Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194061 7.5 危険 elemente
TYPO3 Association		 - TYPO3 の ast_addresszipsearch 拡張における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4966 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
194062 9.3 危険 adammo - Fat Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4962 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
194063 7.5 危険 Emophp Programming - EMO Breeder Manager の video.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4958 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
194064 7.5 危険 ATutor - AdPeeps におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-4945 2012-06-26 16:19 2010-07-22 Show GitHub Exploit DB Packet Storm
194065 4.3 警告 ATutor - ATRC ACollab におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4944 2012-06-26 16:19 2010-07-22 Show GitHub Exploit DB Packet Storm
194066 4.3 警告 ATutor - ACollab におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4942 2012-06-26 16:19 2010-07-22 Show GitHub Exploit DB Packet Storm
194067 4.3 警告 ATutor - ATRC ACollab の sign_in.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4941 2012-06-26 16:19 2010-07-22 Show GitHub Exploit DB Packet Storm
194068 7.5 危険 esoftpro - Online Guestbook Pro の ogp_show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4935 2012-06-26 16:19 2010-07-12 Show GitHub Exploit DB Packet Storm
194069 4.3 警告 esoftpro - Online Photo Pro の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4934 2012-06-26 16:19 2010-07-12 Show GitHub Exploit DB Packet Storm
194070 6.8 警告 bestwebsharing - Groovy Media Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4931 2012-06-26 16:19 2010-07-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 - - - Cross-Site Request Forgery (CSRF) vulnerability in Dylan James Zephyr Admin Theme allows Cross Site Request Forgery.This issue affects Zephyr Admin Theme: from n/a through 1.4.1. New CWE-352
 Origin Validation Error 		CVE-2025-22814 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
172 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ChatBot for WordPress - WPBot Conversational Forms for ChatBot allows Stored XSS.This issue affec… New CWE-79
Cross-site Scripting 		CVE-2025-22813 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
173 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FlickDevs News Ticker Widget for Elementor allows Stored XSS.This issue affects News Ticker Widge… New CWE-79
Cross-site Scripting 		CVE-2025-22812 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
174 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Modeltheme MT Addons for Elementor allows Stored XSS.This issue affects MT Addons for Elementor: … New CWE-79
Cross-site Scripting 		CVE-2025-22811 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
175 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CBB Team Content Blocks Builder allows Stored XSS.This issue affects Content Blocks Builder: from… New CWE-79
Cross-site Scripting 		CVE-2025-22810 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
176 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gravity Master PDF Catalog Woocommerce allows DOM-Based XSS.This issue affects PDF Catalog Woocom… New CWE-79
Cross-site Scripting 		CVE-2025-22809 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
177 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Surbma Surbma | Premium WP allows DOM-Based XSS.This issue affects Surbma | Premium WP: from n/a … New CWE-79
Cross-site Scripting 		CVE-2025-22808 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
178 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Robert Peake Responsive Flickr Slideshow allows Stored XSS.This issue affects Responsive Flickr S… New CWE-79
Cross-site Scripting 		CVE-2025-22807 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
179 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Modernaweb Studio Black Widgets For Elementor allows DOM-Based XSS.This issue affects Black Widge… New CWE-79
Cross-site Scripting 		CVE-2025-22806 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm
180 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemePoints Skill Bar allows Stored XSS.This issue affects Skill Bar: from n/a through 1.2. New CWE-79
Cross-site Scripting 		CVE-2025-22805 2025-01-10 01:16 2025-01-10 Show GitHub Exploit DB Packet Storm