Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205261 7.5 危険 Joomla!
Jextensions		 - Joomla! 用 JExtensions JE Director コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4862 2012-02-9 11:07 2011-10-5 Show GitHub Exploit DB Packet Storm
205262 7.5 危険 webSPELL - webSPELL の asearch.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4861 2012-02-9 11:06 2011-10-5 Show GitHub Exploit DB Packet Storm
205263 7.5 危険 Galaxyscriptz - MyPhpAuction の product_desc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4860 2012-02-9 11:05 2011-10-5 Show GitHub Exploit DB Packet Storm
205264 7.5 危険 WebAsyst - WebAsyst Shop-Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4859 2012-02-9 11:05 2011-10-5 Show GitHub Exploit DB Packet Storm
205265 5 警告 Joerg Risse - DNET Live-Stats の team.rc5-72.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4858 2012-02-9 11:04 2011-10-5 Show GitHub Exploit DB Packet Storm
205266 7.5 危険 Curtiss Grymala - CAG CMS の click.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4857 2012-02-9 11:03 2011-10-5 Show GitHub Exploit DB Packet Storm
205267 7.5 危険 ASP indir - xWeblog の arsiv.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4856 2012-02-9 11:03 2011-10-5 Show GitHub Exploit DB Packet Storm
205268 7.5 危険 ASP indir - xWeblog の oku.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4855 2012-02-9 11:02 2011-10-5 Show GitHub Exploit DB Packet Storm
205269 6.8 警告 Zuitu - Zuitu の ajax/coupon.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4854 2012-02-9 11:02 2011-10-5 Show GitHub Exploit DB Packet Storm
205270 7.5 危険 Chill Creations - Joomla! 用 ccInvoices コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4853 2012-02-9 11:01 2011-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 5, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
71 - - - Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption a… New - CVE-2025-1016 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
72 - - - The Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attacker to create and export an address book containing a malicious payload in a field. For example, in … New - CVE-2025-1015 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
73 - - - Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability affects Firefox < 135, Firefox ESR < 128.7, Thunderbird … New - CVE-2025-1014 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
74 - - - A race condition could have led to private browsing tabs being opened in normal browsing windows. This could have resulted in a potential privacy leak. This vulnerability affects Firefox < 135, Firef… New - CVE-2025-1013 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
75 - - - A race during concurrent delazification could have led to a use-after-free. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird <… New - CVE-2025-1012 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
76 - - - A bug in WebAssembly code generation could have lead to a crash. It may have been possible for an attacker to leverage this to achieve code execution. This vulnerability affects Firefox < 135, Firefo… New - CVE-2025-1011 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
77 - - - An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < … New - CVE-2025-1010 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
78 - - - An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, … New - CVE-2025-1009 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
79 - - - Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040. This vulnerability affects Thunderbird < 128.7 … New - CVE-2025-0510 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm
80 - - - Authentik project is vulnerable to Stored XSS attacks through uploading crafted SVG files that are used as application icons.  This action could only be performed by an authenticated admin user. The … New - CVE-2024-11623 2025-02-4 23:15 2025-02-4 Show GitHub Exploit DB Packet Storm