Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198101 5 警告 GNU Project - gnump3d におけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-6130 2012-06-26 15:54 2007-11-26 Show GitHub Exploit DB Packet Storm
198102 5.8 警告 amber script - Amber Script の scripts/include/show_content.php におけるディレクトリトラバーサルの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6129 2012-06-26 15:54 2007-11-26 Show GitHub Exploit DB Packet Storm
198103 7.5 危険 flor de utopia - WorkingOnWeb の events.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6128 2012-06-26 15:54 2007-11-26 Show GitHub Exploit DB Packet Storm
198104 7.5 危険 AlstraSoft - AlstraSoft E-Friends の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6106 2012-06-26 15:54 2007-11-23 Show GitHub Exploit DB Packet Storm
198105 4 警告 Code Crafters Software Limited. - Ability Mail Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6101 2012-06-26 15:54 2007-11-23 Show GitHub Exploit DB Packet Storm
198106 7.5 危険 adventnet - AdventNet EventLog Analyzer における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6081 2012-06-26 15:54 2007-11-21 Show GitHub Exploit DB Packet Storm
198107 7.5 危険 bcoos - bcoos の banners モジュールの modules/banners/click.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6080 2012-06-26 15:54 2007-11-21 Show GitHub Exploit DB Packet Storm
198108 6.8 警告 bcoos - bcoos の include/common.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6079 2012-06-26 15:54 2007-11-21 Show GitHub Exploit DB Packet Storm
198109 5 警告 Audacity - Audacity におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-6061 2012-06-26 15:54 2007-11-20 Show GitHub Exploit DB Packet Storm
198110 9.3 危険 アンラボ - AhnLab Antivirus Internet Security Platinum におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6060 2012-06-26 15:54 2007-11-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
601 - - - Cross-Site Request Forgery (CSRF) vulnerability in Oren hahiashvili add custom google tag manager allows Stored XSS.This issue affects add custom google tag manager: from n/a through 1.0.3. CWE-352
 Origin Validation Error 		CVE-2025-23537 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
602 - - - Cross-Site Request Forgery (CSRF) vulnerability in Adrian Moreno WP Lyrics allows Stored XSS.This issue affects WP Lyrics: from n/a through 0.4.1. CWE-352
 Origin Validation Error 		CVE-2025-23533 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
603 - - - Cross-Site Request Forgery (CSRF) vulnerability in Regios MyAnime Widget allows Privilege Escalation.This issue affects MyAnime Widget: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23532 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
604 - - - Cross-Site Request Forgery (CSRF) vulnerability in Yonatan Reinberg of Social Ink Custom Post Type Lockdown allows Privilege Escalation.This issue affects Custom Post Type Lockdown: from n/a through … CWE-352
 Origin Validation Error 		CVE-2025-23530 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
605 - - - Incorrect Privilege Assignment vulnerability in Wouter Dijkstra DD Roles allows Privilege Escalation.This issue affects DD Roles: from n/a through 4.1. CWE-266
 Incorrect Privilege Assignment 		CVE-2025-23528 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
606 - - - Missing Authorization vulnerability in Sanjaysolutions Loginplus allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Loginplus: from n/a through 1.2. CWE-862
 Missing Authorization 		CVE-2025-23514 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
607 - - - Cross-Site Request Forgery (CSRF) vulnerability in Joshua Wieczorek Bible Embed allows Stored XSS.This issue affects Bible Embed: from n/a through 0.0.4. CWE-352
 Origin Validation Error 		CVE-2025-23513 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
608 - - - Cross-Site Request Forgery (CSRF) vulnerability in Viktoria Rei Bauer WP-BlackCheck allows Stored XSS.This issue affects WP-BlackCheck: from n/a through 2.7.2. CWE-352
 Origin Validation Error 		CVE-2025-23511 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
609 - - - Cross-Site Request Forgery (CSRF) vulnerability in Zaantar WordPress Logging Service allows Stored XSS.This issue affects WordPress Logging Service: from n/a through 1.5.4. CWE-352
 Origin Validation Error 		CVE-2025-23510 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
610 - - - Cross-Site Request Forgery (CSRF) vulnerability in EdesaC Extra Options – Favicons allows Stored XSS.This issue affects Extra Options – Favicons: from n/a through 1.1.0. CWE-352
 Origin Validation Error 		CVE-2025-23508 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm