Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194971 7.5 危険 eicrasoft - Eicra Realestate Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2357 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
194972 6.8 警告 daniel mealha cabrita - Ziproxy の PNG デコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2350 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
194973 9.3 危険 freesoftwaretoolbox - Batch Audio Converter Lite Edition におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2348 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
194974 9.3 危険 dennisre - D.R. Software Audio Converter におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2343 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
194975 7.5 危険 DMXReady - DMXReady Online Notebook Manager の onlinenotebookmanager.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2342 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
194976 7.5 危険 ezpx - EZPX Photoblog の における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2341 2012-06-26 16:19 2010-06-18 Show GitHub Exploit DB Packet Storm
194977 6.8 警告 Arab Portal - Arab Portal の members.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2340 2012-06-26 16:19 2010-06-18 Show GitHub Exploit DB Packet Storm
194978 9.3 危険 アドビシステムズ - Adobe inDesign CS3 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2321 2012-06-26 16:19 2010-06-18 Show GitHub Exploit DB Packet Storm
194979 5 警告 ETERNA - bozotic HTTP サーバにおけるユーザアカウントの存在を決定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2320 2012-06-26 16:19 2010-08-2 Show GitHub Exploit DB Packet Storm
194980 6.8 警告 Nucleus
edmondhui.homeip		 - Nucleus の NP_Twitter プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2314 2012-06-26 16:19 2010-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
431 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WpFreeware WpF Ultimate Carousel allows Stored XSS.This issue affects WpF Ultimate Carousel: from… CWE-79
Cross-site Scripting 		CVE-2025-23933 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
432 - - - Missing Authorization vulnerability in iTechArt-Group PayPal Marketing Solutions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PayPal Marketing Solutions:… CWE-862
 Missing Authorization 		CVE-2025-23930 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
433 - - - Missing Authorization vulnerability in wishfulthemes Email Capture & Lead Generation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Email Capture & Lead Ge… CWE-862
 Missing Authorization 		CVE-2025-23929 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
434 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Arsovski Google Org Chart allows Stored XSS.This issue affects Google Org Chart: from … CWE-79
Cross-site Scripting 		CVE-2025-23928 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
435 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Massimo Serpilli Incredible Font Awesome allows Stored XSS.This issue affects Incredible Font Awe… CWE-79
Cross-site Scripting 		CVE-2025-23927 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
436 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TC Ajax WP Query Search Filter allows Stored XSS.This issue affects Ajax WP Query Search Filter: … CWE-79
Cross-site Scripting 		CVE-2025-23926 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
437 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jimmy Peña Feedburner Optin Form allows Stored XSS.This issue affects Feedburner Optin Form: from… CWE-79
Cross-site Scripting 		CVE-2025-23925 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
438 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jérémy Heleine WP Photo Sphere allows Stored XSS.This issue affects WP Photo Sphere: from n/a thr… CWE-79
Cross-site Scripting 		CVE-2025-23924 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
439 - - - Cross-Site Request Forgery (CSRF) vulnerability in Harsh iSpring Embedder allows Upload a Web Shell to a Web Server.This issue affects iSpring Embedder: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23922 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
440 - - - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Ella van Durpe Slides & Presentations allows Code Injection.This issue affects Slides & Presentations: f… CWE-80
Basic XSS 		CVE-2025-23919 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm