Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209951 5.4 警告 localsense - Android 用 LocalSense アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6796 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209952 5.4 警告 Group Builder - Android 用 Beekeeping Forum アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6795 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209953 5.4 警告 boopsie - Android 用 AAPLD アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6794 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209954 5.4 警告 roboticoverlords - Android 用 Arch Friend アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6793 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209955 5.4 警告 suriname radio project - Android 用 Suriname Radio アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6792 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209956 5.4 警告 atastefromheaven - Android 用 Angel Reigns アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6791 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209957 5.4 警告 keyinternet - Android 用 INVEX アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6790 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209958 5.4 警告 boopsie - Android 用 Anaheim Library 2Go! アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6789 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209959 5.4 警告 oman news project - Android 用 Oman News アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6788 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209960 5.4 警告 counterintuition - Android 用 Counter Intuition アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6787 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251991 9.8 CRITICAL
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. An attacker could explo… CWE-287
Improper Authentication 		CVE-2024-45115 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
251992 - - - An Insecure Direct Object Reference (IDOR) vulnerability exists in open-webui/open-webui version v0.3.8. The vulnerability occurs in the API endpoint `http://0.0.0.0:3000/api/v1/memories/{id}/update`… CWE-250
 Execution with Unnecessary Privileges 		CVE-2024-7041 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
251993 - - - In version v0.3.8 of open-webui/open-webui, the endpoint /api/pipelines/upload is vulnerable to arbitrary file write and delete due to unsanitized file.filename concatenation with CACHE_DIR. This vul… CWE-22
Path Traversal 		CVE-2024-7037 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
251994 7.5 HIGH
Network 		- - An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker se… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2024-39525 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
251995 7.5 HIGH
Network 		- - An Improper Validation of Consistency within Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacke… CWE-1288
 Improper Validation of Consistency within Input 		CVE-2024-39515 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
251996 - - - VMware NSX contains a local privilege escalation vulnerability.  An authenticated malicious actor may exploit this vulnerability to obtain permissions from a separate group role than previously assi… - CVE-2024-38818 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
251997 - - - VMware NSX contains a content spoofing vulnerability.  An unauthenticated malicious actor may be able to craft a URL and redirect a victim to an attacker controlled domain leading to sensitive infor… - CVE-2024-38815 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
251998 - - - HCL Connections is vulnerable to an information disclosure vulnerability which could allow a user to obtain sensitive information they are not entitled to because of improperly handling the request d… - CVE-2024-30118 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
251999 - - - ImportDump is a mediawiki extension designed to automate user import requests. A user's local actor ID is stored in the database to tell who made what requests. Therefore, if a user on another wiki h… CWE-282
 Improper Ownership Management 		CVE-2024-47816 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
252000 - - - IncidentReporting is a MediaWiki extension for moving incident reports from wikitext to database tables. There are a variety of Cross-site Scripting issues, though all of them require elevated permis… CWE-79
CWE-80
Cross-site Scripting
Basic XSS 		CVE-2024-47815 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm