Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196911	4.3	警告	dream	-	Radio and TV Player addon for vBulletin の forum/radioandtv.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2172	2012-06-26 16:10	2009-06-23	Show	GitHub Exploit DB Packet Storm

196912	9.3	危険	EdrawSoft	-	Edraw PDF Viewer コンポーネントの pdfviewer.ocx における任意のファイルを作成される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2169	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

196913	7.5	危険	egyplus	-	EgyPlus 7ammel の cpanel/login.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-2168	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

196914	6.8	警告	egyplus	-	EgyPlus 7ammel の cpanel/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2167	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

196915	5	警告	adaptweb	-	AdaptWeb の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2151	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

196916	6.8	警告	campusvirtualcomputrade	-	Campus Virtual-LMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2150	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

196917	4.3	警告	campusvirtualcomputrade	-	Campus Virtual-LMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2149	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

196918	7.5	危険	campusvirtualcomputrade	-	Campus Virtual-LMS の news/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2148	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

196919	7.5	危険	WordPress.org firestats edgewall	-	WordPress の FireStats プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2144	2012-06-26 16:10	2009-06-13	Show	GitHub Exploit DB Packet Storm

196920	7.5	危険	firestats WordPress.org	-	WordPress の FireStats プラグインの firestats-wordpress.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2143	2012-06-26 16:10	2009-06-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1081	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound FooGallery Captions allows Reflected XSS. This issue affects FooGallery Captions: from n…	CWE-79 Cross-site Scripting	CVE-2025-23889	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1082	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Custom Page Extensions allows Reflected XSS. This issue affects Custom Page Extensions: …	CWE-79 Cross-site Scripting	CVE-2025-23888	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1083	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound MJ Contact us allows Reflected XSS. This issue affects MJ Contact us: from n/a through 5…	CWE-79 Cross-site Scripting	CVE-2025-23885	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1084	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Sticky Button allows Stored XSS. This issue affects Sticky Button: from n/a through 1.0.	CWE-79 Cross-site Scripting	CVE-2025-23839	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1085	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Bauernregeln allows Reflected XSS. This issue affects Bauernregeln: from n/a through 1.0…	CWE-79 Cross-site Scripting	CVE-2025-23838	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1086	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound One Backend Language allows Reflected XSS. This issue affects One Backend Language: from…	CWE-79 Cross-site Scripting	CVE-2025-23837	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1087	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Network-Favorites allows Reflected XSS. This issue affects Network-Favorites: from n/a t…	CWE-79 Cross-site Scripting	CVE-2025-23737	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1088	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Gigaom Sphinx allows Reflected XSS. This issue affects Gigaom Sphinx: from n/a through 0…	CWE-79 Cross-site Scripting	CVE-2025-23734	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1089	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Quote me allows Reflected XSS. This issue affects Quote me: from n/a through 1.0.	CWE-79 Cross-site Scripting	CVE-2025-23711	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1090	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound CBX Accounting & Bookkeeping allows Reflected XSS. This issue affects CBX Accounting & B…	CWE-79 Cross-site Scripting	CVE-2025-23622	2025-01-24 20:15	2025-01-24	Show	GitHub Exploit DB Packet Storm