Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210031 5.4 警告 fastin project - Android 用 fastin アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6716 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210032 5.4 警告 popoinnovation - Android 用 SlotMachine アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6715 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210033 5.4 警告 webmd - Android 用 WebMD アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6714 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210034 5.4 警告 medquiz: medical chat and mcqs project - Android 用 MedQuiz: Medical Chat and MCQs アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6713 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210035 5.4 警告 iata - Android 用 Airlines International アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6712 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210036 5.4 警告 nobexrc - Android 用 ABC Lounge Webradio アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6711 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210037 5.4 警告 chifro - Android 用 Chifro Kids Coloring Game アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6710 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210038 5.4 警告 techradar news project - Android 用 TechRadar News アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6709 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210039 5.4 警告 sportinginnovations - Android 用 Sporting Club Uphoria アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6708 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210040 5.4 警告 7sage - Android 用 7Sage LSAT Prep - Proctor アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-6707 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251811 5.4 MEDIUM
Network 		ultimatemember ultimate_member The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's '… CWE-79
Cross-site Scripting 		CVE-2024-8519 2024-10-16 23:06 2024-10-4 Show GitHub Exploit DB Packet Storm
251812 4.8 MEDIUM
Network 		enalean tuleap Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.37, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15… CWE-79
Cross-site Scripting 		CVE-2024-46980 2024-10-16 23:05 2024-10-15 Show GitHub Exploit DB Packet Storm
251813 7.5 HIGH
Network 		acronis cyber_protect Cleartext transmission of sensitive information in acep-collector service. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2024-49387 2024-10-16 22:58 2024-10-15 Show GitHub Exploit DB Packet Storm
251814 9.1 CRITICAL
Network 		acronis cyber_protect Sensitive information manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-49388 2024-10-16 22:57 2024-10-15 Show GitHub Exploit DB Packet Storm
251815 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in acep-importer service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49383 2024-10-16 22:53 2024-10-15 Show GitHub Exploit DB Packet Storm
251816 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in archive-server service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49382 2024-10-16 22:53 2024-10-15 Show GitHub Exploit DB Packet Storm
251817 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in acep-collector service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49384 2024-10-16 22:52 2024-10-15 Show GitHub Exploit DB Packet Storm
251818 7.8 HIGH
Local 		electronics.jtekt kostac_plc_programming_software Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project f… CWE-787
 Out-of-bounds Write 		CVE-2024-47134 2024-10-16 22:50 2024-10-3 Show GitHub Exploit DB Packet Storm
251819 8.8 HIGH
Network 		rems drag_and_drop_image_upload A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulati… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-9975 2024-10-16 22:44 2024-10-15 Show GitHub Exploit DB Packet Storm
251820 9.8 CRITICAL
Network 		code-projects pharmacy_management_system A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/manage_customer.php?action=search. The manipulatio… CWE-89
SQL Injection 		CVE-2024-9976 2024-10-16 22:42 2024-10-15 Show GitHub Exploit DB Packet Storm