Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 9, 2025, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203011 5.5 警告 オラクル - Oracle Database Server の Core RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2012-0082 2012-01-20 10:31 2012-01-17 Show GitHub Exploit DB Packet Storm
203012 4.9 警告 OpenStack - OpenStack Compute の Nova および Essex におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0030 2012-01-19 16:08 2012-01-11 Show GitHub Exploit DB Packet Storm
203013 5 警告 The PHP Group - PHP におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4153 2012-01-19 13:52 2012-01-18 Show GitHub Exploit DB Packet Storm
203014 7.5 危険 Simon Phillips - Joomla! 用 Aardvertiser コンポーネント における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4904 2012-01-19 11:45 2011-10-8 Show GitHub Exploit DB Packet Storm
203015 7.5 危険 CubeCart Limited - CubeCart の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4903 2012-01-19 11:44 2011-10-8 Show GitHub Exploit DB Packet Storm
203016 7.5 危険 Joomla-Clantools - Joomla! 用 Clantools コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4902 2012-01-19 11:44 2011-10-8 Show GitHub Exploit DB Packet Storm
203017 4.3 警告 Squiz - MySource Matrix の char_map.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4901 2012-01-19 11:43 2011-10-8 Show GitHub Exploit DB Packet Storm
203018 5.8 警告 WebManager Pro - CMS WebManager-Pro の c.php におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4900 2012-01-19 11:43 2011-10-8 Show GitHub Exploit DB Packet Storm
203019 7.5 危険 WebManager Pro - CMS WebManager-Pro の c.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4899 2012-01-19 11:42 2011-10-8 Show GitHub Exploit DB Packet Storm
203020 7.5 危険 Gantry framework - Joomla! 用 Gantry における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4898 2012-01-19 11:41 2011-10-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311 - - - Missing Authorization vulnerability in osamaesh WP Visitor Statistics (Real Time Traffic) allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Visitor Statist… New CWE-862
 Missing Authorization 		CVE-2025-22304 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
312 - - - Insertion of Sensitive Information Into Sent Data vulnerability in brandtoss WP Mailster allows Retrieve Embedded Sensitive Data.This issue affects WP Mailster: from n/a through 1.8.17.0. New CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2025-22303 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
313 - - - Missing Authorization vulnerability in WP Wand WP Wand allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Wand: from n/a through 1.2.5. New CWE-862
 Missing Authorization 		CVE-2025-22302 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
314 - - - Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyBookTable Bookstore allows Cross Site Request Forgery.This issue affects MyBookTable Bookstore: from n/a through 3.5.3. New CWE-352
 Origin Validation Error 		CVE-2025-22301 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
315 - - - Cross-Site Request Forgery (CSRF) vulnerability in PixelYourSite PixelYourSite – Your smart PIXEL (TAG) Manager allows Cross Site Request Forgery.This issue affects PixelYourSite – Your smart PIXEL (… New CWE-352
 Origin Validation Error 		CVE-2025-22300 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
316 - - - Missing Authorization vulnerability in spacecodes AI for SEO allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AI for SEO: from n/a through 1.2.9. New CWE-862
 Missing Authorization 		CVE-2025-22299 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
317 - - - Missing Authorization vulnerability in Hive Support Hive Support – WordPress Help Desk allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hive Support – WordPr… New CWE-862
 Missing Authorization 		CVE-2025-22298 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
318 - - - Cross-Site Request Forgery (CSRF) vulnerability in AIpost AI WP Writer allows Cross Site Request Forgery.This issue affects AI WP Writer: from n/a through 3.8.4.4. New CWE-352
 Origin Validation Error 		CVE-2025-22297 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
319 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gutentor Gutentor allows DOM-Based XSS.This issue affects Gutentor: from n/a through 3.4.0. New CWE-79
Cross-site Scripting 		CVE-2025-22293 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm
320 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pixelite WP FullCalendar allows Stored XSS.This issue affects WP FullCalendar: from n/a through 1… New CWE-79
Cross-site Scripting 		CVE-2025-22261 2025-01-7 20:15 2025-01-7 Show GitHub Exploit DB Packet Storm