Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Jan. 16, 2025, 4:04 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 151 | 9.8 |
緊急
Network codezips |
Project Management System In PHP And MYSQL With Source Code
|
codezips の Project Management System In PHP And MYSQL With Source Code における SQL インジェクションの脆弱性
New
|
CWE-74 |
CWE-89 CWE-89
CVE-2025-0233
|
2025-01-15 17:34 |
2025-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 152 | 5.9 |
警告
Network |
マイクロソフト | Azure Private 5G Core | Azure Private 5G Core サービス拒否の脆弱性 New |
CWE-130 CWE-noinfo |
CVE-2024-20685 | 2025-01-15 17:30 | 2024-04-9 | Show | GitHub Exploit DB Packet Storm |
| 153 | 9.8 |
緊急
Network infoline-tr |
project management system
|
campcodes の Project Management System における危険なタイプのファイルの無制限アップロードに関する脆弱性
New
|
CWE-284 |
CWE-434 CWE-434
CVE-2025-0213
|
2025-01-15 17:28 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 154 | 9.8 |
緊急
Network campcodes |
School Faculty Scheduling System
|
campcodes の School Faculty Scheduling System における SQL インジェクションの脆弱性
New
|
CWE-74 |
CWE-89 CWE-89
CVE-2025-0210
|
2025-01-15 17:26 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 155 | 9.8 |
緊急
Network code-projects |
Online Shoe Store
|
code-projects の Online Shoe Store における SQL インジェクションの脆弱性
New
|
CWE-74 |
CWE-89 CWE-89
CVE-2025-0207
|
2025-01-15 17:23 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 156 | 4.7 |
警告
Local |
クアルコム |
QCA6595 ファームウェア QCA6696 ファームウェア qam8255p ファームウェア sa7255p ファームウェア sa8540p ファームウェア qamsrv1m ファームウェア QAM8295P ファームウェア qca6698aq ファームウェア sa… |
複数のクアルコム製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New |
CWE-264 CWE-770 |
CVE-2024-43064 | 2025-01-15 17:20 | 2024-08-5 | Show | GitHub Exploit DB Packet Storm |
| 157 | 8.8 |
重要
Network |
wangl1989 | mysiteforme | wangl1989 の mysiteforme におけるサーバサイドのリクエストフォージェリの脆弱性 New |
CWE-918
サーバサイドリクエストフォージェリ |
CVE-2024-13139 | 2025-01-15 17:20 | 2025-01-5 | Show | GitHub Exploit DB Packet Storm |
| 158 | 9.8 |
緊急
Network TreasureHuntGame |
TreasureHunt
|
TreasureHuntGame の TreasureHunt における SQL インジェクションの脆弱性
New
|
CWE-74 |
CWE-89 CWE-89
CVE-2024-12895
|
2025-01-15 17:17 |
2024-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 159 | 8.8 |
重要
Network |
Shenzhen Tenda Technology Co.,Ltd. | AC18 ファームウェア | Shenzhen Tenda Technology Co.,Ltd. の AC18 ファームウェアにおける境界外書き込みに関する脆弱性 New |
CWE-121 CWE-787 |
CVE-2024-2487 | 2025-01-15 17:17 | 2024-03-15 | Show | GitHub Exploit DB Packet Storm |
| 160 | 8.8 |
重要
Network |
Synology Inc. | Surveillance Station | Synology Inc. の Surveillance Station における認証の欠如に関する脆弱性 New |
CWE-862
認証の欠如 |
CVE-2024-29241 | 2025-01-15 17:16 | 2024-03-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Jan. 16, 2025, 4:15 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 391 | 4.2 |
MEDIUM
Physics |
- | - | Windows BitLocker Information Disclosure Vulnerability New |
CWE-636
Not Failing Securely ('Failing Open') |
CVE-2025-21210 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 392 | 7.5 |
HIGH
Network
-
|
-
|
Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability
New
|
CWE-400
|
Uncontrolled Resource Consumption
CVE-2025-21207
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 393 | 6.1 |
MEDIUM
Physics |
- | - | Windows Recovery Environment Agent Elevation of Privilege Vulnerability New |
CWE-284
Improper Access Control |
CVE-2025-21202 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 394 | 6.5 |
MEDIUM
Network |
- | - | Active Directory Federation Server Spoofing Vulnerability New |
CWE-352
Origin Validation Error |
CVE-2025-21193 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 395 | 4.3 |
MEDIUM
Network |
- | - | MapUrlToZone Security Feature Bypass Vulnerability New |
CWE-41
Improper Resolution of Path Equivalence |
CVE-2025-21189 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 396 | 7.8 |
HIGH
Local |
- | - | Microsoft Power Automate Remote Code Execution Vulnerability New |
CWE-94
Code Injection |
CVE-2025-21187 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 397 | 7.8 |
HIGH
Local |
- | - | Microsoft Access Remote Code Execution Vulnerability New |
CWE-122
Heap-based Buffer Overflow |
CVE-2025-21186 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 398 | 8.8 |
HIGH
Network |
- | - | Visual Studio Remote Code Execution Vulnerability New |
CWE-125 CWE-122 Out-of-bounds Read Heap-based Buffer Overflow |
CVE-2025-21178 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 399 | 8.8 |
HIGH
Network |
- | - | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability New |
CWE-126
Buffer Over-read |
CVE-2025-21176 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 400 | 7.5 |
HIGH
Network |
- | - | .NET and Visual Studio Remote Code Execution Vulnerability New |
CWE-190 CWE-122 Integer Overflow or Wraparound Heap-based Buffer Overflow |
CVE-2025-21172 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |