Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209801	5.4	警告	civitasmedia	-	Android 用 Mt. Airy News アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6950	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209802	5.4	警告	fotoschilenas	-	Android 用 Akne Ernahrung アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6949	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209803	5.4	警告	th3professional	-	Android 用 TH3 professional Al Mohtarif アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6948	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209804	5.4	警告	iversemedia	-	Android 用 Archie Comics アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6947	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209805	5.4	警告	misterpark	-	Android 用 Re:kyu アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6946	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209806	5.4	警告	dakshaa	-	Android 用 Neeku Naaku Dash Dash アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6945	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209807	5.4	警告	mitfahrgelegenheit	-	Android 用 mitfahrgelegenheit.at アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6944	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209808	5.4	警告	koenigsleiten77	-	Android 用 Konigsleiten アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6943	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209809	5.4	警告	automon	-	Android 用 Alisha Marie (Unofficial) アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6942	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209810	5.4	警告	nos	-	Android 用 NOS Alive アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6941	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252081	6.1	MEDIUM Network	yoginetwork	rabbitloader	The RabbitLoader – Website Speed Optimization for improving Core Web Vital metrics with Cache, Image Optimization, and more plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to…	CWE-79 Cross-site Scripting	CVE-2024-8800	2024-10-9 03:59	2024-10-2	Show	GitHub Exploit DB Packet Storm

252082	6.1	MEDIUM Network	themes4wp	popularis_extra	The Popularis Extra plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up …	CWE-79 Cross-site Scripting	CVE-2024-9353	2024-10-9 03:50	2024-10-4	Show	GitHub Exploit DB Packet Storm

252083	5.4	MEDIUM Network	iworks	pwa	The PWA — easy way to Progressive Web App plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.3 due to insufficient input …	CWE-79 Cross-site Scripting	CVE-2024-8967	2024-10-9 03:47	2024-10-2	Show	GitHub Exploit DB Packet Storm

252084	7.5	HIGH Network	cisco	meraki_mx65_firmware meraki_mx64_firmware meraki_z4c_firmware meraki_z4_firmware meraki_z3c_firmware meraki_z3_firmware meraki_vmx_firmware meraki_mx600_firmware meraki_mx450_…	A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition on …	CWE-400 Uncontrolled Resource Consumption	CVE-2024-20502	2024-10-9 03:46	2024-10-3	Show	GitHub Exploit DB Packet Storm

252085	6.5	MEDIUM Network	soplanning	soplanning	SQL injection vulnerability in SOPlanning <1.45, via /soplanning/www/user_groupes.php in the by parameter, which could allow a remote user to submit a specially crafted query, allowing an attacker to…	CWE-89 SQL Injection	CVE-2024-9574	2024-10-9 03:45	2024-10-8	Show	GitHub Exploit DB Packet Storm

252086	6.5	MEDIUM Network	soplanning	soplanning	SQL injection vulnerability in SOPlanning <1.45, through /soplanning/www/groupe_list.php, in the by parameter, which could allow a remote user to send a specially crafted query and extract all the in…	CWE-89 SQL Injection	CVE-2024-9573	2024-10-9 03:45	2024-10-8	Show	GitHub Exploit DB Packet Storm

252087	5.4	MEDIUM Network	soplanning	soplanning	Cross-Site Scripting (XSS) vulnerability in SOPlanning <1.45, due to lack of proper validation of user input via /soplanning/www/process/groupe_save.php, in the groupe_id parameter. This could allow …	CWE-79 Cross-site Scripting	CVE-2024-9572	2024-10-9 03:45	2024-10-8	Show	GitHub Exploit DB Packet Storm

252088	5.4	MEDIUM Network	soplanning	soplanning	Cross-Site Scripting (XSS) vulnerability in SOPlanning <1.45, due to lack of proper validation of user input via /soplanning/www/process/xajax_server.php, affecting multiple parameters. This could al…	CWE-79 Cross-site Scripting	CVE-2024-9571	2024-10-9 03:45	2024-10-8	Show	GitHub Exploit DB Packet Storm

252089	5.9	MEDIUM Network	cisco	meraki_mx65_firmware meraki_mx64_firmware meraki_z4c_firmware meraki_z4_firmware meraki_z3c_firmware meraki_z3_firmware meraki_vmx_firmware meraki_mx600_firmware meraki_mx450_…	A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN …	CWE-362 Race Condition	CVE-2024-20509	2024-10-9 03:45	2024-10-3	Show	GitHub Exploit DB Packet Storm

252090	8.8	HIGH Network	dlink	dir-605l_firmware	A vulnerability has been found in D-Link DIR-605L 2.13B01 BETA and classified as critical. Affected by this vulnerability is the function formSetPassword of the file /goform/formSetPassword. The mani…	CWE-120 Classic Buffer Overflow	CVE-2024-9565	2024-10-9 03:39	2024-10-7	Show	GitHub Exploit DB Packet Storm