Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210021 5.4 警告 30a - Android 用 30A アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6726 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210022 5.4 警告 apprenticeuitgevers - Android 用 SchoolXM アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6725 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210023 5.4 警告 soapmakingforum - Android 用 Soap Making アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6724 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210024 5.4 警告 comicsplusapp - Android 用 Comics Plus アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6723 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210025 5.4 警告 clearfishing - Android 用 Pescuit Crap Lite アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6722 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210026 5.4 警告 pharmaguideline - Android 用 Pharmaguideline アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6721 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210027 5.4 警告 clearfishing - Android 用 Pesca de Carpa Lite アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6720 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210028 5.4 警告 rapidmedia - Android 用 Kayak Angler Magazine アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6719 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210029 5.4 警告 mymobileday1 - Android 用 My Mobile Day アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6718 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210030 5.4 警告 itriagehealth - Android 用 iTriage Health アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6717 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250991 - - - The Black Widgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.3.7 due to insufficient input sanitizati… CWE-79
Cross-site Scripting 		CVE-2024-9388 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
250992 9.1 CRITICAL
Network 		- - The W3SPEEDSTER plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 7.26 via the 'script' parameter of the hookBeforeStartOptimization() function. This i… CWE-95
Eval Injection 		CVE-2024-8512 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
250993 - - - Generation of Error Message Containing Sensitive Information vulnerability in Posti Posti Shipping allows Retrieve Embedded Sensitive Data.This issue affects Posti Shipping: from n/a through 3.10.2. CWE-209
Information Exposure Through an Error Message 		CVE-2024-50512 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
250994 - - - Unrestricted Upload of File with Dangerous Type vulnerability in David DONISA WP donimedia carousel allows Upload a Web Shell to a Web Server.This issue affects WP donimedia carousel: from n/a throug… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-50511 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
250995 - - - Unrestricted Upload of File with Dangerous Type vulnerability in Web and Print Design AR For Woocommerce allows Upload a Web Shell to a Web Server.This issue affects AR For Woocommerce: from n/a thro… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-50510 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
250996 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Chetan Khandla Woocommerce Product Design allows Path Traversal.This issue affects Woocommerce Product … CWE-22
Path Traversal 		CVE-2024-50509 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
250997 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Chetan Khandla Woocommerce Product Design allows Path Traversal.This issue affects Woocommerce Product … CWE-22
Path Traversal 		CVE-2024-50508 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
250998 - - - Deserialization of Untrusted Data vulnerability in Daniel Schmitzer DS.DownloadList allows Object Injection.This issue affects DS.DownloadList: from n/a through 1.3. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-50507 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
250999 - - - Incorrect Privilege Assignment vulnerability in Azexo Marketing Automation by AZEXO allows Privilege Escalation.This issue affects Marketing Automation by AZEXO: from n/a through 1.27.80. CWE-266
 Incorrect Privilege Assignment 		CVE-2024-50506 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm
251000 - - - Incorrect Privilege Assignment vulnerability in Matt Whiteman Bulk Change Role allows Privilege Escalation.This issue affects Bulk Change Role: from n/a through 1.1. CWE-266
 Incorrect Privilege Assignment 		CVE-2024-50504 2024-11-1 21:57 2024-10-30 Show GitHub Exploit DB Packet Storm