Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
186781	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5676	2012-12-17 10:43	2012-12-11	Show	GitHub Exploit DB Packet Storm

186782	10	危険	Mozilla Foundation	-	複数の Mozilla 製品における任意の JavaScript コードを実行される脆弱性	CWE-DesignError	CVE-2012-1967	2012-12-14 18:33	2012-07-17	Show	GitHub Exploit DB Packet Storm

186783	4.3	警告	Mozilla Foundation	-	Mozilla Firefox および Firefox ESR におけるクロスサイトスクリプティングの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1966	2012-12-14 18:32	2012-07-17	Show	GitHub Exploit DB Packet Storm

186784	4.3	警告	Mozilla Foundation	-	Mozilla Firefox におけるクロスサイトスクリプティング保護メカニズムを回避される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1965	2012-12-14 18:31	2012-07-17	Show	GitHub Exploit DB Packet Storm

186785	4	警告	Mozilla Foundation	-	複数の Mozilla 製品における意図しない例外を追加させられる脆弱性	CWE-noinfo 情報不足	CVE-2012-1964	2012-12-14 18:29	2012-07-17	Show	GitHub Exploit DB Packet Storm

186786	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品における OpenID 認証情報と OAuth 2.0 アクセストークンを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1963	2012-12-14 18:28	2012-07-17	Show	GitHub Exploit DB Packet Storm

186787	10	危険	Mozilla Foundation	-	複数の Mozilla 製品におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-1962	2012-12-14 18:27	2012-07-17	Show	GitHub Exploit DB Packet Storm

186788	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品におけるクリックジャッキング攻撃の脆弱性	CWE-20 不適切な入力確認	CVE-2012-1961	2012-12-14 18:26	2012-07-17	Show	GitHub Exploit DB Packet Storm

186789	5	警告	Mozilla Foundation	-	複数の Mozilla 製品における XBL へのアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1959	2012-12-14 18:14	2012-07-17	Show	GitHub Exploit DB Packet Storm

186790	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsGlobalWindow::PageHidden 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-1958	2012-12-14 18:13	2012-07-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
111	6.5	MEDIUM Network	wpexperts	givewp_square	The WPExperts Square For GiveWP plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter in all versions up to, and including, 1.3.1 due to insufficient escaping on the user suppl… Update	CWE-89 SQL Injection	CVE-2024-13713	2025-02-25 12:28	2025-02-21	Show	GitHub Exploit DB Packet Storm

112	4.9	MEDIUM Network	wpindeed	ultimate_learning_pro	The Indeed Ultimate Learning Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’ parameter in all versions up to, and including, 3.9 due to insufficient escaping on t… Update	CWE-89 SQL Injection	CVE-2024-13846	2025-02-25 12:27	2025-02-21	Show	GitHub Exploit DB Packet Storm

113	6.3	MEDIUM Network	-	-	A vulnerability classified as critical was found in Benner Connecta 1.0.5330. Affected by this vulnerability is an unknown functionality of the file /Usuarios/Usuario/EditarLogado/. The manipulation … New	CWE-99 Resource Injection	CVE-2025-1645	2025-02-25 11:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

114	4.3	MEDIUM Network	-	-	A vulnerability classified as problematic has been found in Benner ModernaNet up to 1.2.0. Affected is an unknown function of the file /DadosPessoais/SG_Gravar. The manipulation of the argument idItA… New	CWE-352 CWE-862 Origin Validation Error Missing Authorization	CVE-2025-1644	2025-02-25 11:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

115	4.3	MEDIUM Network	-	-	A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been rated as problematic. This issue affects some unknown processing of the file /DadosPessoais/SG_AlterarSenha. The manipulation l… New	CWE-352 CWE-862 Origin Validation Error Missing Authorization	CVE-2025-1643	2025-02-25 10:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

116	4.3	MEDIUM Network	-	-	A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been declared as critical. This vulnerability affects unknown code of the file /AGE0000700/GetImageMedico?fooId=1. The manipulation … New	CWE-99 Resource Injection	CVE-2025-1642	2025-02-25 10:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

117	7.3	HIGH Network	-	-	A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been classified as critical. This affects an unknown part of the file /AGE0000700/GetHorariosDoDia?idespec=0&idproced=1103&data=2025… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-1641	2025-02-25 09:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

118	7.3	HIGH Network	-	-	A vulnerability was found in Benner ModernaNet up to 1.1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /Home/JS_CarregaCombo?formName=DADOS_PESSOAIS_P… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-1640	2025-02-25 09:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

119	-		-	-	An issue in sparkshop v.1.1.7 and before allows a remote attacker to execute arbitrary code via a crafted phar file. New	-	CVE-2024-57685	2025-02-25 08:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

120	-		-	-	NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 was discovered to contain a SQL injection vulnerability via the addProject method in the smarttimeplus/MySQLConnection endpoint. New	-	CVE-2024-53543	2025-02-25 08:15	2025-02-25	Show	GitHub Exploit DB Packet Storm