Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209571 5.4 警告 Magzter Inc. - Android 用 Sunday Indian Oriya アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7388 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209572 5.4 警告 accadvocacy - Android 用 ACC Advocacy Action アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7387 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209573 5.4 警告 aperturemobilemedia - Android 用 Aperture Mobile Media アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7385 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209574 5.4 警告 jobranco project - Android 用 Jobranco アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7378 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209575 5.4 警告 facebook profits on steroids project - Android 用 Facebook Profits on Steroids アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7376 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209576 5.4 警告 mobileappcity - Android 用 Childcare アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7375 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209577 5.4 警告 narr8 - Android 用 SPIN - Motion Comic アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7374 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209578 5.4 警告 Magzter Inc. - Android 用 Inspire Weddings アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7373 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209579 5.4 警告 kellygerards - Android 用 Mr.Sausage アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7372 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209580 5.4 警告 appearingbusiness - Android 用 Magic Balloonman Marty Boone アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7371 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251271 - - - Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to obtain sensitive information via the externalId component. - CVE-2024-33453 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251272 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in VillaTheme CURCY allows Reflected XSS.This issue affects CURCY: from n/a through 2.2.3. CWE-79
Cross-site Scripting 		CVE-2024-49283 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251273 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in dFactory Responsive Lightbox allows Stored XSS.This issue affects Responsive Lightbox: fro… CWE-79
Cross-site Scripting 		CVE-2024-49282 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251274 - - - ### Impact When this library is used to deserialize messagepack data from an untrusted source, there is a risk of a denial of service attack by an attacker that sends data contrived to produce hash … CWE-328
 Use of Weak Hash 		CVE-2024-48924 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251275 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Weblizar Lightbox slider – Responsive Lightbox Gallery allows Stored XSS.This issue affect… CWE-79
Cross-site Scripting 		CVE-2024-49280 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251276 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in TipTopPress Hyperlink Group Block allows Stored XSS.This issue affects Hyperlink Group Blo… CWE-79
Cross-site Scripting 		CVE-2024-49279 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251277 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in omnipressteam Omnipress allows Stored XSS.This issue affects Omnipress: from n/a through 1… CWE-79
Cross-site Scripting 		CVE-2024-49278 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251278 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodeAstrology Team UltraAddons Elementor Lite allows Stored XSS.This issue affects UltraAd… - CVE-2024-49277 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251279 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themis Solutions, Inc. Clio Grow allows Reflected XSS.This issue affects Clio Grow: from n… CWE-79
Cross-site Scripting 		CVE-2024-49276 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251280 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Events Addon for Elementor allows Stored XSS.This issue affects Events Addon f… CWE-79
Cross-site Scripting 		CVE-2024-49264 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm