Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
187361	5.8	警告	EmoryM	-	Android 用 Android_Pusher ライブラリにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5813	2012-11-7 17:38	2012-11-4	Show	GitHub Exploit DB Packet Storm

187362	5.8	警告	ACRA	-	Android 用 ACRA ライブラリにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5812	2012-11-7 17:38	2012-11-4	Show	GitHub Exploit DB Packet Storm

187363	5.8	警告	Zen Cart First Data	-	Zen Cart の LinkPoint モジュールにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5808	2012-11-7 16:40	2012-11-4	Show	GitHub Exploit DB Packet Storm

187364	5.8	警告	Zen Cart Authorize.Net	-	Zen Cart の Authorize.Net eCheck モジュールにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5807	2012-11-7 16:39	2012-11-4	Show	GitHub Exploit DB Packet Storm

187365	5.8	警告	Zen Cart PayPal	-	Zen Cart の PayPal Payments Pro モジュールにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5806	2012-11-7 16:37	2012-11-4	Show	GitHub Exploit DB Packet Storm

187366	5.8	警告	Zen Cart PayPal	-	Zen Cart の PayPal IPN 機能における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5805	2012-11-7 16:36	2012-11-4	Show	GitHub Exploit DB Packet Storm

187367	5.8	警告	CyberSource Corporation Ubercart	-	Ubercart の CyberSource モジュールにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5804	2012-11-7 16:35	2012-11-4	Show	GitHub Exploit DB Packet Storm

187368	5.8	警告	Hassan Consulting Ubercart	-	Ubercart の Authorize.Net モジュールにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5803	2012-11-7 16:34	2012-11-4	Show	GitHub Exploit DB Packet Storm

187369	5.8	警告	Ubercart	-	Ubercart の PayPal モジュールにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5802	2012-11-7 16:34	2012-11-4	Show	GitHub Exploit DB Packet Storm

187370	5.8	警告	PrestaShop	-	PrestaShop の PayPal モジュールにおける SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5801	2012-11-7 16:33	2012-11-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 11, 2025, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
391	8.8	HIGH Network	wp-royal-themes	royal_core	The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royal_restore_backup' function i…	CWE-862 Missing Authorization	CVE-2024-12129	2025-02-6 02:51	2025-01-30	Show	GitHub Exploit DB Packet Storm

392	4.3	MEDIUM Network	-	-	A vulnerability in Simple Network Management Protocol (SNMP) polling for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, r…	CWE-200 Information Exposure	CVE-2025-20207	2025-02-6 02:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

393	4.8	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use…	CWE-79 Cross-site Scripting	CVE-2025-20205	2025-02-6 02:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

394	4.8	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use…	CWE-79 Cross-site Scripting	CVE-2025-20204	2025-02-6 02:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

395	3.4	LOW Local	-	-	A vulnerability in the implementation of the remote access functionality of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance c…	CWE-250 Execution with Unnecessary Privileges	CVE-2025-20185	2025-02-6 02:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

396	6.5	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Web Appliance could allow an authenticated, remote attacker to perform …	CWE-20 Improper Input Validation	CVE-2025-20184	2025-02-6 02:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

397	5.8	MEDIUM Network	-	-	A vulnerability in a policy-based Cisco Application Visibility and Control (AVC) implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacke…	CWE-20 Improper Input Validation	CVE-2025-20183	2025-02-6 02:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

398	-		-	-	access_device.cgi on Digiever DS-2105 Pro 3.1.0.71-11 devices allows arbitrary file read. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.	-	CVE-2023-52164	2025-02-6 02:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

399	-		-	-	Digiever DS-2105 Pro 3.1.0.71-11 devices allow time_tzsetup.cgi Command Injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.	-	CVE-2023-52163	2025-02-6 02:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

400	-		-	-	The com.enflick.android.TextNow (aka TextNow: Call + Text Unlimited) application 24.17.0.2 for Android enables any installed application (with no permissions) to place phone calls without user intera…	-	CVE-2024-36437	2025-02-6 02:15	2025-02-4	Show	GitHub Exploit DB Packet Storm