Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 13, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
189471	4.3	警告	Nuked-Klan	-	Nuked-Klan の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6090	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

189472	9.3	危険	mebiblio	-	meBiblio の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6089	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

189473	7.5	危険	hotscripts	-	HotScripts の Clone Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6084	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

189474	7.5	危険	icebb	-	IceBB の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6083	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

189475	5	警告	Alexander Barton	-	ngIRCd の irc-channel.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6062	2012-09-25 16:59	2007-11-20	Show	GitHub Exploit DB Packet Storm

189476	4.3	警告	Liferay	-	Liferay Portal の c/portal/login におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6055	2012-09-25 16:59	2007-11-20	Show	GitHub Exploit DB Packet Storm

189477	9.3	危険	IBM	-	IBM DB2 UDB における脆弱性	CWE-399 リソース管理の問題	CVE-2007-6053	2012-09-25 16:59	2007-11-20	Show	GitHub Exploit DB Packet Storm

189478	7.8	危険	IBM	-	IBM DB2 UDB におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-6052	2012-09-25 16:59	2007-11-20	Show	GitHub Exploit DB Packet Storm

189479	10	危険	IBM	-	IBM DB2 UDB における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6051	2012-09-25 16:59	2007-11-20	Show	GitHub Exploit DB Packet Storm

189480	7.2	危険	IBM	-	IBM DB2 UDB の DB2LICD における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6050	2012-09-25 16:59	2007-11-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
361	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins LLC Button Block allows Stored XSS.This issue affects Button Block: from n/a through 1.1…	CWE-79 Cross-site Scripting	CVE-2025-22815	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

362	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Dylan James Zephyr Admin Theme allows Cross Site Request Forgery.This issue affects Zephyr Admin Theme: from n/a through 1.4.1.	CWE-352 Origin Validation Error	CVE-2025-22814	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

363	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ChatBot for WordPress - WPBot Conversational Forms for ChatBot allows Stored XSS.This issue affec…	CWE-79 Cross-site Scripting	CVE-2025-22813	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

364	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FlickDevs News Ticker Widget for Elementor allows Stored XSS.This issue affects News Ticker Widge…	CWE-79 Cross-site Scripting	CVE-2025-22812	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

365	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Modeltheme MT Addons for Elementor allows Stored XSS.This issue affects MT Addons for Elementor: …	CWE-79 Cross-site Scripting	CVE-2025-22811	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

366	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CBB Team Content Blocks Builder allows Stored XSS.This issue affects Content Blocks Builder: from…	CWE-79 Cross-site Scripting	CVE-2025-22810	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

367	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gravity Master PDF Catalog Woocommerce allows DOM-Based XSS.This issue affects PDF Catalog Woocom…	CWE-79 Cross-site Scripting	CVE-2025-22809	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

368	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Surbma Surbma \| Premium WP allows DOM-Based XSS.This issue affects Surbma \| Premium WP: from n/a …	CWE-79 Cross-site Scripting	CVE-2025-22808	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

369	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Robert Peake Responsive Flickr Slideshow allows Stored XSS.This issue affects Responsive Flickr S…	CWE-79 Cross-site Scripting	CVE-2025-22807	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm

370	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Modernaweb Studio Black Widgets For Elementor allows DOM-Based XSS.This issue affects Black Widge…	CWE-79 Cross-site Scripting	CVE-2025-22806	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm