Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192991 6.8 警告 interspire - Interspire SendStudio における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1060 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
192992 7.5 危険 online web building - Online Web Building の user_pages/page.asp における SQL インジェクションの脆弱性 - CVE-2007-1058 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
192993 6.9 警告 Nortel Networks - Nortel Application Switch などの製品で使用される Net Direct クライアントにおける他のユーザに任意のコードを実行される脆弱性 - CVE-2007-1057 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
192994 6.8 警告 MediaWiki - MediaWiki の AJAX 機能におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1055 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
192995 6.8 警告 MediaWiki - MediaWiki の AJAX 機能におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1054 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
192996 10 危険 malbum - mAlbum における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-1045 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
192997 5 警告 Pearson Education, Inc. - Pearson Education PowerSchool における admin フォルダの内容をリスト化される脆弱性 CWE-200
情報漏えい 		CVE-2007-1044 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
192998 10 危険 peanutkb - PeanutKB における脆弱性 - CVE-2007-1039 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
192999 7.5 危険 レッドハット - JBoss のディフォルト設定における管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-1036 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
193000 7.8 危険 Niels Provos - Niels Provos libevent におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1030 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1831 - - - Cross-Site Request Forgery (CSRF) vulnerability in saleandro Songkick Concerts and Festivals allows Cross Site Request Forgery. This issue affects Songkick Concerts and Festivals: from n/a through 0.… CWE-352
 Origin Validation Error 		CVE-2025-25146 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1832 - - - Cross-Site Request Forgery (CSRF) vulnerability in jordan.hatch Infusionsoft Analytics allows Cross Site Request Forgery. This issue affects Infusionsoft Analytics: from n/a through 2.0. CWE-352
 Origin Validation Error 		CVE-2025-25145 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1833 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in theasys Theasys allows Stored XSS. This issue affects Theasys: from n/a through 1.0.1. CWE-79
Cross-site Scripting 		CVE-2025-25144 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1834 - - - Cross-Site Request Forgery (CSRF) vulnerability in ibasit GlobalQuran allows Cross Site Request Forgery. This issue affects GlobalQuran: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-25143 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1835 - - - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in zankover Fami Sales Popup allows PHP Local File Inclusion. This issue affects … CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2025-25141 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1836 - - - Cross-Site Request Forgery (CSRF) vulnerability in Scriptonite Simple User Profile allows Stored XSS. This issue affects Simple User Profile: from n/a through 1.9. CWE-352
 Origin Validation Error 		CVE-2025-25140 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1837 - - - Cross-Site Request Forgery (CSRF) vulnerability in Cynob IT Consultancy WP Custom Post RSS Feed allows Stored XSS. This issue affects WP Custom Post RSS Feed: from n/a through 1.0.0. CWE-352
 Origin Validation Error 		CVE-2025-25139 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1838 - - - Cross-Site Request Forgery (CSRF) vulnerability in Rishi On Page SEO + Whatsapp Chat Button allows Stored XSS. This issue affects On Page SEO + Whatsapp Chat Button: from n/a through 2.0.0. CWE-352
 Origin Validation Error 		CVE-2025-25138 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1839 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in shujahat21 Optimate Ads allows Stored XSS. This issue affects Optimate Ads: from n/a through 1.0.… CWE-79
Cross-site Scripting 		CVE-2025-25136 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1840 - - - Cross-Site Request Forgery (CSRF) vulnerability in Victor Barkalov Custom Links On Admin Dashboard Toolbar allows Stored XSS. This issue affects Custom Links On Admin Dashboard Toolbar: from n/a thro… CWE-352
 Origin Validation Error 		CVE-2025-25135 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm