Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209991 6.9 警告 アップル
Vim		 - Vim の Python インターフェースの src/if_python.c における信頼性のない検索パスの脆弱性 CWE-Other
その他 		CVE-2009-0316 2010-04-26 16:45 2009-01-28 Show GitHub Exploit DB Packet Storm
209992 9.3 危険 アップル
サイバートラスト株式会社
Vim
レッドハット		 - Vim におけるエスケープ文字を適切に処理しないことに関する任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4101 2010-04-26 16:45 2008-10-9 Show GitHub Exploit DB Packet Storm
209993 9.3 危険 アップル
サイバートラスト株式会社
Vim
レッドハット		 - Vim における適切に入力をサニタイズしないことに関する任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2712 2010-04-26 16:45 2008-10-9 Show GitHub Exploit DB Packet Storm
209994 4.3 警告 VMware - VMware Server の WebAccess におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1193 2010-04-21 17:54 2010-03-29 Show GitHub Exploit DB Packet Storm
209995 7.5 危険 VMware - 複数の VMware 製品の WebAccess におけるリクエストの発信元を偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0686 2010-04-21 17:53 2010-03-29 Show GitHub Exploit DB Packet Storm
209996 4.3 警告 VMware - 複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1137 2010-04-21 17:51 2010-03-29 Show GitHub Exploit DB Packet Storm
209997 4.6 警告 GNU Project
サイバートラスト株式会社
レッドハット		 - GNU Automake の dist または distcheck ルールにおけるコンテンツを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4029 2010-04-21 17:51 2009-12-20 Show GitHub Exploit DB Packet Storm
209998 5 警告 Linux
レッドハット		 - Linux kernel の virtio-net ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0741 2010-04-21 17:48 2010-03-30 Show GitHub Exploit DB Packet Storm
209999 6.9 警告 mielke
レッドハット		 - brltty の libbrlttybba.so における権限昇格の脆弱性 CWE-264
CWE-Other
CVE-2008-3279 2010-04-21 17:47 2010-03-30 Show GitHub Exploit DB Packet Storm
210000 4.3 警告 Mozilla Foundation - Mozilla Firefox/SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0181 2010-04-20 16:42 2010-03-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1331 - - - Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Multi Uploader for Gravity Forms allows Upload a Web Shell to a Web Server. This issue affects Multi Uploader for Gravity For… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-23921 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1332 - - - Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Smallerik File Browser allows Upload a Web Shell to a Web Server. This issue affects Smallerik File Browser: from n/a through… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-23918 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1333 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Menus Plus+ allows SQL Injection. This issue affects Menus Plus+: from n/a through 1.9.6. CWE-89
SQL Injection 		CVE-2025-23910 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1334 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Download Codes allows Reflected XSS. This issue affects WP Download Codes: from n/a t… CWE-79
Cross-site Scripting 		CVE-2025-23882 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1335 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Block Pack allows Reflected XSS. This issue affects WP Block Pack: from n/a through 1… CWE-79
Cross-site Scripting 		CVE-2025-23874 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1336 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WordPress File Search allows Reflected XSS. This issue affects WordPress File Search: fr… CWE-79
Cross-site Scripting 		CVE-2025-23867 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1337 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound EU DSGVO Helper allows Reflected XSS. This issue affects EU DSGVO Helper: from n/a throu… CWE-79
Cross-site Scripting 		CVE-2025-23866 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1338 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kolja Nolte Flexible Blogtitle allows Reflected XSS. This issue affects Flexible Blogtitle: from … CWE-79
Cross-site Scripting 		CVE-2025-23846 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1339 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Contact Form 7 Round Robin Lead Distribution allows Reflected XSS. This issue affects Co… CWE-79
Cross-site Scripting 		CVE-2025-23812 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1340 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP2APP allows Reflected XSS. This issue affects WP2APP: from n/a through 2.6.2. CWE-79
Cross-site Scripting 		CVE-2025-23811 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm