Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210221	5.4	警告	dog whistle project	-	Android 用 Dog Whistle アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5910	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210222	5.4	警告	watcha	-	Android 用 watcha アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5909	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210223	5.4	警告	kmart	-	Android 用 Kmart アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5908	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210224	5.4	警告	libiitech	-	Android 用 Pet Salon アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5907	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210225	5.4	警告	youngmoney	-	Android 用 Lil Wayne Slots: FREE SLOTS アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5906	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210226	5.4	警告	meucarrinho	-	Android 用 Grocery List - Tomatoes アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5905	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210227	5.4	警告	miniinthebox	-	Android 用 MiniInTheBox Online Shopping アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5904	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210228	5.4	警告	mobileiron	-	Android 用 Mobile@Work アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5903	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210229	5.4	警告	uacinemas	-	Android 用 UA Cinemas - Mobile ticketing アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5902	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210230	5.4	警告	webelinx	-	Android 用 Beauty Bible - App for Girls アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5901	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252451	-		-	-	DrayTek Vigor3910 devices through 4.3.2.6 are affected by an OS command injection vulnerability that allows an attacker to leverage the recvCmd binary to escape from the emulated instance and inject …	-	CVE-2024-41585	2024-10-8 04:37	2024-10-4	Show	GitHub Exploit DB Packet Storm

252452	-		-	-	A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate acc…	-	CVE-2024-42514	2024-10-8 04:37	2024-10-2	Show	GitHub Exploit DB Packet Storm

252453	5.4	MEDIUM Network	connekthq	ajax_load_more	The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘button_label’ parameter in all versions up to, and including, 7.1.2 due to in…	CWE-79 Cross-site Scripting	CVE-2024-8505	2024-10-8 04:26	2024-10-2	Show	GitHub Exploit DB Packet Storm

252454	6.1	MEDIUM Network	goldplugins	custom_banners	The Custom Banners plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 3…	CWE-79 Cross-site Scripting	CVE-2024-8799	2024-10-8 04:22	2024-10-1	Show	GitHub Exploit DB Packet Storm

252455	8.8	HIGH Network	plugingarden	wp_easy_gallery	The WP Easy Gallery – WordPress Gallery Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the ‘key’ parameter in all versions up to, and including, 4.8.5 due to insufficient e…	CWE-89 SQL Injection	CVE-2024-9018	2024-10-8 04:20	2024-10-1	Show	GitHub Exploit DB Packet Storm

252456	5.0	MEDIUM Network	openstack redhat	heat openstack_platform	An incomplete fix for CVE-2023-1625 was found in openstack-heat. Sensitive information may possibly be disclosed through the OpenStack stack abandon command with the hidden feature set to True and th…	NVD-CWE-noinfo	CVE-2024-7319	2024-10-8 04:15	2024-08-3	Show	GitHub Exploit DB Packet Storm

252457	5.4	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Device Dependencies" feature allows authenticated users to inject…	CWE-79 Cross-site Scripting	CVE-2024-47527	2024-10-8 04:08	2024-10-2	Show	GitHub Exploit DB Packet Storm

252458	5.4	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Rules" feature allows authenticated users to inject arbitra…	CWE-79 Cross-site Scripting	CVE-2024-47525	2024-10-8 04:08	2024-10-2	Show	GitHub Exploit DB Packet Storm

252459	5.4	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Transports" feature allows authenticated users to inject ar…	CWE-79 Cross-site Scripting	CVE-2024-47523	2024-10-8 04:07	2024-10-2	Show	GitHub Exploit DB Packet Storm

252460	9.8	CRITICAL Network	definetlynotai	logicytics	Logicytics is designed to harvest and collect data for forensic analysis. Logicytics has a basic vuln affecting compromised devices from shell injections. This vulnerability is fixed in 2.3.2.	CWE-78 OS Command	CVE-2024-47608	2024-10-8 03:51	2024-10-2	Show	GitHub Exploit DB Packet Storm