Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 14, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195401	7.5	危険	exoscripts	-	Exocrew ExoPHPDesk の admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6917	2012-06-26 16:10	2009-08-7	Show	GitHub Exploit DB Packet Storm

195402	6.8	警告	brewblogger	-	BB の includes/authentication.inc.php の authenticateUser 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6911	2012-06-26 16:10	2009-08-6	Show	GitHub Exploit DB Packet Storm

195403	6.8	警告	2532gigs	-	2532designs 2532\|Gigs Stable の checkuser.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6907	2012-06-26 16:10	2009-08-6	Show	GitHub Exploit DB Packet Storm

195404	4.3	警告	babbleboard	-	BabbleBoard の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6906	2012-06-26 16:10	2009-08-6	Show	GitHub Exploit DB Packet Storm

195405	6	警告	babbleboard	-	BabbleBoard の index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6905	2012-06-26 16:10	2009-08-6	Show	GitHub Exploit DB Packet Storm

195406	6.8	警告	2532gigs	-	2532designs 2532\|Gigs の upload_flyer.php における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6902	2012-06-26 16:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

195407	5.1	警告	2532gigs	-	2532designs 2532\|Gigs におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6901	2012-06-26 16:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

195408	6.5	警告	availscript	-	AvailScript Article Script の addpen.php の "ペンネーム / 作成名を追加" 機能における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6900	2012-06-26 16:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

195409	9	危険	freeSSHd	-	freeSSHd におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6899	2012-06-26 16:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

195410	9.3	危険	andres garcia	-	Andres Garcia Getleft の Getleft.exe におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6897	2012-06-26 16:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 15, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
381	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grandslambert Featured Page Widget allows Reflected XSS.This issue affects Featured Page Widget: … New	CWE-79 Cross-site Scripting	CVE-2025-22569	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

382	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Paramveer Singh for Arete IT Private Limited Post And Page Reactions allows Reflected XSS.This is… New	CWE-79 Cross-site Scripting	CVE-2025-22568	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

383	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in trustist TRUSTist REVIEWer allows Reflected XSS.This issue affects TRUSTist REVIEWer: from n/a th… New	CWE-79 Cross-site Scripting	CVE-2025-22567	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

384	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yamna Tatheer KNR Author List Widget allows Reflected XSS.This issue affects KNR Author List Widg… New	CWE-79 Cross-site Scripting	CVE-2025-22514	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

385	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SmartAgenda Smart Agenda allows Stored XSS.This issue affects Smart Agenda: from n/a through 4.7. New	CWE-79 Cross-site Scripting	CVE-2025-22506	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

386	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FAKTOR VIER F4 Post Tree allows Reflected XSS.This issue affects F4 Post Tree: from n/a through 1… New	CWE-79 Cross-site Scripting	CVE-2025-22499	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

387	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in New Normal LLC LucidLMS allows Reflected XSS.This issue affects LucidLMS: from n/a through 1.0.5. New	CWE-79 Cross-site Scripting	CVE-2025-22498	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

388	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Convoy Media Category Library allows Reflected XSS.This issue affects Media Category Library: fro… New	CWE-79 Cross-site Scripting	CVE-2025-22344	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

389	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Infosoft Consultant Order Audit Log for WooCommerce allows Reflected XSS.This issue affects Order… New	CWE-79 Cross-site Scripting	CVE-2025-22337	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

390	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Scripts Food Store – Online Food Delivery & Pickup allows Reflected XSS.This issue affects Foo… New	CWE-79 Cross-site Scripting	CVE-2025-22314	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm