Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187131 3.5 注意 Pattern Insight - Pattern Insight の Web インタフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4938 2012-11-20 15:15 2012-11-18 Show GitHub Exploit DB Packet Storm
187132 6.8 警告 Pattern Insight - Pattern Insight の Web インタフェースにおける Web セッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2012-4937 2012-11-20 15:14 2012-11-18 Show GitHub Exploit DB Packet Storm
187133 6.8 警告 Pattern Insight - Pattern Insight の Web インタフェースにおけるクリックジャッキング攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2012-4936 2012-11-20 15:12 2012-11-18 Show GitHub Exploit DB Packet Storm
187134 6.8 警告 Pattern Insight - Pattern Insight の Web インタフェースにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4935 2012-11-20 15:10 2012-11-18 Show GitHub Exploit DB Packet Storm
187135 5 警告 Marko Kreen - PostgreSQL 用 PgBouncer pooler におけるサービス運用妨害 (デーモンの停止) の脆弱性 CWE-119
バッファエラー 		CVE-2012-4575 2012-11-20 15:00 2012-11-18 Show GitHub Exploit DB Packet Storm
187136 4.3 警告 Tom Wilkason - SnackAmp におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5917 2012-11-20 14:59 2012-11-17 Show GitHub Exploit DB Packet Storm
187137 5 警告 Neocrome - Neocrome Seditio における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5916 2012-11-20 14:59 2012-11-17 Show GitHub Exploit DB Packet Storm
187138 5 警告 Neocrome - Neocrome Seditio における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5915 2012-11-20 14:58 2012-11-17 Show GitHub Exploit DB Packet Storm
187139 2.6 注意 Neocrome - Neocrome Seditio の system/functions.php 内の sed_import 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5914 2012-11-20 14:57 2012-11-17 Show GitHub Exploit DB Packet Storm
187140 4.3 警告 WordPress Integrator Project - WordPress 用 WordPress Integrator モジュールの wp-integrator.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5913 2012-11-20 14:56 2012-11-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
421 6.4 MEDIUM
Network 		- - The Embed Any Document – Embed PDF, Word, PowerPoint and Excel Files plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.7.5 via the 'embeddoc' s… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2025-1043 2025-02-20 21:15 2025-02-20 Show GitHub Exploit DB Packet Storm
422 - - - A vulnerability, that could result in Remote Code Execution (RCE), has been found in DocsGPT. Due to improper parsing of JSON data using eval() an unauthorized attacker could send arbitrary Python co… - CVE-2025-0868 2025-02-20 21:15 2025-02-20 Show GitHub Exploit DB Packet Storm
423 7.1 HIGH
Network 		- - IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expo… CWE-611
XXE 		CVE-2024-49781 2025-02-20 21:15 2025-02-20 Show GitHub Exploit DB Packet Storm
424 4.3 MEDIUM
Network 		- - IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages could allow a remote attacker to bypass security restrictions, caused by improper validation and management of authentication cookies. By modifyi… CWE-352
 Origin Validation Error 		CVE-2024-49779 2025-02-20 21:15 2025-02-20 Show GitHub Exploit DB Packet Storm
425 4.3 MEDIUM
Network 		- - IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages with Watson Assistant chat feature enabled the application establishes a session when a user logs in and uses chat, but the chat session is sti… CWE-384
 Session Fixation 		CVE-2024-49344 2025-02-20 21:15 2025-02-20 Show GitHub Exploit DB Packet Storm
426 5.4 MEDIUM
Network 		- - IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages is vulnerable to HTML injection, caused by improper validation of user-supplied input of text fields used to construct workflow email notific… CWE-80
Basic XSS 		CVE-2024-49337 2025-02-20 21:15 2025-02-20 Show GitHub Exploit DB Packet Storm
427 - - - IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages could allow a remote attacker to traverse directories on the system. An attacker with privileges to perform Import Configuration could send a speci… - CVE-2024-49780 2025-02-20 21:15 2025-02-20 Show GitHub Exploit DB Packet Storm
428 5.3 MEDIUM
Network 		- - The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the engtz_wd_save_dropship AJAX endpoint in a… CWE-862
 Missing Authorization 		CVE-2025-1483 2025-02-20 19:15 2025-02-20 Show GitHub Exploit DB Packet Storm
429 6.4 MEDIUM
Network 		- - The Typed JS: A typewriter style animation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘typespeed’ parameter in all versions up to, and including, 1.2.0 due to insuffici… CWE-79
Cross-site Scripting 		CVE-2025-1328 2025-02-20 19:15 2025-02-20 Show GitHub Exploit DB Packet Storm
430 6.5 MEDIUM
Network 		- - The Legoeso PDF Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘checkedVals’ parameter in all versions up to, and including, 1.2.2 due to insufficient escaping on the … CWE-89
SQL Injection 		CVE-2025-0866 2025-02-20 19:15 2025-02-20 Show GitHub Exploit DB Packet Storm