Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210671 6 警告 OpenStack - OpenStack Identity および Juno におけるアクセス権を取得される脆弱性 CWE-310
暗号の問題 		CVE-2014-3520 2014-12-4 18:15 2014-07-24 Show GitHub Exploit DB Packet Storm
210672 4.3 警告 OpenStack - OpenStack Dashboard の Users パネルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3475 2014-12-4 18:14 2014-07-23 Show GitHub Exploit DB Packet Storm
210673 3.5 注意 OpenStack - OpenStack Dashboard の Launch Instance メニューの horizon/static/horizon/js/horizon.instances.js におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3474 2014-12-4 18:12 2014-07-23 Show GitHub Exploit DB Packet Storm
210674 4.3 警告 OpenStack - OpenStack Dashboard Horizon Orchestration dashboard の Orchestration/Stack セクションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3473 2014-12-4 18:09 2014-07-23 Show GitHub Exploit DB Packet Storm
210675 4.3 警告 Sunhater - SunHater KCFinder の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3988 2014-12-4 10:42 2014-06-17 Show GitHub Exploit DB Packet Storm
210676 7.2 危険 Thomson Reuters - Thomson Reuters Fixed Assets CS のインストーラにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9141 2014-12-4 10:42 2014-12-1 Show GitHub Exploit DB Packet Storm
210677 4.3 警告 Kennziffer.com - TYPO3 用 Questionnaire (ke_questionnaire) エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4956 2014-12-3 17:00 2011-10-9 Show GitHub Exploit DB Packet Storm
210678 7.5 危険 Kennziffer.com - TYPO3 用 Questionnaire (ke_questionnaire) エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4957 2014-12-3 16:59 2011-10-9 Show GitHub Exploit DB Packet Storm
210679 5.8 警告 アップル
GNU Project		 - GNU patch の util.c におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4651 2014-12-3 16:33 2011-03-11 Show GitHub Exploit DB Packet Storm
210680 7.2 危険 CCH group - CCH Wolters Kluwer ProSystem fx Engagement におけるローカルシステムの権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9113 2014-12-3 16:17 2014-11-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252151 8.8 HIGH
Network 		microsoft windows_server_2008
windows_server_2012
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_server_2019 		Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43589 2024-10-23 04:29 2024-10-9 Show GitHub Exploit DB Packet Storm
252152 8.8 HIGH
Network 		microsoft windows_server_2008
windows_server_2012
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_server_2019 		Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43453 2024-10-23 04:29 2024-10-9 Show GitHub Exploit DB Packet Storm
252153 8.8 HIGH
Network 		microsoft windows_server_2008
windows_server_2012
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_server_2019 		Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43607 2024-10-23 04:03 2024-10-9 Show GitHub Exploit DB Packet Storm
252154 8.8 HIGH
Network 		microsoft windows_server_2008
windows_server_2012
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_server_2019 		Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43608 2024-10-23 03:58 2024-10-9 Show GitHub Exploit DB Packet Storm
252155 6.1 MEDIUM
Network 		androidbubbles endless_posts_navigation Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endless Posts Navigation allows Stored XSS.This issue affects Endless Posts Navigation: from n/a through 2.2.7. CWE-352
 Origin Validation Error 		CVE-2024-49629 2024-10-23 03:57 2024-10-20 Show GitHub Exploit DB Packet Storm
252156 8.8 HIGH
Network 		naudinvladimir ferma.ru.net Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Naudin Vladimir FERMA.Ru.Net allows Blind SQL Injection.This issue affects FERMA.Ru.Net: from n/a… CWE-89
SQL Injection 		CVE-2024-49620 2024-10-23 03:50 2024-10-20 Show GitHub Exploit DB Packet Storm
252157 8.8 HIGH
Network 		acespritech social_link_groups Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Acespritech Solutions Pvt. Ltd. Social Link Groups allows Blind SQL Injection.This issue affects … CWE-89
SQL Injection 		CVE-2024-49619 2024-10-23 03:48 2024-10-20 Show GitHub Exploit DB Packet Storm
252158 9.8 CRITICAL
Network 		majas-lapu-izstrade cartbounty Cross-Site Request Forgery (CSRF) vulnerability in Streamline.Lv CartBounty – Save and recover abandoned carts for WooCommerce allows Cross Site Request Forgery.This issue affects CartBounty – Save a… CWE-352
 Origin Validation Error 		CVE-2024-47634 2024-10-23 03:46 2024-10-20 Show GitHub Exploit DB Packet Storm
252159 8.8 HIGH
Network 		dublue table_of_contents_plus Cross-Site Request Forgery (CSRF) vulnerability in Michael Tran Table of Contents Plus allows Cross Site Request Forgery.This issue affects Table of Contents Plus: from n/a through 2408. CWE-352
 Origin Validation Error 		CVE-2024-49250 2024-10-23 03:44 2024-10-20 Show GitHub Exploit DB Packet Storm
252160 8.8 HIGH
Network 		wpwebinfotech social_auto_poster Cross-Site Request Forgery (CSRF) vulnerability in WPWeb Social Auto Poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through 5.3.15. CWE-352
 Origin Validation Error 		CVE-2024-49272 2024-10-23 03:40 2024-10-20 Show GitHub Exploit DB Packet Storm