Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209221	3.3	注意	Google	-	Android の AndroidManifest.xml における格納された SMS メッセージを送信される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8610	2014-12-17 16:05	2014-09-26	Show	GitHub Exploit DB Packet Storm

209222	7.2	危険	Google	-	Android の Settings アプリケーションにおける任意のコンポーネント情報などの情報を有するインテントをブロードキャストするために SYSTEM UID を利用される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8609	2014-12-17 16:05	2014-09-7	Show	GitHub Exploit DB Packet Storm

209223	7.5	危険	Google	-	Android の WAPPushManager モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-8507	2014-12-17 16:04	2014-10-15	Show	GitHub Exploit DB Packet Storm

209224	7.2	危険	Google	-	Android の java.io.ObjectInputStream の実装の luni/src/main/java/java/io/ObjectInputStream.java における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-7911	2014-12-17 16:04	2014-06-30	Show	GitHub Exploit DB Packet Storm

209225	5	警告	LibVNC	-	LibVNCServer の libvncserver/rfbserver.c 内の rfbProcessClientNormalMessage 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-6053	2014-12-17 14:49	2014-08-18	Show	GitHub Exploit DB Packet Storm

209226	6.4	警告	Ping Identity	-	Ping Identity PingFederate の SP Endpoints の startSSO.ping におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-8489	2014-12-17 14:25	2014-12-9	Show	GitHub Exploit DB Packet Storm

209227	2.9	注意	ジュニパーネットワークス	-	Juniper WLC デバイスの WLAN Software におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-6381	2014-12-17 14:00	2014-12-10	Show	GitHub Exploit DB Packet Storm

209228	2.1	注意	Linux	-	Linux Kernel の arch/x86/kernel/kvm.c 内の paravirt_ops_setup 関数における ASLR 保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8134	2014-12-17 11:50	2014-12-8	Show	GitHub Exploit DB Packet Storm

209229	7.2	危険	K7 Computing	-	複数の K7 Computing 製品で使用される K7Sentry.sys カーネルモードドライバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-8956	2014-12-17 10:59	2014-11-11	Show	GitHub Exploit DB Packet Storm

209230	4.9	警告	K7 Computing	-	複数の K7 Computing 製品で使用される K7Sentry.sys カーネルモードドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-8608	2014-12-17 10:50	2014-11-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252481	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gora Tech LLC Cooked Pro allows Stored XSS.This issue affects Cooked Pro: from n/a before …	CWE-79 Cross-site Scripting	CVE-2024-49289	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252482	-	-	-	Incorrect Privilege Assignment vulnerability in CodePassenger Job Board Manager for WordPress allows Privilege Escalation.This issue affects Job Board Manager for WordPress: from n/a through 1.0.	CWE-266 Incorrect Privilege Assignment	CVE-2024-49322	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252483	-	-	-	Deserialization of Untrusted Data vulnerability in Scott Olson My Reading Library allows Object Injection.This issue affects My Reading Library: from n/a through 1.0.	CWE-502 Deserialization of Untrusted Data	CVE-2024-49318	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252484	-	-	-	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ZIPANG Point Maker allows PHP Local File Inclusion.This issue affects Point Ma…	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2024-49317	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252485	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in RudeStan VKontakte Wall Post allows Stored XSS.This issue affects VKontakte Wall Post: from n/a through 2.0.	-	CVE-2024-49313	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252486	-	-	-	Server-Side Request Forgery (SSRF) vulnerability in WisdmLabs Edwiser Bridge.This issue affects Edwiser Bridge: from n/a through 3.0.7.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-49312	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252487	-	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPFactory Email Verification for WooCommerce allows SQL Injection.This issue affects Email Verifi…	CWE-89 SQL Injection	CVE-2024-49305	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252488	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in PINPOINT.WORLD Pinpoint Booking System allows Stored XSS.This issue affects Pinpoint Booking System: from n/a through 2.9.9.5.1.	CWE-352 Origin Validation Error	CVE-2024-49304	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252489	-	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Surfer allows SQL Injection.This issue affects Surfer: from n/a through 1.5.0.502.	CWE-89 SQL Injection	CVE-2024-49299	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

252490	-	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Zoho CRM Zoho CRM Lead Magnet allows SQL Injection.This issue affects Zoho CRM Lead Magnet: from …	CWE-89 SQL Injection	CVE-2024-49297	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm