Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 9, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198741 5.1 警告 aigaion - Aigaion Web ベースのバイオグラフィ管理システムにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5931 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198742 7.5 危険 aigaion - Aigaion Web ベースバイオグラフィ管理システムにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5930 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198743 7.5 危険 asp scripter - ASP Scripter Easy Portal の cpLogin.asp における SQL インジェクションの脆弱性 - CVE-2006-5927 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198744 5.8 警告 efficientip - Efficient IPm の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5924 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198745 7.5 危険 chris mac - Chris Mac gtcatalog の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5923 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198746 7.5 危険 activecampaign - ActiveCampaign KnowledgeBuilder の admin/e_data/visEdit_control.class.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5919 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198747 10 危険 campware.org - Campware Campsite における詳細不明な脆弱性 - CVE-2006-5912 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198748 7.5 危険 campware.org - Campware Campsite における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5911 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198749 7.5 危険 campware.org - Campware Campsite における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5910 2012-06-26 15:37 2006-11-15 Show GitHub Exploit DB Packet Storm
198750 7.5 危険 encapscms - EncapsCMS の core/core.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5895 2012-06-26 15:37 2006-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 10, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
111 6.1 MEDIUM
Network 		- - The Woocommerce check pincode/zipcode for shipping plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.4. This is due to missing or incorrect no… New CWE-352
 Origin Validation Error 		CVE-2024-12218 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
112 4.3 MEDIUM
Network 		- - The WordPress Header Builder Plugin – Pearl plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.8. This is due to missing or incorrect nonce val… New CWE-352
 Origin Validation Error 		CVE-2024-12206 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
113 6.1 MEDIUM
Network 		- - The ResAds plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via multiple parameters in all versions up to, and including, 2.0.6 due to insufficient input sanitization and output e… New CWE-79
Cross-site Scripting 		CVE-2024-12122 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
114 6.5 MEDIUM
Network 		- - The WP Travel – Ultimate Travel Booking System, Tour Management Engine plugin for WordPress is vulnerable to SQL Injection via the 'booking_itinerary' parameter of the 'wptravel_get_booking_data' fun… New CWE-89
SQL Injection 		CVE-2024-12067 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
115 6.4 MEDIUM
Network 		- - The Responsive FlipBook Plugin Wordpress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the rfbwp_save_settings() functionin all versions up to, and including, 2.5.0 due to ins… New CWE-862
 Missing Authorization 		CVE-2024-11929 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
116 6.4 MEDIUM
Network 		- - The Skyword API Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'skyword_iframe' shortcode in all versions up to, and including, 2.5.2 due to insufficient in… New CWE-79
Cross-site Scripting 		CVE-2024-11907 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
117 6.1 MEDIUM
Network 		- - The Pósturinn\'s Shipping with WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the printed_marked and nonprinted_marked parameters in all versions up to, and… New CWE-79
Cross-site Scripting 		CVE-2024-11815 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
118 6.1 MEDIUM
Network 		- - The WhatsApp ?? click to chat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'manycontacts_code' parameter in all versions up to, and including, 3.0.4 due to insufficien… New CWE-79
Cross-site Scripting 		CVE-2024-11686 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
119 6.1 MEDIUM
Network 		- - The CLUEVO LMS, E-Learning Platform plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in … New CWE-79
Cross-site Scripting 		CVE-2024-11328 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
120 9.8 CRITICAL
Network 		- - The Post Grid Master – Custom Post Types, Taxonomies & Ajax Filter Everything with Infinite Scroll, Load More, Pagination & Shortcode Builder plugin for WordPress is vulnerable to Local File Inclusio… New CWE-22
Path Traversal 		CVE-2024-11642 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm