Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188391 3.5 注意 menhir - Drupal 用の Heartbeat モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2048 2012-09-25 17:38 2010-05-19 Show GitHub Exploit DB Packet Storm
188392 7.5 危険 joenasejes - JE CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2047 2012-09-25 17:38 2010-05-25 Show GitHub Exploit DB Packet Storm
188393 4.3 警告 magnoware - DataTrack System の Home.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2043 2012-09-25 17:38 2010-05-25 Show GitHub Exploit DB Packet Storm
188394 7.5 危険 percha - Joomla! 用の Percha Downloads Attach コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2037 2012-09-25 17:38 2010-05-25 Show GitHub Exploit DB Packet Storm
188395 7.5 危険 percha - Joomla! 用の Percha Fields Attach コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2036 2012-09-25 17:38 2010-05-25 Show GitHub Exploit DB Packet Storm
188396 7.5 危険 percha - Joomla! 用の Percha Gallery コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2035 2012-09-25 17:38 2010-05-25 Show GitHub Exploit DB Packet Storm
188397 7.5 危険 percha - Joomla! 用の Percha Image Attach コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2034 2012-09-25 17:38 2010-05-25 Show GitHub Exploit DB Packet Storm
188398 7.5 危険 percha - Joomla! 用の perchacategoriestree コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2033 2012-09-25 17:38 2010-05-25 Show GitHub Exploit DB Packet Storm
188399 7.2 危険 キングソフト株式会社 - Kingsoft Webshield で使用される KAVSafe.sys における任意のカーネルメモリを上書きされる脆弱性 CWE-119
バッファエラー 		CVE-2010-2031 2012-09-25 17:38 2010-05-24 Show GitHub Exploit DB Packet Storm
188400 10 危険 mgenti - k23productions TFTPUtil GUI におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2028 2012-09-25 17:38 2010-05-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1051 - - - CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists that could result in the exposure of data when network traffic is being sniffed by an attacker. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2025-1060 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1052 - - - CWE-770: Allocation of Resources Without Limits or Throttling vulnerability exists that could cause communications to stop when malicious packets are sent to the webserver of the device. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2025-1059 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1053 - - - CWE-494: Download of Code Without Integrity Check vulnerability exists that could render the device inoperable when malicious firmware is downloaded. CWE-494
 Download of Code Without Integrity Check 		CVE-2025-1058 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1054 - - - CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of engineering workstation when specific driver interface is invoked locally by an authenticated user with cr… CWE-20
 Improper Input Validation  		CVE-2024-10083 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1055 6.4 MEDIUM
Network 		- - The Puzzles theme for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 4.2.4 due to insufficient input sanitization and output escaping on user … CWE-79
Cross-site Scripting 		CVE-2025-0837 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1056 8.1 HIGH
Network 		- - The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.2.4 via deserialization of untrus… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-13770 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1057 4.3 MEDIUM
Network 		- - The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the update_metadata() function in all ve… CWE-284
Improper Access Control 		CVE-2024-13229 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1058 6.4 MEDIUM
Network 		- - The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Rank Math API in all versions up to, and including, 1.0.23… CWE-79
Cross-site Scripting 		CVE-2024-13227 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1059 9.8 CRITICAL
Network 		- - The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campress_woocommerce_get_ajax_products' function. This makes it possible for… CWE-22
Path Traversal 		CVE-2024-10763 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1060 - - - Dell BSAFE SSL-J, versions prior to 6.6 and versions 7.0 through 7.2, contains a deadlock vulnerability. A remote attacker could potentially exploit this vulnerability, leading to a Denial of Service. - CVE-2024-29172 2025-02-13 13:15 2025-02-12 Show GitHub Exploit DB Packet Storm