Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209501 5.4 警告 Guilardi Mob - Android 用 I Know the Movie アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7470 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209502 5.4 警告 best beginning project - Android 用 Best Beginning アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7469 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209503 5.4 警告 ag-klettern-odenwald - Android 用 AG Klettern Odenwald アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7468 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209504 5.4 警告 Magzter Inc. - Android 用 HoneyBee Mag アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7467 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209505 5.4 警告 live tv browser project - Android 用 Live TV Browser アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7466 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209506 5.4 警告 pocketmags - Android 用 PC Advisor アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7465 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209507 5.4 警告 magicstamp - Android 用 Magic Stamp アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7464 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209508 5.4 警告 im5 fans planet project - Android 用 IM5 Fans Planet アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7463 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209509 5.4 警告 teamlava - Android 用 Fashion Story: Neon 90's アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7462 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209510 5.4 警告 teknopoint - Android 用 A King Sperm by Dr. Seema Rao アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7461 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251881 7.8 HIGH
Local 		adobe incopy InCopy versions 18.5.2, 19.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation… CWE-190
 Integer Overflow or Wraparound 		CVE-2024-41858 2024-10-16 05:51 2024-08-14 Show GitHub Exploit DB Packet Storm
251882 - apple mac_os_x
mac_os_x_server 		Buffer overflow in CoreAudio in Apple Mac OS X 10.5.8 and 10.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MP4 audio file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0036 2024-10-16 05:35 2010-01-21 Show GitHub Exploit DB Packet Storm
251883 6.1 MEDIUM
Network 		lemonldap-ng lemonldap\ A cross-site scripting (XSS) vulnerability in LemonLDAP::NG before 2.19.3 allows remote attackers to inject arbitrary web script or HTML into the login page via a username if userControl has been set… CWE-79
Cross-site Scripting 		CVE-2024-48933 2024-10-16 03:56 2024-10-10 Show GitHub Exploit DB Packet Storm
251884 9.8 CRITICAL
Network 		internet-formation wp-advanced-search The WP-Advanced-Search WordPress plugin before 3.3.9.2 does not sanitize and escape the t parameter before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks CWE-89
SQL Injection 		CVE-2024-9796 2024-10-16 03:46 2024-10-10 Show GitHub Exploit DB Packet Storm
251885 5.5 MEDIUM
Local 		paloaltonetworks cortex_xdr_agent A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This issue may be le… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2024-9469 2024-10-16 03:38 2024-10-10 Show GitHub Exploit DB Packet Storm
251886 4.4 MEDIUM
Local 		paloaltonetworks cortex_xdr_agent A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows administrator privileges to disable the agent. This issue may be leverag… NVD-CWE-Other
CVE-2024-8690 2024-10-16 03:38 2024-09-12 Show GitHub Exploit DB Packet Storm
251887 7.8 HIGH
Local 		jtekt kostac_plc Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted p… CWE-787
 Out-of-bounds Write 		CVE-2024-47135 2024-10-16 03:21 2024-10-3 Show GitHub Exploit DB Packet Storm
251888 7.8 HIGH
Local 		jtekt kostac_plc Out-of-bounds read vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project fi… CWE-125
Out-of-bounds Read 		CVE-2024-47136 2024-10-16 03:20 2024-10-3 Show GitHub Exploit DB Packet Storm
251889 - - - An issue in Plug n Play Camera com.wisdomcity.zwave 1.1.0 allows a remote attacker to obtain sensitive information via the firmware update process. - CVE-2024-48770 2024-10-16 02:35 2024-10-12 Show GitHub Exploit DB Packet Storm
251890 - - - angular-base64-upload prior to v0.1.21 is vulnerable to unauthenticated remote code execution via demo/server.php. Exploiting this vulnerability allows an attacker to upload arbitrary content to the … - CVE-2024-42640 2024-10-16 02:35 2024-10-12 Show GitHub Exploit DB Packet Storm