Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 29, 2025, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197471 4.3 警告 dataspade - Dataspade の Index.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6041 2012-06-26 16:10 2008-09-23 Show GitHub Exploit DB Packet Storm
197472 10 危険 Attachmate - Secure IT UNIX Client の Attachmate Reflection における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2008-6021 2012-06-26 16:10 2008-10-22 Show GitHub Exploit DB Packet Storm
197473 4.3 警告 aj square - AJ Auction Pro Platinum の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6004 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
197474 7.5 危険 aj square - AJ Auction Pro Platinum の sellers_othersitem.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6003 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
197475 7.5 危険 adnforum - ADN Forum の index.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6001 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
197476 7.2 危険 G Data Software - GDTdiIcpt.sys ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-6000 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
197477 7.5 危険 barcodephp - barcodegen の image.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5993 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
197478 6.8 警告 eduforge - emergecolab の connect/init.inc におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5990 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
197479 6.9 警告 Csound - Csound の VST プラグインにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2008-5986 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
197480 6.9 警告 dia - Dia の Python プラグインにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2008-5984 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
961 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound EELV Newsletter allows Reflected XSS. This issue affects EELV Newsletter: from n/a throu… CWE-79
Cross-site Scripting 		CVE-2025-23602 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
962 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Tab My Content allows Reflected XSS. This issue affects Tab My Content: from n/a through… CWE-79
Cross-site Scripting 		CVE-2025-23601 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
963 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Riosis Private Limited Rio Photo Gallery allows Reflected XSS. This issue affects Rio Photo Galle… CWE-79
Cross-site Scripting 		CVE-2025-23597 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
964 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound dForms allows Reflected XSS. This issue affects dForms: from n/a through 1.0. CWE-79
Cross-site Scripting 		CVE-2025-23592 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
965 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound ContentOptin Lite allows Reflected XSS. This issue affects ContentOptin Lite: from n/a t… CWE-79
Cross-site Scripting 		CVE-2025-23589 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
966 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Explara Explara Membership allows Reflected XSS. This issue affects Explara Membership: from n/a … CWE-79
Cross-site Scripting 		CVE-2025-23583 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
967 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Custom CSS Addons allows Reflected XSS. This issue affects Custom CSS Addons: from n/a t… CWE-79
Cross-site Scripting 		CVE-2025-23578 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
968 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NotFound XLSXviewer allows Path Traversal. This issue affects XLSXviewer: from n/a through 2.1.1. CWE-22
Path Traversal 		CVE-2025-23562 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
969 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bilal TAS Responsivity allows Reflected XSS. This issue affects Responsivity: from n/a through 0.… CWE-79
Cross-site Scripting 		CVE-2025-23548 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
970 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in clickandsell REAL WordPress Sidebar allows Stored XSS. This issue affects REAL WordPress Sidebar:… CWE-79
Cross-site Scripting 		CVE-2025-23535 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm