Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210411	5.4	警告	Tektite	-	Android 用 Turbo River Racing Free アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5712	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210412	5.4	警告	マイクロソフト	-	Android 用 Microsoft Tech Companion アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5711	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210413	5.4	警告	Fast Lane Institute for Knowledge Transfer GmbH	-	Android 用 Cisco Class Locator Fast Lane アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5710	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210414	5.4	警告	Sunstorm Games LLC	-	Android 用 Donut Maker アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5709	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210415	5.4	警告	GameInfo	-	Android 用 Best Racing/moto Games Ranking アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5708	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210416	5.4	警告	Animoca	-	Android 用 Bunny Run アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5707	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210417	5.4	警告	Wizard Works	-	Android 用 SomNote - Journal/Memo アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5706	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210418	5.4	警告	SEGA of America	-	Android 用 Sonic CD Lite アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5705	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210419	5.4	警告	mr384 project	-	Android 用 Mzone Login アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5665	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210420	5.4	警告	playstudio	-	Android 用 Brisbane & Queensland Alert アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-4906	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251401	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Carl Alberto Simple Custom Admin allows Reflected XSS.This issue affects Simple Custom Adm…	-	CVE-2024-49647	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251402	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ioannup Code Generate allows Reflected XSS.This issue affects Code Generate: from n/a thro…	CWE-79 Cross-site Scripting	CVE-2024-49646	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251403	6.4	MEDIUM Network	-	-	The Newsletters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's newsletters_video shortcode in all versions up to, and including, 4.9.9.4 due to insufficient input …	CWE-79 Cross-site Scripting	CVE-2024-10181	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251404	-		-	-	A vulnerability was found in LUNAD3v AreaLoad up to 1a1103182ed63a06dde63d1712f3262eda19c3ec. It has been rated as critical. This issue affects some unknown processing of the file request.php. The ma…	CWE-89 SQL Injection	CVE-2017-20195	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251405	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jinwen js allows Reflected XSS.This issue affects js paper: from n/a through 2.5.7.	CWE-79 Cross-site Scripting	CVE-2024-49678	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251406	4.3	MEDIUM Network	-	-	The Move Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.5 via the render function in includes/widgets/accordion/wi…	-	CVE-2024-10360	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251407	-		-	-	The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sa_subscribe shortcode in all versions up to, and including, 3.7.5 d…	CWE-79 Cross-site Scripting	CVE-2024-10233	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251408	6.4	MEDIUM Network	-	-	The StreamWeasels YouTube Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-youtube-embed shortcode in all versions up to, and including, 1.3.2 due to …	CWE-79 Cross-site Scripting	CVE-2024-10185	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251409	6.4	MEDIUM Network	-	-	The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-kick-embed shortcode in all versions up to, and including, 1.1.1 due to insuff…	CWE-79 Cross-site Scripting	CVE-2024-10184	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

251410	6.4	MEDIUM Network	-	-	The Kata Plus – Addons for Elementor – Widgets, Extensions and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1…	CWE-79 Cross-site Scripting	CVE-2024-9376	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm