Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190951 7.5 危険 how2asp - How2ASP の Webboard の showQAanswer.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2417 2012-09-25 17:17 2008-05-22 Show GitHub Exploit DB Packet Storm
190952 6.8 警告 ヒューレット・パッカード - HP Software Update の Hpufunction.dll における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2390 2012-09-25 17:17 2008-05-21 Show GitHub Exploit DB Packet Storm
190953 4.9 警告 openSUSE project - openSUSE の opensuse-updater における任意のファイルへアクセスされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-2389 2012-09-25 17:17 2008-06-6 Show GitHub Exploit DB Packet Storm
190954 10 危険 openSUSE project - openSUSE の opensuse-updater における脆弱性 CWE-189
数値処理の問題 		CVE-2008-2388 2012-09-25 17:17 2008-06-6 Show GitHub Exploit DB Packet Storm
190955 5 警告 Fabrice Bellard
KVM		 - Qemu などの VNC サーバの vnc.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2382 2012-09-25 17:17 2008-12-24 Show GitHub Exploit DB Packet Storm
190956 7.2 危険 hf - hf の hfkernel における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2378 2012-09-25 17:17 2008-11-22 Show GitHub Exploit DB Packet Storm
190957 9.3 危険 pan - Pan の PartsBatch クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2008-2363 2012-09-25 17:17 2008-06-2 Show GitHub Exploit DB Packet Storm
190958 7.5 危険 meltingicefs - MeltingIce File System におけるアプリケーション認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2348 2012-09-25 17:17 2008-05-20 Show GitHub Exploit DB Packet Storm
190959 7.5 危険 mypicgallery - MyPicGallery における管理アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-2347 2012-09-25 17:17 2008-05-20 Show GitHub Exploit DB Packet Storm
190960 7.5 危険 news manager - News Manager における制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2343 2012-09-25 17:17 2008-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1851 - - - Cross-Site Request Forgery (CSRF) vulnerability in FancyWP Starter Templates by FancyWP allows Cross Site Request Forgery. This issue affects Starter Templates by FancyWP: from n/a through 2.0.0. CWE-352
 Origin Validation Error 		CVE-2025-25106 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1852 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in coffeestudios Pop Up allows Stored XSS. This issue affects Pop Up: from n/a through 0.1. CWE-79
Cross-site Scripting 		CVE-2025-25105 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1853 - - - Cross-Site Request Forgery (CSRF) vulnerability in mraliende URL-Preview-Box allows Cross Site Request Forgery. This issue affects URL-Preview-Box: from n/a through 1.20. CWE-352
 Origin Validation Error 		CVE-2025-25104 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1854 - - - Cross-Site Request Forgery (CSRF) vulnerability in bnielsen Indeed API allows Cross Site Request Forgery. This issue affects Indeed API: from n/a through 0.5. CWE-352
 Origin Validation Error 		CVE-2025-25103 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1855 - - - Cross-Site Request Forgery (CSRF) vulnerability in MetricThemes Munk Sites allows Cross Site Request Forgery. This issue affects Munk Sites: from n/a through 1.0.7. CWE-352
 Origin Validation Error 		CVE-2025-25101 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1856 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Zack Katz Links in Captions allows Stored XSS. This issue affects Links in Captions: from n/a thr… CWE-79
Cross-site Scripting 		CVE-2025-25098 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1857 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in kwiliarty External Video For Everybody allows Stored XSS. This issue affects External Video For E… CWE-79
Cross-site Scripting 		CVE-2025-25097 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1858 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in titusbicknell RSS in Page allows Stored XSS. This issue affects RSS in Page: from n/a through 2.9… CWE-79
Cross-site Scripting 		CVE-2025-25096 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1859 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in reverbnationdev ReverbNation Widgets allows Stored XSS. This issue affects ReverbNation Widgets: … CWE-79
Cross-site Scripting 		CVE-2025-25095 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1860 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Amitythemes.com Breaking News Ticker allows Stored XSS. This issue affects Breaking News Ticker: … CWE-79
Cross-site Scripting 		CVE-2025-25094 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm