Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188741 4.3 警告 ヒューレット・パッカード - HP SOA Registry Foundation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0449 2012-09-25 17:38 2010-03-29 Show GitHub Exploit DB Packet Storm
188742 5 警告 ヒューレット・パッカード - HP SOA Registry Foundation における "データへの許可されないアクセス権" を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0448 2012-09-25 17:38 2010-03-29 Show GitHub Exploit DB Packet Storm
188743 10 危険 ヒューレット・パッカード - HP OVPI の Web サーバの helpmanager servlet における任意のコマンドを実行される脆弱性 CWE-287
不適切な認証 		CVE-2010-0447 2012-09-25 17:38 2010-03-8 Show GitHub Exploit DB Packet Storm
188744 4.3 警告 ヒューレット・パッカード - HP DreamScreen における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0446 2012-09-25 17:38 2010-02-11 Show GitHub Exploit DB Packet Storm
188745 10 危険 ヒューレット・パッカード - HP NNM における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0445 2012-09-25 17:38 2010-02-9 Show GitHub Exploit DB Packet Storm
188746 10 危険 ヒューレット・パッカード - Solaris 上で稼動する HP Operations Agent における任意のコードを実行される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0444 2012-09-25 17:38 2010-02-8 Show GitHub Exploit DB Packet Storm
188747 6.8 警告 ヒューレット・パッカード - Alpha プラットフォームで稼動する HP OpenVMS の RMS における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0443 2012-09-25 17:38 2010-02-2 Show GitHub Exploit DB Packet Storm
188748 6.5 警告 OTRS プロジェクト - OTRS の OTRS-Core の Kernel/System/Ticket.pm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0438 2012-09-25 17:38 2010-02-8 Show GitHub Exploit DB Packet Storm
188749 4 警告 OpenTTD - OpenTTD におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0406 2012-09-25 17:38 2010-05-5 Show GitHub Exploit DB Packet Storm
188750 6.5 警告 OpenTTD - OpenTTD におけるサービス運用妨害 (DoS) の脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0402 2012-09-25 17:38 2010-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
781 - - - Cross-Site Request Forgery (CSRF) vulnerability in jordan.hatch Infusionsoft Analytics allows Cross Site Request Forgery. This issue affects Infusionsoft Analytics: from n/a through 2.0. CWE-352
 Origin Validation Error 		CVE-2025-25145 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
782 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in theasys Theasys allows Stored XSS. This issue affects Theasys: from n/a through 1.0.1. CWE-79
Cross-site Scripting 		CVE-2025-25144 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
783 - - - Cross-Site Request Forgery (CSRF) vulnerability in ibasit GlobalQuran allows Cross Site Request Forgery. This issue affects GlobalQuran: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-25143 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
784 - - - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in zankover Fami Sales Popup allows PHP Local File Inclusion. This issue affects … CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2025-25141 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
785 - - - Cross-Site Request Forgery (CSRF) vulnerability in Scriptonite Simple User Profile allows Stored XSS. This issue affects Simple User Profile: from n/a through 1.9. CWE-352
 Origin Validation Error 		CVE-2025-25140 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
786 - - - Cross-Site Request Forgery (CSRF) vulnerability in Cynob IT Consultancy WP Custom Post RSS Feed allows Stored XSS. This issue affects WP Custom Post RSS Feed: from n/a through 1.0.0. CWE-352
 Origin Validation Error 		CVE-2025-25139 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
787 - - - Cross-Site Request Forgery (CSRF) vulnerability in Rishi On Page SEO + Whatsapp Chat Button allows Stored XSS. This issue affects On Page SEO + Whatsapp Chat Button: from n/a through 2.0.0. CWE-352
 Origin Validation Error 		CVE-2025-25138 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
788 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in shujahat21 Optimate Ads allows Stored XSS. This issue affects Optimate Ads: from n/a through 1.0.… CWE-79
Cross-site Scripting 		CVE-2025-25136 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
789 - - - Cross-Site Request Forgery (CSRF) vulnerability in Victor Barkalov Custom Links On Admin Dashboard Toolbar allows Stored XSS. This issue affects Custom Links On Admin Dashboard Toolbar: from n/a thro… CWE-352
 Origin Validation Error 		CVE-2025-25135 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
790 - - - Cross-Site Request Forgery (CSRF) vulnerability in orlandolac Facilita Form Tracker allows Stored XSS. This issue affects Facilita Form Tracker: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-25128 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm