Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209111 9.3 危険 Mozilla Foundation - Mozilla Firefox の TraceRecorder::traverseScopeChain 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0165 2010-04-7 14:49 2010-03-23 Show GitHub Exploit DB Packet Storm
209112 4.3 警告 Mozilla Foundation - Mozilla Firefox の非同期認証プロンプト実装における信頼できる認証ダイアログになりすまされる脆弱性 CWE-Other
その他 		CVE-2010-0172 2010-04-6 16:50 2010-03-23 Show GitHub Exploit DB Packet Storm
209113 5 警告 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品の CSSLoaderImpl::DoSheetComplete 関数におけるウェブページのレンダリングを中断される脆弱性 CWE-Other
その他 		CVE-2010-0169 2010-04-6 16:50 2010-03-23 Show GitHub Exploit DB Packet Storm
209114 7.6 危険 Mozilla Foundation - Mozilla Firefox の nsDocument::MaybePreLoadImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0168 2010-04-6 16:49 2010-03-23 Show GitHub Exploit DB Packet Storm
209115 9.3 危険 Mozilla Foundation - Mozilla Firefox の imgContainer::InternalAddFrameHelper 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0164 2010-04-6 16:49 2010-03-23 Show GitHub Exploit DB Packet Storm
209116 4.3 警告 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0171 2010-04-5 14:54 2010-03-23 Show GitHub Exploit DB Packet Storm
209117 4.3 警告 Mozilla Foundation - Mozilla Firefox における同一生成元ポリシーを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0170 2010-04-5 14:53 2010-03-23 Show GitHub Exploit DB Packet Storm
209118 7.5 危険 Heartlogic - HL-SiteManager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1331 2010-04-2 15:02 2010-04-2 Show GitHub Exploit DB Packet Storm
209119 9.3 危険 Mozilla Foundation - Mozilla Firefox の Web Open Fonts Format デコーダ における整数オーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2010-1028 2010-04-2 14:05 2010-03-19 Show GitHub Exploit DB Packet Storm
209120 5 警告 富士通
アクセラテクノロジ		 - Accela BizSearch のローカル収集におけるアクセス権限に関する脆弱性 CWE-200
情報漏えい 		- 2010-04-2 14:05 2010-03-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
431 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WpFreeware WpF Ultimate Carousel allows Stored XSS.This issue affects WpF Ultimate Carousel: from… CWE-79
Cross-site Scripting 		CVE-2025-23933 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
432 - - - Missing Authorization vulnerability in iTechArt-Group PayPal Marketing Solutions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PayPal Marketing Solutions:… CWE-862
 Missing Authorization 		CVE-2025-23930 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
433 - - - Missing Authorization vulnerability in wishfulthemes Email Capture & Lead Generation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Email Capture & Lead Ge… CWE-862
 Missing Authorization 		CVE-2025-23929 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
434 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Arsovski Google Org Chart allows Stored XSS.This issue affects Google Org Chart: from … CWE-79
Cross-site Scripting 		CVE-2025-23928 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
435 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Massimo Serpilli Incredible Font Awesome allows Stored XSS.This issue affects Incredible Font Awe… CWE-79
Cross-site Scripting 		CVE-2025-23927 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
436 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TC Ajax WP Query Search Filter allows Stored XSS.This issue affects Ajax WP Query Search Filter: … CWE-79
Cross-site Scripting 		CVE-2025-23926 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
437 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jimmy Peña Feedburner Optin Form allows Stored XSS.This issue affects Feedburner Optin Form: from… CWE-79
Cross-site Scripting 		CVE-2025-23925 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
438 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jérémy Heleine WP Photo Sphere allows Stored XSS.This issue affects WP Photo Sphere: from n/a thr… CWE-79
Cross-site Scripting 		CVE-2025-23924 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
439 - - - Cross-Site Request Forgery (CSRF) vulnerability in Harsh iSpring Embedder allows Upload a Web Shell to a Web Server.This issue affects iSpring Embedder: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23922 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
440 - - - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Ella van Durpe Slides & Presentations allows Code Injection.This issue affects Slides & Presentations: f… CWE-80
Basic XSS 		CVE-2025-23919 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm