Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 20, 2025, 2:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194931	7.5	危険	aspcodecms	-	ASPCode CMS の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0710	2012-06-26 16:19	2010-02-25	Show	GitHub Exploit DB Packet Storm

194932	7.2	危険	マイクロソフト AVAST Software s.r.o.	-	Windows 2000 および XP 上で稼動する avast! の Aavmker4.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0705	2012-06-26 16:19	2010-02-25	Show	GitHub Exploit DB Packet Storm

194933	7.5	危険	Fonality	-	Fonality Trixbox の cisco/services/PhonecDirectory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0702	2012-06-26 16:19	2010-02-23	Show	GitHub Exploit DB Packet Storm

194934	7.5	危険	dynamicsoft	-	Dynamicsoft WSC CMS の backoffice/login.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0698	2012-06-26 16:19	2010-02-23	Show	GitHub Exploit DB Packet Storm

194935	4.3	警告	Basic-CMS	-	BASIC-CMS の pages/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0695	2012-06-26 16:19	2010-02-23	Show	GitHub Exploit DB Packet Storm

194936	7.5	危険	commodityrentals	-	CommodityRentals Trade Manager Script の products.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0693	2012-06-26 16:19	2010-02-23	Show	GitHub Exploit DB Packet Storm

194937	7.5	危険	commodityrentals	-	CommodityRentals Video Games Rentals の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0690	2012-06-26 16:19	2010-02-23	Show	GitHub Exploit DB Packet Storm

194938	10	危険	DATEV	-	DATEV Base System の DVBSExeCall.ocx における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2010-0689	2012-06-26 16:19	2010-02-26	Show	GitHub Exploit DB Packet Storm

194939	5	警告	Digium	-	Asterisk Open Source のダイアルプラン機能のデザインにおけるダイアルプランへ文字列を挿入される脆弱性	CWE-DesignError	CVE-2010-0685	2012-06-26 16:19	2010-02-10	Show	GitHub Exploit DB Packet Storm

194940	3.5	注意	Apache Software Foundation	-	Apache ActiveMQ の createDestination.action におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0684	2012-06-26 16:19	2010-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DivEngine Gallery: Hybrid – Advanced Visual Gallery allows Stored XSS.This issue affects Gallery:…	CWE-79 Cross-site Scripting	CVE-2025-23951	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

292	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Said Shiripour EZPlayer allows Stored XSS.This issue affects EZPlayer: from n/a through 1.0.10.	CWE-79 Cross-site Scripting	CVE-2025-23950	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

293	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in M.J WP-Player allows Stored XSS.This issue affects WP-Player: from n/a through 2.6.1.	CWE-79 Cross-site Scripting	CVE-2025-23947	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

294	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in le Pixel Solitaire Enhanced YouTube Shortcode allows Stored XSS.This issue affects Enhanced YouTu…	CWE-79 Cross-site Scripting	CVE-2025-23946	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

295	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in arul PDF.js Shortcode allows Stored XSS.This issue affects PDF.js Shortcode: from n/a through 1.0.	CWE-79 Cross-site Scripting	CVE-2025-23943	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

296	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Meinturnierplan.de Team MeinTurnierplan.de Widget Viewer allows Stored XSS.This issue affects Mei…	CWE-79 Cross-site Scripting	CVE-2025-23941	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

297	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saiem Khan Image Switcher allows Stored XSS.This issue affects Image Switcher: from n/a through 0…	CWE-79 Cross-site Scripting	CVE-2025-23940	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

298	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saiem Khan Image Switcher allows Stored XSS.This issue affects Image Switcher: from n/a through 1…	CWE-79 Cross-site Scripting	CVE-2025-23939	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

299	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Harun R. Rayhan (Cr@zy Coder) CC Circle Progress Bar allows Stored XSS.This issue affects CC Circ…	CWE-79 Cross-site Scripting	CVE-2025-23936	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

300	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Magic Plugin Factory Magic Google Maps allows Stored XSS.This issue affects Magic Google Maps: fr…	CWE-79 Cross-site Scripting	CVE-2025-23935	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm