Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210191 5.4 警告 pocket pc - Android 用 PocketPC.ch アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5940 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210192 5.4 警告 travelzad - Android 用 travelzadcomvb アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5939 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210193 5.4 警告 alldealsasia - Android 用 AllDealsAsia All Deals ADA app アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5938 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210194 5.4 警告 freediyhomeimprovement - Android 用 Social Networking アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5937 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210195 5.4 警告 incognito private browser project - Android 用 INCOgnito Private Browser アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5936 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210196 5.4 警告 daily free app @ amazon project - Android 用 Daily Free App @ Amazon アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5935 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210197 5.4 警告 Skout Inc. - Android 用 Flurv Chat アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5934 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210198 5.4 警告 cokestudio - Android 用 Coke Studio 7 アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5933 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210199 5.4 警告 vodafone - Android 用 Vodafone Mobile@Work アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5932 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
210200 5.4 警告 stopandshop - Android 用 Stop & Shop SCAN IT! Mobile アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-5931 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251121 3.3 LOW
Local 		mongodb mongo_crypt_v1.so
mongocryptd 		A bug in query analysis of certain complex self-referential $lookup subpipelines may result in literal values in expressions for encrypted fields to be sent to the server as plaintext instead of ciph… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2024-8013 2024-10-31 22:33 2024-10-28 Show GitHub Exploit DB Packet Storm
251122 8.8 HIGH
Network 		priyabratasarkar token_login Authentication Bypass Using an Alternate Path or Channel vulnerability in Priyabrata Sarkar Token Login allows Authentication Bypass.This issue affects Token Login: from n/a through 1.0.3. CWE-306
Missing Authentication for Critical Function 		CVE-2024-50488 2024-10-31 22:19 2024-10-28 Show GitHub Exploit DB Packet Storm
251123 9.8 CRITICAL
Network 		tareqhasan meetup Authorization Bypass Through User-Controlled Key vulnerability in Meetup allows Privilege Escalation.This issue affects Meetup: from n/a through 0.1. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-50483 2024-10-31 22:12 2024-10-28 Show GitHub Exploit DB Packet Storm
251124 9.8 CRITICAL
Network 		mansurahamed woocommerce_quote_calculator Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mansur Ahamed Woocommerce Quote Calculator allows Blind SQL Injection.This issue affects Woocomme… CWE-89
SQL Injection 		CVE-2024-50479 2024-10-31 22:02 2024-10-28 Show GitHub Exploit DB Packet Storm
251125 9.8 CRITICAL
Network 		codezips hospital_appointment_system A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment System 1.0. This affects an unknown part of the file /loginAction.php. The manipulation of the argument U… CWE-89
SQL Injection 		CVE-2024-10449 2024-10-31 21:47 2024-10-29 Show GitHub Exploit DB Packet Storm
251126 8.8 HIGH
Network 		google chrome Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CWE-843
Type Confusion 		CVE-2024-10230 2024-10-31 17:35 2024-10-23 Show GitHub Exploit DB Packet Storm
251127 9.8 CRITICAL
Network 		swoopnow 1-click_login\ Authentication Bypass by Primary Weakness vulnerability in Swoop 1-Click Login: Passwordless Authentication allows Authentication Bypass.This issue affects 1-Click Login: Passwordless Authentication:… CWE-287
Improper Authentication 		CVE-2024-50478 2024-10-31 10:44 2024-10-28 Show GitHub Exploit DB Packet Storm
251128 5.4 MEDIUM
Network 		amilia store Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Martin Drapeau Amilia Store allows Stored XSS.This issue affects Amilia Store: from n/a th… CWE-79
Cross-site Scripting 		CVE-2024-50472 2024-10-31 10:42 2024-10-28 Show GitHub Exploit DB Packet Storm
251129 5.4 MEDIUM
Network 		checklist trip_plan Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Checklist Trip Plan allows Stored XSS.This issue affects Trip Plan: from n/a through 1.0.1… CWE-79
Cross-site Scripting 		CVE-2024-50471 2024-10-31 10:37 2024-10-28 Show GitHub Exploit DB Packet Storm
251130 5.4 MEDIUM
Network 		themes4wp youtube_external_subtitles Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themes4WP Themes4WP YouTube External Subtitles allows Stored XSS.This issue affects Themes… CWE-79
Cross-site Scripting 		CVE-2024-50470 2024-10-31 10:30 2024-10-28 Show GitHub Exploit DB Packet Storm