Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206021 7.5 危険 Tamlyn Creative Pty - Joomla! 用 BF Quiz コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5032 2011-12-9 13:45 2011-11-2 Show GitHub Exploit DB Packet Storm
206022 7.5 危険 Fusebox - Fusebox の ProductList.cfm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5033 2011-12-9 13:44 2011-11-2 Show GitHub Exploit DB Packet Storm
206023 7.5 危険 iScripts - iScripts EasyBiller の viewhistorydetail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5034 2011-12-9 13:43 2011-11-2 Show GitHub Exploit DB Packet Storm
206024 4.3 警告 iScripts - iScripts eSwap の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5035 2011-12-9 13:42 2011-11-2 Show GitHub Exploit DB Packet Storm
206025 7.5 危険 iScripts - iScripts eSwap の addsale.php におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5036 2011-12-9 13:42 2011-11-2 Show GitHub Exploit DB Packet Storm
206026 7.5 危険 Michau Enterprises - SenseSites CommonSense CMS の article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5037 2011-12-9 13:41 2011-11-2 Show GitHub Exploit DB Packet Storm
206027 7.5 危険 Groone's World - Groone's Simple Contact Form における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-5038 2011-12-9 13:40 2011-11-2 Show GitHub Exploit DB Packet Storm
206028 7.5 危険 ScriptsFeed.com - ScriptsFeed Recipes Listing Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5039 2011-12-9 13:40 2011-11-2 Show GitHub Exploit DB Packet Storm
206029 6.8 警告 John Bradshaw - Nucleus 用 NP_Gallery プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-5040 2011-12-9 13:39 2011-11-2 Show GitHub Exploit DB Packet Storm
206030 7.5 危険 John Bradshaw - Nucleus 用 NP_Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5041 2011-12-9 13:38 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
81 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Milan Petrovic GD Mail Queue allows Reflected XSS. This issue affects GD Mail Queue: from n/a thr… New CWE-79
Cross-site Scripting 		CVE-2025-24608 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
82 - - - Insertion of Sensitive Information Into Sent Data vulnerability in UkrSolution Barcode Generator for WooCommerce allows Retrieve Embedded Sensitive Data. This issue affects Barcode Generator for WooC… New CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2025-24597 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
83 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeGlow Cleanup – Directory Listing & Classifieds WordPress Plugin allows Reflected XSS. This i… New CWE-79
Cross-site Scripting 		CVE-2025-24563 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
84 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Awesome TOGI Awesome Event Booking allows Reflected XSS. This issue affects Awesome Event Booking… New CWE-79
Cross-site Scripting 		CVE-2025-24560 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
85 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in OneTeamSoftware Radio Buttons and Swatches for WooCommerce allows Reflected XSS. This issue affec… New CWE-79
Cross-site Scripting 		CVE-2025-24551 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
86 - - - Cross-Site Request Forgery (CSRF) vulnerability in Mahbubur Rahman Post Meta allows Reflected XSS. This issue affects Post Meta: from n/a through 1.0.9. New CWE-352
 Origin Validation Error 		CVE-2025-24549 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
87 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SKT Themes SKT Donation allows Reflected XSS. This issue affects SKT Donation: from n/a through 1… New CWE-79
Cross-site Scripting 		CVE-2025-24535 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
88 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Emili Castells DPortfolio allows Reflected XSS. This issue affects DPortfolio: from n/a through 2… New CWE-79
Cross-site Scripting 		CVE-2025-24534 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
89 - - - Cross-Site Request Forgery (CSRF) vulnerability in jablonczay Scroll Styler. This issue affects Scroll Styler: from n/a through 1.1. New CWE-352
 Origin Validation Error 		CVE-2025-23990 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm
90 - - - Cross-Site Request Forgery (CSRF) vulnerability in Alessandro Piconi - SabLab Internal Link Builder allows Cross Site Request Forgery. This issue affects Internal Link Builder: from n/a through 1.0. New CWE-352
 Origin Validation Error 		CVE-2025-23989 2025-01-31 18:15 2025-01-31 Show GitHub Exploit DB Packet Storm