Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 17, 2025, 2:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206821 8.5 危険 オラクル - Oracle Fusion Middleware の Oracle Document Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3592 2011-02-10 11:51 2011-01-18 Show GitHub Exploit DB Packet Storm
206822 9.4 危険 オラクル - Oracle Fusion Middleware の Oracle Document Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3599 2011-02-10 11:44 2011-01-18 Show GitHub Exploit DB Packet Storm
206823 7.5 危険 オラクル - Oracle Audit Vault の Audit Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4449 2011-02-10 11:36 2011-01-18 Show GitHub Exploit DB Packet Storm
206824 6.4 警告 オラクル - Oracle Secure Backup の mod_ssl コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3596 2011-02-10 11:30 2011-01-18 Show GitHub Exploit DB Packet Storm
206825 3.6 注意 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4420 2011-02-9 16:44 2011-01-18 Show GitHub Exploit DB Packet Storm
206826 4.3 警告 オラクル - Oracle Database Server の Scheduler Agent コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4413 2011-02-9 16:43 2011-01-18 Show GitHub Exploit DB Packet Storm
206827 4.9 警告 オラクル - Oracle Database Server の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3590 2011-02-9 16:43 2011-01-18 Show GitHub Exploit DB Packet Storm
206828 6.9 警告 オラクル - Windows 上で稼働する Oracle Database Server の Cluster Verify Utility コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4423 2011-02-9 16:42 2011-01-18 Show GitHub Exploit DB Packet Storm
206829 6.8 警告 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4421 2011-02-9 16:42 2011-01-18 Show GitHub Exploit DB Packet Storm
206830 7.5 危険 オラクル - 複数の Oracle 製品の Client System Analyzer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3600 2011-02-9 16:41 2011-01-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 17, 2025, 5:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1631 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ella van Durpe Slides & Presentations allows Stored XSS.This issue affects Slides & Presentations… CWE-79
Cross-site Scripting 		CVE-2025-22511 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1632 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Benjamin Santalucia (ben@woow-fr.com) WPMU Prefill Post allows SQL Injection.This issue affects W… CWE-89
SQL Injection 		CVE-2025-22507 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1633 - - - Cross-Site Request Forgery (CSRF) vulnerability in Digital Zoom Studio Admin debug wordpress – enable debug allows Cross Site Request Forgery.This issue affects Admin debug wordpress – enable debug: … CWE-352
 Origin Validation Error 		CVE-2025-22503 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1634 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mindvalley MindValley Super PageMash allows SQL Injection.This issue affects MindValley Super Pag… CWE-89
SQL Injection 		CVE-2025-22502 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1635 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in lich_wang WP-tagMaker allows Reflected XSS.This issue affects WP-tagMaker: from n/a through 0.2.2. CWE-79
Cross-site Scripting 		CVE-2025-22338 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1636 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Md. Rajib Dewan Opencart Product in WP allows Reflected XSS.This issue affects Opencart Product i… CWE-79
Cross-site Scripting 		CVE-2025-22335 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1637 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gravity Master Custom Field For WP Job Manager allows Reflected XSS.This issue affects Custom Fie… CWE-79
Cross-site Scripting 		CVE-2025-22294 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1638 - - - ClipBucket V5 provides open source video hosting with PHP. Prior to 5.5.1 - 239, a file upload vulnerability exists in the Manage Playlist functionality of the application, specifically surrounding t… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-21624 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1639 - - - ClipBucket V5 provides open source video hosting with PHP. Prior to 5.5.1 - 238, ClipBucket V5 allows unauthenticated attackers to change the template directory via a directory traversal, which resul… CWE-22
CWE-306
Path Traversal
Missing Authentication for Critical Function 		CVE-2025-21623 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1640 - - - ClipBucket V5 provides open source video hosting with PHP. During the user avatar upload workflow, a user can choose to upload and change their avatar at any time. During deletion, ClipBucket checks … CWE-22
Path Traversal 		CVE-2025-21622 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm