Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228671 4.3 警告 TYPO3 Association - TYPO3 のインストールツールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3531 2012-11-15 14:26 2012-08-15 Show GitHub Exploit DB Packet Storm
228672 4.3 警告 TYPO3 Association - TYPO3 の t3lib_div::quoteJSvalue API 関数におけるクロスサイトスクリプティングの脆弱性 CWE-Other
その他 		CVE-2012-3530 2012-11-15 14:25 2012-08-15 Show GitHub Exploit DB Packet Storm
228673 3.5 注意 TYPO3 Association - TYPO3 のバックエンドの configuration モジュールにおける暗号鍵を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3529 2012-11-15 14:24 2012-08-15 Show GitHub Exploit DB Packet Storm
228674 4 警告 TYPO3 Association - TYPO3 のバックエンドにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3528 2012-11-15 14:23 2012-08-15 Show GitHub Exploit DB Packet Storm
228675 4.6 警告 TYPO3 Association - TYPO3 のバックエンドのヘルプシステムにおける任意のオブジェクトのシリアル化を解除される脆弱性 CWE-310
暗号の問題 		CVE-2012-3527 2012-11-15 14:22 2012-08-15 Show GitHub Exploit DB Packet Storm
228676 7.5 危険 Zabbix - Zabbix の frontends/php/popup_bitem.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3435 2012-11-15 12:09 2012-07-18 Show GitHub Exploit DB Packet Storm
228677 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5287 2012-11-14 16:07 2012-11-2 Show GitHub Exploit DB Packet Storm
228678 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5286 2012-11-14 16:07 2012-11-2 Show GitHub Exploit DB Packet Storm
228679 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における脆弱性 CWE-noinfo
情報不足 		CVE-2012-5673 2012-11-14 16:07 2012-11-2 Show GitHub Exploit DB Packet Storm
228680 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5285 2012-11-14 16:06 2012-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249451 5.4 MEDIUM
Network 		webbricks web_bricks_addons Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Web Bricks Web Bricks Addons for Elementor allows Stored XSS.This issue affects Web Bricks… CWE-79
Cross-site Scripting 		CVE-2024-49665 2024-11-2 03:55 2024-10-29 Show GitHub Exploit DB Packet Storm
249452 6.1 MEDIUM
Network 		chatplusjp chatplusjp Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in allows Reflected XSS.This issue affects chatplusjp: from n/a through 1.02. CWE-79
Cross-site Scripting 		CVE-2024-49664 2024-11-2 03:55 2024-10-29 Show GitHub Exploit DB Packet Storm
249453 6.1 MEDIUM
Network 		elenazhyvohliad ucat Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Elena Zhyvohliad uCAT – Next Story allows Reflected XSS.This issue affects uCAT – Next Sto… CWE-79
Cross-site Scripting 		CVE-2024-49663 2024-11-2 03:55 2024-10-29 Show GitHub Exploit DB Packet Storm
249454 5.4 MEDIUM
Network 		nervythemes local_business_addons_for_elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NervyThemes Local Business Addons For Elementor allows Stored XSS.This issue affects Local… CWE-79
Cross-site Scripting 		CVE-2024-49667 2024-11-2 03:48 2024-10-29 Show GitHub Exploit DB Packet Storm
249455 4.3 MEDIUM
Network 		giuliopanda bulk_images_optimizer The Bulk images optimizer: Resize, optimize, convert to webp, rename … plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_configura… CWE-862
 Missing Authorization 		CVE-2024-9361 2024-11-2 03:46 2024-10-18 Show GitHub Exploit DB Packet Storm
249456 9.8 CRITICAL
Network 		zte wrtm326_firmware The wireless router WRTM326 from SECOM does not properly validate a specific parameter. An unauthenticated remote attacker could execute arbitrary system commands by sending crafted requests. CWE-78
OS Command  		CVE-2024-10119 2024-11-2 03:40 2024-10-18 Show GitHub Exploit DB Packet Storm
249457 6.5 MEDIUM
Network 		fabianros blood_bank_management_system A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank Management System 1.0. Affected by this issue is some unknown functionality of the file /file/delete.p… CWE-352
 Origin Validation Error 		CVE-2024-10448 2024-11-2 03:26 2024-10-28 Show GitHub Exploit DB Packet Storm
249458 4.3 MEDIUM
Network 		infinite-scroll infinite-scroll The Infinite-Scroll plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.2. This is due to missing or incorrect nonce validation on the process_a… CWE-352
 Origin Validation Error 		CVE-2024-10040 2024-11-2 03:26 2024-10-18 Show GitHub Exploit DB Packet Storm
249459 6.5 MEDIUM
Network 		cisco secure_firewall_management_center A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an af… CWE-89
SQL Injection 		CVE-2024-20472 2024-11-2 03:22 2024-10-24 Show GitHub Exploit DB Packet Storm
249460 6.5 MEDIUM
Network 		cisco secure_firewall_management_center A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an af… CWE-89
SQL Injection 		CVE-2024-20471 2024-11-2 03:16 2024-10-24 Show GitHub Exploit DB Packet Storm