Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 23, 2025, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196341	6.8	警告	Apache Software Foundation	-	Apache Struts などで使用される Apache Tiles における重要情報を取得される脆弱性	CWE-Other その他	CVE-2009-1275	2012-06-26 16:10	2009-04-9	Show	GitHub Exploit DB Packet Storm

196342	5	警告	andrew j.korty	-	USE=ssh でコンパイルされた PAM で使用される pam_ssh におけるユーザ名が列挙される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-1273	2012-06-26 16:10	2009-04-8	Show	GitHub Exploit DB Packet Storm

196343	7.5	危険	alikonweb Joomla!	-	Joomla! の bookjoomlas コンポーネントの sub_commententry.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1263	2012-06-26 16:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

196344	7.2	危険	フォーティネット	-	Fortinet FortiClient におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2009-1262	2012-06-26 16:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

196345	9.3	危険	EZB Systems	-	UltraISO におけるスタックベースのバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1260	2012-06-26 16:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

196346	7.5	危険	FlexCMS	-	FlexCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1256	2012-06-26 16:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

196347	4.3	警告	Drupal	-	Drupal 用の Feed 要素マッパーモジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1249	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

196348	7.5	危険	acutecp	-	Acute Control Panel における任意の PHP コードが実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1248	2012-06-26 16:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

196349	7.5	危険	acutecp.rediscussed	-	Acute Control Panel における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1247	2012-06-26 16:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

196350	7.5	危険	blogplus	-	Blogplus におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1246	2012-06-26 16:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 23, 2025, 5:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
901	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Predrag Supurovic Stop Comment Spam allows Stored XSS.This issue affects Stop Comment Spam: from …	CWE-79 Cross-site Scripting	CVE-2025-23826	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

902	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alex Thorpe Easy Shortcode Buttons allows Stored XSS.This issue affects Easy Shortcode Buttons: f…	CWE-79 Cross-site Scripting	CVE-2025-23825	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

903	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alexander Weleczka FontAwesome.io ShortCodes allows Stored XSS.This issue affects FontAwesome.io …	CWE-79 Cross-site Scripting	CVE-2025-23824	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

904	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in jprintf CNZZ&51LA for WordPress allows Cross Site Request Forgery.This issue affects CNZZ&51LA for WordPress: from n/a through 1.0.1.	CWE-352 Origin Validation Error	CVE-2025-23823	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

905	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Cornea Alexandru Category Custom Fields allows Cross Site Request Forgery.This issue affects Category Custom Fields: from n/a through 1.0.	CWE-352 Origin Validation Error	CVE-2025-23822	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

906	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Aleapp WP Cookies Alert allows Cross Site Request Forgery.This issue affects WP Cookies Alert: from n/a through 1.1.1.	CWE-352 Origin Validation Error	CVE-2025-23821	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

907	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Laxman Thapa Content Security Policy Pro allows Cross Site Request Forgery.This issue affects Content Security Policy Pro: from n/a through 1.3.5.	CWE-352 Origin Validation Error	CVE-2025-23820	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

908	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Peggy Kuo More Link Modifier allows Stored XSS.This issue affects More Link Modifier: from n/a through 1.0.3.	CWE-352 Origin Validation Error	CVE-2025-23818	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

909	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Mahadir Ahmad MHR-Custom-Anti-Copy allows Stored XSS.This issue affects MHR-Custom-Anti-Copy: from n/a through 2.0.	CWE-352 Origin Validation Error	CVE-2025-23817	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

910	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in metaphorcreations Metaphor Widgets allows Stored XSS. This issue affects Metaphor Widgets: from n…	CWE-79 Cross-site Scripting	CVE-2025-23816	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm