Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251371	7.5	危険	David Noguera Gutierrez	-	DaLogin における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5012	2011-12-9 14:09	2011-11-2	Show	GitHub Exploit DB Packet Storm

251372	7.5	危険	McKenzie Creations	-	Mckenzie Creations Virtual Real Estate Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5013	2011-12-9 14:04	2011-11-2	Show	GitHub Exploit DB Packet Storm

251373	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5014	2011-12-9 14:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

251374	7.5	危険	2daybiz	-	2daybiz Network Community Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5015	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

251375	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5016	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

251376	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5017	2011-12-9 13:59	2011-11-2	Show	GitHub Exploit DB Packet Storm

251377	4.3	警告	2daybiz	-	2daybiz Online Classified Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5018	2011-12-9 13:59	2011-11-2	Show	GitHub Exploit DB Packet Storm

251378	7.5	危険	2daybiz	-	2daybiz Online Classified Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5019	2011-12-9 13:58	2011-11-2	Show	GitHub Exploit DB Packet Storm

251379	7.5	危険	NetArt Media	-	NetArt Media iBoutique における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5020	2011-12-9 13:56	2011-11-2	Show	GitHub Exploit DB Packet Storm

251380	7.5	危険	Cramer Development	-	Digital Interchange Document Library における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5021	2011-12-9 13:56	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309071	8.8	HIGH Network	fabianros	blood_bank_management_system	A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /file/cancel.php. The manipulation of th…	CWE-89 SQL Injection	CVE-2024-10416	2024-10-30 05:21	2024-10-27	Show	GitHub Exploit DB Packet Storm

309072	8.8	HIGH Network	fabianros	blood_bank_management_system	A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /file/delete.php. The manipulation of the …	CWE-89 SQL Injection	CVE-2024-10417	2024-10-30 05:19	2024-10-27	Show	GitHub Exploit DB Packet Storm

309073	-		-	-	An issue was discovered in WTCMS 1.0. In the plupload method in \AssetController.class.php, the app parameters aren't processed, resulting in Cross Site Scripting (XSS).	-	CVE-2024-48239	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

309074	-		-	-	WTCMS 1.0 is vulnerable to SQL Injection in the edit_post method of /Admin\Controller\NavControl.class.php via the parentid parameter.	-	CVE-2024-48238	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

309075	-		-	-	An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\File…	-	CVE-2024-48236	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

309076	-		-	-	An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the save method of the TemplateController.java file.	-	CVE-2024-48235	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

309077	-		-	-	An issue was discovered in mipjz 5.0.5. In the push method of app\tag\controller\ApiAdminTag.php the value of the postAddress parameter is not processed and is directly passed into curl_exec executio…	-	CVE-2024-48234	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

309078	-		-	-	Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the edit_page.php component.	-	CVE-2024-48700	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

309079	-		-	-	A SQL Injection vulnerability in ESAFENET CDG 5 and earlier allows an attacker to execute arbitrary code via the id parameter of the dataSearch.jsp page.	-	CVE-2024-48343	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

309080	-		-	-	Cross Site Scripting vulnerability in Sentry v.6.0.9 allows a remote attacker to execute arbitrary code via the z parameter.	-	CVE-2024-48743	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm