Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209091	6.8	警告	Mikiurl Wordpress Eklentisi project	-	WordPress 用 Mikiurl Wordpress Eklentisi プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9337	2014-12-24 14:34	2014-12-9	Show	GitHub Exploit DB Packet Storm

209092	6.8	警告	iTwitter project	-	WordPress 用 iTwitter プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9336	2014-12-24 14:34	2014-12-9	Show	GitHub Exploit DB Packet Storm

209093	6.8	警告	DandyID Services project	-	WordPress 用 DandyID Services プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9335	2014-12-24 14:34	2014-12-9	Show	GitHub Exploit DB Packet Storm

209094	6.5	警告	Sergey Romanenko	-	Morfy CMS の install.php における config.php に任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2014-9185	2014-12-24 11:58	2014-12-3	Show	GitHub Exploit DB Packet Storm

209095	4.3	警告	Huawei	-	Huawei P7-L10 スマートフォンの PackageInstaller モジュールにおける元のウェブサイトになりすまされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-9135	2014-12-24 11:49	2014-11-20	Show	GitHub Exploit DB Packet Storm

209096	5.8	警告	株式会社 T-MEDIAホールディングス	-	Android 版 TSUTAYAアプリにおける任意の Java のメソッドが実行される脆弱性	CWE-DesignError	CVE-2014-7241	2014-12-22 17:51	2014-12-18	Show	GitHub Exploit DB Packet Storm

209097	2.6	注意	リックソフト株式会社	-	WBS ガントチャート for JIRA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7268	2014-12-22 17:50	2014-12-18	Show	GitHub Exploit DB Packet Storm

209098	4	警告	リックソフト株式会社	-	WBS ガントチャート for JIRA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7267	2014-12-22 17:49	2014-12-18	Show	GitHub Exploit DB Packet Storm

209099	5	警告	Revive Adserver	-	Revive Adserver の lib/pear/XML/RPC.php の XML_RPC_cd 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-8875	2014-12-22 17:48	2014-08-8	Show	GitHub Exploit DB Packet Storm

209100	4.3	警告	Revive Adserver	-	Revive Adserver の lib/max/Admin/UI/Field/PublisherIdField.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8793	2014-12-22 17:44	2014-11-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252031	-	-	-	A vulnerability was found in SourceCodester Record Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file sort2_user.php. The manipu…	CWE-79 Cross-site Scripting	CVE-2024-9810	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252032	-	-	-	A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is the function delete_product of the file /classes/Master.php?f=…	CWE-89 SQL Injection	CVE-2024-9809	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252033	-	-	-	A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=products/view_product. The manipulati…	CWE-89 SQL Injection	CVE-2024-9808	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252034	-	-	-	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple Membership After Login Redirection.This issue affects Simple Membership After Login Redirection: from n/a …	CWE-601 Open Redirect	CVE-2024-47354	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252035	-	-	-	A vulnerability was found in code-projects Blood Bank System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/campsdetails.php. The manipulation of…	CWE-79 Cross-site Scripting	CVE-2024-9805	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252036	-	-	-	A vulnerability was found in code-projects Blood Bank System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/campsdetails.php. The manipulation of th…	CWE-89 SQL Injection	CVE-2024-9804	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252037	-	-	-	A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file register.php. The manipulation of the argument user le…	CWE-89 SQL Injection	CVE-2024-9797	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252038	-	-	-	A vulnerability, which was classified as critical, has been found in Codezips Online Shopping Portal 1.0. This issue affects some unknown processing of the file /update-image1.php. The manipulation o…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9794	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252039	-	-	-	pac4j is a security framework for Java. `pac4j-core` prior to version 4.0.0 is affected by a Java deserialization vulnerability. The vulnerability affects systems that store externally controlled val…	CWE-502 Deserialization of Untrusted Data	CVE-2023-25581	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm

252040	-	-	-	A vulnerability classified as problematic has been found in D-Link DSL-2750U R5B017. This affects an unknown part of the component Port Forwarding Page. The manipulation of the argument PortMappingDe…	CWE-79 Cross-site Scripting	CVE-2024-9792	2024-10-15 21:58	2024-10-11	Show	GitHub Exploit DB Packet Storm