Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202731 7.5 危険 Wanewsletter - Wanewsletter の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4940 2012-02-29 11:01 2011-10-9 Show GitHub Exploit DB Packet Storm
202732 7.5 危険 Scripts bdr130 - MailForm の index.php におけるリモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4939 2012-02-29 10:58 2011-10-9 Show GitHub Exploit DB Packet Storm
202733 2.6 注意 クックパッド株式会社 - 複数のクックパッド製 Android アプリケーションにおける WebView クラスに関する脆弱性 CWE-Other
その他 		CVE-2012-0316 2012-02-29 10:52 2012-02-22 Show GitHub Exploit DB Packet Storm
202734 9 危険 シスコシステムズ - 複数の Cisco 製品の Local TFTP file-upload アプリケーションにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0365 2012-02-28 16:24 2012-02-23 Show GitHub Exploit DB Packet Storm
202735 7.8 危険 シスコシステムズ - 複数の Cisco 製品における設定ファイルを置き換えられる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0364 2012-02-28 16:16 2012-02-23 Show GitHub Exploit DB Packet Storm
202736 9 危険 シスコシステムズ - 複数の Cisco 製品の Web インタフェースにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0363 2012-02-28 16:13 2012-02-23 Show GitHub Exploit DB Packet Storm
202737 7.5 危険 Joomla! - Joomla! の Weblinks コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4938 2012-02-28 16:04 2011-10-9 Show GitHub Exploit DB Packet Storm
202738 7.5 危険 RoBIT - Joomla! 用の Amblog コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4937 2012-02-28 15:56 2011-10-9 Show GitHub Exploit DB Packet Storm
202739 7.5 危険 Webmaster-Tips - Joomla! 用の Slide Show コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4936 2012-02-28 15:54 2011-10-9 Show GitHub Exploit DB Packet Storm
202740 7.5 危険 Khader Abbeb - Entrans の poll.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4935 2012-02-28 15:53 2011-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1271 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Irshad Services updates for customers allows Reflected XSS.This issue affects Services updates fo… CWE-79
Cross-site Scripting 		CVE-2024-56034 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1272 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 FAQs allows Reflected XSS.This issue affects FAQs: from n/a through 1.0.2. CWE-79
Cross-site Scripting 		CVE-2024-56033 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1273 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Foliovision FV Descriptions allows Reflected XSS.This issue affects FV Descriptions: from n/a thr… CWE-79
Cross-site Scripting 		CVE-2024-56032 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1274 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10CentMail allows Reflected XSS.This issue affects 10CentMail: from n/a through 2.1.50. CWE-79
Cross-site Scripting 		CVE-2024-56030 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1275 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dreamwinner Easy Language Switcher allows Reflected XSS.This issue affects Easy Language Switcher… CWE-79
Cross-site Scripting 		CVE-2024-56029 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1276 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lemonade Coding Studio Lemonade Social Networks Autoposter Pinterest allows Reflected XSS.This is… CWE-79
Cross-site Scripting 		CVE-2024-56028 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1277 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BizSwoop a CPF Concepts, LLC Brand Leads CRM allows Reflected XSS.This issue affects Leads CRM: f… CWE-79
Cross-site Scripting 		CVE-2024-56027 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1278 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gavin Rehkemper Inline Footnotes allows Stored XSS.This issue affects Inline Footnotes: from n/a … CWE-79
Cross-site Scripting 		CVE-2024-56019 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1279 - - - A vulnerability, which was classified as critical, has been found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This issue affects some unknown processing of the file /goform/form2AddVrtsrv.cgi of the… CWE-284
CWE-266
Improper Access Control
 Incorrect Privilege Assignment 		CVE-2024-13103 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm
1280 - - - A vulnerability classified as critical was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This vulnerability affects unknown code of the file /goform/DDNS of the component DDNS Service. The manip… CWE-284
CWE-266
Improper Access Control
 Incorrect Privilege Assignment 		CVE-2024-13102 2025-01-2 19:15 2025-01-2 Show GitHub Exploit DB Packet Storm