Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250691 4.3 警告 XWiki - XWiki Watch におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4640 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250692 7.5 危険 intendance - MySource Matrix の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4639 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250693 6.8 警告 iptechinside - JQuarks4s コンポーネントの submitSurvey 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4638 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250694 4.3 警告 finalcut - WordPress の FeedList プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4637 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250695 7.5 危険 site2nite - Site2Nite Business e-Listings の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4636 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250696 7.5 危険 site2nite - Site2Nite VRBO Listings の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4635 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250697 7.5 危険 sumeffect - digiSHOP の cart.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4633 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250698 7.5 危険 PilotCart - ASPilot Pilot Cart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4632 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250699 4.3 警告 PilotCart - ASPilot Pilot Cart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4631 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
250700 4.3 警告 fubra - WordPress の WP Survey And Quiz Tool プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4630 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305881 - zabbix zabbix SQL injection vulnerability in events.php in Zabbix 1.8.1 and earlier allows remote attackers to execute arbitrary SQL commands via the nav_time parameter. CWE-89
SQL Injection 		CVE-2010-5049 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
305882 - joomlatune com_jcomments Cross-site scripting (XSS) vulnerability in admin.jcomments.php in the JoomlaTune JComments (com_jcomments) component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web scr… CWE-79
Cross-site Scripting 		CVE-2010-5048 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
305883 - v-eva press_release_script SQL injection vulnerability in page.php in V-EVA Press Release Script allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-5047 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
305884 - ecocms ecocms Cross-site scripting (XSS) vulnerability in admin.php in ecoCMS allows remote attackers to inject arbitrary web script or HTML via the p parameter. CWE-79
Cross-site Scripting 		CVE-2010-5046 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
305885 - sellatsite smart_asp_survey Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote attackers to inject arbitrary web script or HTML via the catid parameter. CWE-79
Cross-site Scripting 		CVE-2010-5045 2024-11-21 10:22 2011-11-3 Show GitHub Exploit DB Packet Storm
305886 - kanich com_searchlog SQL injection vulnerability in models/log.php in the Search Log (com_searchlog) component 3.1.0 for Joomla! allows remote authenticated users, with Public Back-end privileges, to execute arbitrary SQ… CWE-89
SQL Injection 		CVE-2010-5044 2024-11-21 10:22 2011-11-3 Show GitHub Exploit DB Packet Storm
305887 - blueconstantmedia com_djartgallery SQL injection vulnerability in the DJ-ArtGallery (com_djartgallery) component 0.9.1 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the cid[] parameter in an editI… CWE-89
SQL Injection 		CVE-2010-5043 2024-11-21 10:22 2011-11-3 Show GitHub Exploit DB Packet Storm
305888 - blueconstantmedia com_djartgallery Cross-site scripting (XSS) vulnerability in the DJ-ArtGallery (com_djartgallery) component 0.9.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the cid[] parameter in … CWE-79
Cross-site Scripting 		CVE-2010-5042 2024-11-21 10:22 2011-11-3 Show GitHub Exploit DB Packet Storm
305889 - john_bradshaw np_gallery_plugin SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary SQL commands via the id parameter in a plugin action. CWE-89
SQL Injection 		CVE-2010-5041 2024-11-21 10:22 2011-11-3 Show GitHub Exploit DB Packet Storm
305890 - john_bradshaw np_gallery_plugin PHP remote file inclusion vulnerability in nucleus/plugins/NP_gallery.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary PHP code via a URL in the DIR_NUCLEUS … CWE-94
Code Injection 		CVE-2010-5040 2024-11-21 10:22 2011-11-3 Show GitHub Exploit DB Packet Storm