Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188421 4.3 警告 ヒューレット・パッカード - Windows 用の HP Virtual Connect Enterprise Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1969 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
188422 6.8 警告 ヒューレット・パッカード - Windows 用の HP Insight Software Installer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-1968 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
188423 3.6 注意 ヒューレット・パッカード - Windows 用の HP Insight Software Installer におけるデータを変更される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1967 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
188424 4.6 警告 ヒューレット・パッカード - Windows 用の HP Insight Control パワーマネージメントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-1966 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
188425 7.5 危険 ヒューレット・パッカード - Windows 用の HP Insight Orchestration におけるデータを変更される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1965 2012-09-25 17:38 2010-07-1 Show GitHub Exploit DB Packet Storm
188426 7.5 危険 ヒューレット・パッカード - HP OV NNM の ovwebsnmpsrv.exe におけるバッファオーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2010-1964 2012-09-25 17:38 2010-06-17 Show GitHub Exploit DB Packet Storm
188427 4.3 警告 ヒューレット・パッカード - HP ServiceCenter におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1963 2012-09-25 17:38 2010-06-2 Show GitHub Exploit DB Packet Storm
188428 10 危険 ヒューレット・パッカード - HP StorageWorks Storage Mirroring における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1962 2012-09-25 17:38 2010-06-2 Show GitHub Exploit DB Packet Storm
188429 10 危険 ヒューレット・パッカード - HP OV NNM の ovwebsnmpsrv.exe の ovutil.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1961 2012-09-25 17:38 2010-06-8 Show GitHub Exploit DB Packet Storm
188430 10 危険 ヒューレット・パッカード - HP OV NNM の ovwebsnmpsrv.exe のエラー処理機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1960 2012-09-25 17:38 2010-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
521 - - - Lexmark MX6500 LW75.JD.P296 and previous devices have Incorrect Access Control via the access control settings. - CVE-2020-35546 2025-02-21 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
522 - - - Certain Lexmark products through 2020-05-25 allow XSS which allows an attacker to obtain session credentials and other sensitive information. - CVE-2020-13481 2025-02-21 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
523 - - - Various Lexmark devices have CSRF that allows an attacker to modify the configuration of the device. - CVE-2020-10095 2025-02-21 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
524 7.5 HIGH
Network 		enituretechnology ltl_freight_quotes The LTL Freight Quotes – XPO Edition plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' and 'dropship_edit_id' parameters in all versions up to, and including, 4.3.7 due to insuffi… CWE-89
SQL Injection 		CVE-2024-13490 2025-02-21 01:14 2025-02-12 Show GitHub Exploit DB Packet Storm
525 7.5 HIGH
Network 		enituretechnology small_package_quotes The Small Package Quotes – UPS Edition plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' parameter in all versions up to, and including, 4.5.16 due to insufficient escaping on the… CWE-89
SQL Injection 		CVE-2024-13475 2025-02-21 01:10 2025-02-12 Show GitHub Exploit DB Packet Storm
526 8.8 HIGH
Network 		apusthemes superio The Apus Framework plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'import_page_options' functio… CWE-862
 Missing Authorization 		CVE-2024-12296 2025-02-21 01:09 2025-02-12 Show GitHub Exploit DB Packet Storm
527 9.8 CRITICAL
Network 		apusthemes superio The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.2.76. This is due to the plugin allowing a user to supply the 'role' field when… CWE-266
 Incorrect Privilege Assignment 		CVE-2024-12213 2025-02-21 01:08 2025-02-12 Show GitHub Exploit DB Packet Storm
528 - - - Relative Path Traversal vulnerability in Ping Identity PingAM Java Policy Agent allows Parameter Injection.This issue affects PingAM Java Policy Agent: through 5.10.3, through 2023.11.1, through 2024… - CVE-2025-20059 2025-02-21 00:15 2025-02-21 Show GitHub Exploit DB Packet Storm
529 - - - PHPJabbers Restaurant Booking System v3.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) in the "seat_name, plugin_sms_api_key, plugin_sms_country_code, title, name" parameters. - CVE-2023-51315 2025-02-21 00:15 2025-02-21 Show GitHub Exploit DB Packet Storm
530 - - - PHPJabbers Restaurant Booking System v3.0 is vulnerable to Reflected Cross-Site Scripting (XSS) in Reservations menu, Schedule section date parameter. - CVE-2023-51312 2025-02-21 00:15 2025-02-21 Show GitHub Exploit DB Packet Storm