Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210181 5.4 警告 sinopac - Android 用 SinoPac アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5951 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210182 5.4 警告 smtown - Android 用 NOW アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5950 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210183 5.4 警告 mobileticketapp - Android 用 TICKET APP - Concerts & Sports アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5949 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210184 5.4 警告 barackobama - Android 用 Obama for America アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5948 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210185 5.4 警告 psicofxp - Android 用 psicofxp アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5947 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210186 5.4 警告 hawaaworld - Android 用 forumhawaaworldcom アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5946 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210187 5.4 警告 edline mobile project - Android 用 Edline Mobile アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5945 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210188 5.4 警告 jellyfisher - Android 用 Soccer Blitz アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5944 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210189 5.4 警告 baby stomach surgery project - Android 用 Baby Stomach Surgery アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5942 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210190 5.4 警告 armpit spa & girl games project - Android 用 Armpit Spa & Girl Games アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5941 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252091 - - - An issue in almaodo GmbH appinventor.ai_google.almando_control 2.3.1 allows a remote attacker to obtain sensitive information via the firmware update process - CVE-2024-48768 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252092 - - - foxmarks is a CLI read-only interface for Firefox's bookmarks and history. A temporary file was created under the /tmp directory with read permissions for all users containing a copy of Firefox's dat… CWE-378
 Creation of Temporary File With Insecure Permissions 		CVE-2024-47884 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252093 - - - btcd is an alternative full node bitcoin implementation written in Go (golang). The btcd Bitcoin client (versions 0.10 to 0.24) did not correctly re-implement Bitcoin Core's "FindAndDelete()" functio… CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2024-38365 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252094 - - - An HTTP Request Smuggling vulnerability in Looker allowed an unauthorized attacker to capture HTTP responses destined for legitimate users. There are two Looker versions that are hosted by Looker: … - CVE-2024-8912 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252095 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CreativeMindsSolutions CM Tooltip Glossary allows Stored XSS.This issue affects CM Tooltip… - CVE-2024-48041 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252096 - - - Deserialization of Untrusted Data vulnerability in Elie Burstein, Baptiste Gourdin Talkback allows Object Injection.This issue affects Talkback: from n/a through 1.0. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-48033 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252097 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Revmakx Backup and Staging by WP Time Capsule allows SQL Injection.This issue affects Backup and … CWE-89
SQL Injection 		CVE-2024-48020 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252098 - - - URL Redirection to Untrusted Site ('Open Redirect') vulnerability in QuomodoSoft ElementsReady Addons for Elementor.This issue affects ElementsReady Addons for Elementor: from n/a through 6.4.2. CWE-601
Open Redirect 		CVE-2024-47353 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252099 - - - A directory listing issue in the baserCMS plugin in D-ZERO CO., LTD. BurgerEditor and BurgerEditor Limited Edition before 2.25.1 allows remote attackers to obtain sensitive information by exposing a … - CVE-2024-44807 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
252100 - - - Type confusion in WebAssembly in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) - CVE-2024-9859 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm