Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196141	5	警告	アップル	-	Apple Safari などの製品で使用される WebKit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1029	2012-06-26 16:19	2010-03-19	Show	GitHub Exploit DB Packet Storm

196142	7.5	危険	TYPO3 Association dietmar schffer	-	TYPO3 の travelmate 拡張における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1027	2012-06-26 16:19	2010-03-19	Show	GitHub Exploit DB Packet Storm

196143	4.3	警告	2bits Drupal	-	Drupal の Currency Exchange モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1074	2012-06-26 16:19	2009-01-6	Show	GitHub Exploit DB Packet Storm

196144	4.3	警告	chris wederka TYPO3 Association	-	TYPO3 の tgm_newsletter 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1025	2012-06-26 16:19	2010-03-19	Show	GitHub Exploit DB Packet Storm

196145	7.5	危険	chris wederka TYPO3 Association	-	TYPO3 の tgm_newsletter 拡張における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1024	2012-06-26 16:19	2010-03-19	Show	GitHub Exploit DB Packet Storm

196146	4.3	警告	georg ringer, patrick gaumond TYPO3 Association	-	TYPO3 の taskcenter_recent 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1023	2012-06-26 16:19	2010-03-19	Show	GitHub Exploit DB Packet Storm

196147	4.3	警告	christian hennecke TYPO3 Association	-	TYPO3 の chsellector 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1008	2012-06-26 16:19	2010-03-19	Show	GitHub Exploit DB Packet Storm

196148	5	警告	TYPO3 Association chi hoang	-	TYPO3 の Power Extension Manager 拡張における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1007	2012-06-26 16:19	2010-03-19	Show	GitHub Exploit DB Packet Storm

196149	6.8	警告	eFront Learning	-	eFront の www/editor/tiny_mce/langs/language.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1003	2012-06-26 16:19	2010-03-19	Show	GitHub Exploit DB Packet Storm

196150	7.1	危険	Free Download Manager.ORG	-	FDM におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0999	2012-06-26 16:19	2010-05-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1301	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in mgplugin Roi Calculator allows Stored XSS. This issue affects Roi Calculator: from n/a through 1.0.	CWE-352 Origin Validation Error	CVE-2025-24756	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1302	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in add-ons.org PDF Invoices for WooCommerce + Drag and Drop Template Builder allows Stored XSS. This…	CWE-79 Cross-site Scripting	CVE-2025-24755	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1303	-	-	-	Missing Authorization vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Gutenberg Blocks by Ka…	CWE-862 Missing Authorization	CVE-2025-24753	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1304	-	-	-	Missing Authorization vulnerability in GoDaddy CoBlocks allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects CoBlocks: from n/a through 3.1.13.	CWE-862 Missing Authorization	CVE-2025-24751	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1305	-	-	-	Missing Authorization vulnerability in ExactMetrics ExactMetrics allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ExactMetrics: from n/a through 8.1.0.	CWE-862 Missing Authorization	CVE-2025-24750	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1306	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Popup Maker Popup Maker allows Stored XSS. This issue affects Popup Maker: from n/a through 1.20.…	CWE-79 Cross-site Scripting	CVE-2025-24746	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1307	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in FluentSMTP & WPManageNinja Team FluentSMTP allows Cross Site Request Forgery. This issue affects FluentSMTP: from n/a through 2.2.80.	CWE-352 Origin Validation Error	CVE-2025-24739	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1308	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in NowButtons.com Call Now Button allows Cross Site Request Forgery. This issue affects Call Now Button: from n/a through 1.4.13.	CWE-352 Origin Validation Error	CVE-2025-24738	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1309	-	-	-	Missing Authorization vulnerability in Metaphor Creations Post Duplicator allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Post Duplicator: from n/a through…	CWE-862 Missing Authorization	CVE-2025-24736	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1310	-	-	-	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AddonMaster Post Grid Master allows PHP Local File Inclusion. This issue affec…	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2025-24733	2025-01-25 03:15	2025-01-25	Show	GitHub Exploit DB Packet Storm