Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188451 7.5 危険 jtmreseller - Joomla! 用の JTM Reseller コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1877 2012-09-25 17:38 2010-05-12 Show GitHub Exploit DB Packet Storm
188452 7.5 危険 jvehicles - Joomla! 用の Jvehicles コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1873 2012-09-25 17:38 2010-05-12 Show GitHub Exploit DB Packet Storm
188453 5 警告 The PHP Group - PHP の html_entiry_decode 関数におけるメモリ破壊を引き起こされる脆弱性 CWE-200
情報漏えい 		CVE-2010-1860 2012-09-25 17:38 2010-05-6 Show GitHub Exploit DB Packet Storm
188454 4.3 警告 マイクロソフト - Microsoft Internet Explorer における特定の人物および製品検索を特定される脆弱性 CWE-200
情報漏えい 		CVE-2010-1852 2012-09-25 17:38 2010-05-7 Show GitHub Exploit DB Packet Storm
188455 7.5 危険 Joomla! - Joomla! 用の Newsfeeds における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1739 2012-09-25 17:38 2010-05-6 Show GitHub Exploit DB Packet Storm
188456 4.9 警告 マイクロソフト - Microsoft Windows 2000 などのカーネルの win32k.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1735 2012-09-25 17:38 2010-05-6 Show GitHub Exploit DB Packet Storm
188457 4.9 警告 マイクロソフト - Microsoft Windows 2000 などのカーネルの win32k.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1734 2012-09-25 17:38 2010-05-6 Show GitHub Exploit DB Packet Storm
188458 6.8 警告 OCS Inventory Team - OCS Inventory NG における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1733 2012-09-25 17:38 2010-05-6 Show GitHub Exploit DB Packet Storm
188459 6.8 警告 joomlacomponent.inetlanka - Joomla! 用の iNetLanka Contact Us Draw Root Map におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1723 2012-09-25 17:38 2010-05-4 Show GitHub Exploit DB Packet Storm
188460 6.8 警告 moto-treks - Joomla! 用の mtfireeagle コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1719 2012-09-25 17:38 2010-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
891 - - - Missing Authorization vulnerability in ashamil OPSI Israel Domestic Shipments allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects OPSI Israel Domestic Shipment… CWE-862
 Missing Authorization 		CVE-2025-23766 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
892 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 Data Dash allows Reflected XSS. This issue affects Data Dash: from n/a through 1.2.3. CWE-79
Cross-site Scripting 		CVE-2025-23751 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
893 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in devbunchuk Custom Widget Creator allows Reflected XSS. This issue affects Custom Widget Creator: … CWE-79
Cross-site Scripting 		CVE-2025-23750 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
894 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Singsys -Awesome Gallery allows Reflected XSS. This issue affects Singsys -Awesome Galle… CWE-79
Cross-site Scripting 		CVE-2025-23748 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
895 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Podamibe Nepal Podamibe Twilio Private Call allows Reflected XSS. This issue affects Podamibe Twi… CWE-79
Cross-site Scripting 		CVE-2025-23742 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
896 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tauhidul Alam Advanced Angular Contact Form allows Reflected XSS. This issue affects Advanced Ang… CWE-79
Cross-site Scripting 		CVE-2025-23658 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
897 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WordPress-to-candidate for Salesforce CRM allows Reflected XSS. This issue affects WordP… CWE-79
Cross-site Scripting 		CVE-2025-23657 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
898 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Contact Form 7 – Paystack Add-on allows Reflected XSS. This issue affects Contact Form 7… CWE-79
Cross-site Scripting 		CVE-2025-23655 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
899 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Form To Online Booking allows Reflected XSS. This issue affects Form To Online Booking: … CWE-79
Cross-site Scripting 		CVE-2025-23653 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
900 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Add custom content after post allows Reflected XSS. This issue affects Add custom conten… CWE-79
Cross-site Scripting 		CVE-2025-23652 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm