CVE-2024-46871	2024-10-24 01:10	2024-10-9	Show	GitHub Exploit DB Packet Storm

252128	6.1	MEDIUM Network	unizoewebsolutions	jlayer_parallax_slider	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Unizoe Web Solutions jLayer Parallax Slider allows Reflected XSS.This issue affects jLayer…	CWE-79 Cross-site Scripting	CVE-2024-49334	2024-10-24 01:08	2024-10-20	Show	GitHub Exploit DB Packet Storm

252129	6.1	MEDIUM Network	sourav	all_in_one_slider	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sourav All in One Slider allows Reflected XSS.This issue affects All in One Slider: from n…	CWE-79 Cross-site Scripting	CVE-2024-49323	2024-10-24 01:05	2024-10-20	Show	GitHub Exploit DB Packet Storm

252130	5.3	MEDIUM Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to don't set SB_RDONLY in f2fs_handle_critical_error() syzbot reports a f2fs bug as below: ------------[ cut here ]---…	CWE-362 Race Condition	CVE-2024-47689	2024-10-24 00:53	2024-10-21	Show	GitHub Exploit DB Packet Storm