Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210191	5.4	警告	pocket pc	-	Android 用 PocketPC.ch アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5940	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210192	5.4	警告	travelzad	-	Android 用 travelzadcomvb アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5939	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210193	5.4	警告	alldealsasia	-	Android 用 AllDealsAsia All Deals ADA app アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5938	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210194	5.4	警告	freediyhomeimprovement	-	Android 用 Social Networking アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5937	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210195	5.4	警告	incognito private browser project	-	Android 用 INCOgnito Private Browser アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5936	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210196	5.4	警告	daily free app @ amazon project	-	Android 用 Daily Free App @ Amazon アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5935	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210197	5.4	警告	Skout Inc.	-	Android 用 Flurv Chat アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5934	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210198	5.4	警告	cokestudio	-	Android 用 Coke Studio 7 アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5933	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210199	5.4	警告	vodafone	-	Android 用 Vodafone Mobile@Work アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5932	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210200	5.4	警告	stopandshop	-	Android 用 Stop & Shop SCAN IT! Mobile アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5931	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251491	4.3	MEDIUM Network	paytium	paytium	The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized API key update due to a missing capability check on the paytium_sw_save_api_keys function in versions …	CWE-862 Missing Authorization	CVE-2023-7289	2024-10-18 02:29	2024-10-16	Show	GitHub Exploit DB Packet Storm

251492	5.4	MEDIUM Network	paytium	paytium	The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized subscription cancellation due to a missing capability check on the pt_cancel_subscription function in …	CWE-862 Missing Authorization	CVE-2023-7287	2024-10-18 02:28	2024-10-16	Show	GitHub Exploit DB Packet Storm

251493	4.3	MEDIUM Network	paytium	paytium	The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the update_profile_preference function in versi…	CWE-862 Missing Authorization	CVE-2023-7288	2024-10-18 02:27	2024-10-16	Show	GitHub Exploit DB Packet Storm

251494	6.8	MEDIUM Physics	microsoft	windows_server_2022_23h2 windows_10_1809 windows_server_2019 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_11_23h2 windows_11_24h2	Windows Mobile Broadband Driver Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43543	2024-10-18 02:23	2024-10-9	Show	GitHub Exploit DB Packet Storm

251495	6.7	MEDIUM Local	google	android	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39438	2024-10-18 02:19	2024-10-9	Show	GitHub Exploit DB Packet Storm

251496	6.7	MEDIUM Local	google	android	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39437	2024-10-18 02:18	2024-10-9	Show	GitHub Exploit DB Packet Storm

251497	6.7	MEDIUM Local	google	android	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39436	2024-10-18 02:16	2024-10-9	Show	GitHub Exploit DB Packet Storm

251498	7.5	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43544	2024-10-18 02:16	2024-10-9	Show	GitHub Exploit DB Packet Storm

251499	4.3	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin does not encrypt callsigns in messages. It is advised to not use sensitive information in callsigns when using this and previous versions of the plugin. Update to curren…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2024-45838	2024-10-18 02:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

251500	6.5	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin does not use SecureRandom when generating passwords for sharing cryptographic keys. The random function in use makes it easier for attackers to brute force this password…	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2024-45723	2024-10-18 02:15	2024-09-27	Show	GitHub Exploit DB Packet Storm