Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188241 4.3 警告 osCSS - osCSS の admin/currencies.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2856 2012-09-25 17:38 2010-07-24 Show GitHub Exploit DB Packet Storm
188242 6.8 警告 jared meeker - EVH の modfile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2855 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
188243 2.6 注意 jared meeker - EVH の modfile.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2854 2012-09-25 17:38 2010-07-24 Show GitHub Exploit DB Packet Storm
188244 7.5 危険 iScripts - iScripts VisualCaster の flashPlayer/playVideo.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2853 2012-09-25 17:38 2010-07-24 Show GitHub Exploit DB Packet Storm
188245 7.5 危険 OrdaSoft - Joomla! 用の BookLibrary From Same Author コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2851 2012-09-25 17:38 2010-07-24 Show GitHub Exploit DB Packet Storm
188246 6.8 警告 nusoftware - nuBuilder の productionnu2/fileuploader.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2850 2012-09-25 17:38 2010-07-24 Show GitHub Exploit DB Packet Storm
188247 4.3 警告 nusoftware - nuBuilder の productionnu2/nuedit.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2849 2012-09-25 17:38 2010-07-24 Show GitHub Exploit DB Packet Storm
188248 4.3 警告 newanz - Newanz NewsOffice の news_show.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2844 2012-09-25 17:38 2010-07-24 Show GitHub Exploit DB Packet Storm
188249 6.8 警告 Thomas E. Dickey - Lynx の WWW/Library/Implementation/HTParse.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2810 2012-09-25 17:38 2010-08-20 Show GitHub Exploit DB Packet Storm
188250 2.6 注意 joachim fritschi - phpCAS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2796 2012-09-25 17:38 2010-08-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 11, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
141 - - - Cross-Site Request Forgery (CSRF) vulnerability in ElbowRobo Read More Copy Link allows Stored XSS. This issue affects Read More Copy Link: from n/a through 1.0.2. CWE-352
 Origin Validation Error 		CVE-2025-25148 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
142 - - - Cross-Site Request Forgery (CSRF) vulnerability in Phillip.Gooch Auto SEO allows Stored XSS. This issue affects Auto SEO: from n/a through 2.5.6. CWE-352
 Origin Validation Error 		CVE-2025-25147 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
143 - - - Cross-Site Request Forgery (CSRF) vulnerability in saleandro Songkick Concerts and Festivals allows Cross Site Request Forgery. This issue affects Songkick Concerts and Festivals: from n/a through 0.… CWE-352
 Origin Validation Error 		CVE-2025-25146 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
144 - - - Cross-Site Request Forgery (CSRF) vulnerability in jordan.hatch Infusionsoft Analytics allows Cross Site Request Forgery. This issue affects Infusionsoft Analytics: from n/a through 2.0. CWE-352
 Origin Validation Error 		CVE-2025-25145 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
145 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in theasys Theasys allows Stored XSS. This issue affects Theasys: from n/a through 1.0.1. CWE-79
Cross-site Scripting 		CVE-2025-25144 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
146 - - - Cross-Site Request Forgery (CSRF) vulnerability in ibasit GlobalQuran allows Cross Site Request Forgery. This issue affects GlobalQuran: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-25143 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
147 - - - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in zankover Fami Sales Popup allows PHP Local File Inclusion. This issue affects … CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2025-25141 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
148 - - - Cross-Site Request Forgery (CSRF) vulnerability in Scriptonite Simple User Profile allows Stored XSS. This issue affects Simple User Profile: from n/a through 1.9. CWE-352
 Origin Validation Error 		CVE-2025-25140 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
149 - - - Cross-Site Request Forgery (CSRF) vulnerability in Cynob IT Consultancy WP Custom Post RSS Feed allows Stored XSS. This issue affects WP Custom Post RSS Feed: from n/a through 1.0.0. CWE-352
 Origin Validation Error 		CVE-2025-25139 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
150 - - - Cross-Site Request Forgery (CSRF) vulnerability in Rishi On Page SEO + Whatsapp Chat Button allows Stored XSS. This issue affects On Page SEO + Whatsapp Chat Button: from n/a through 2.0.0. CWE-352
 Origin Validation Error 		CVE-2025-25138 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm