Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
187541	7.5	危険	Intelliants	-	Subrion CMS の register/ における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4772	2012-10-24 16:37	2012-10-22	Show	GitHub Exploit DB Packet Storm

187542	4.3	警告	Intelliants	-	Subrion CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4771	2012-10-24 16:36	2012-10-22	Show	GitHub Exploit DB Packet Storm

187543	3.6	注意	OpenFabrics Alliance	-	ibacm における ib_acm デーモンログまたは ibacm.port ファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4518	2012-10-24 16:35	2012-10-22	Show	GitHub Exploit DB Packet Storm

187544	5	警告	OpenFabrics Alliance	-	ibacm におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-4517	2012-10-24 16:34	2012-10-22	Show	GitHub Exploit DB Packet Storm

187545	5.8	警告	OpenFabrics Alliance	-	librdmacm におけるアプリケーションのアドレス解決情報を設定される脆弱性	CWE-Other その他	CVE-2012-4516	2012-10-24 15:52	2012-10-22	Show	GitHub Exploit DB Packet Storm

187546	5.8	警告	libsocialweb	-	libsocialweb における重要な情報を取得される脆弱性	CWE-16 環境設定	CVE-2012-4511	2012-10-24 15:36	2012-10-22	Show	GitHub Exploit DB Packet Storm

187547	7.5	危険	Intelliants	-	Subrion CMS の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5212	2012-10-24 11:39	2012-10-22	Show	GitHub Exploit DB Packet Storm

187548	4.3	警告	Intelliants	-	Subrion CMS の poll モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5211	2012-10-24 11:38	2012-10-22	Show	GitHub Exploit DB Packet Storm

187549	5.8	警告	libsocialweb	-	libsocialweb における重要な情報を取得される脆弱性	CWE-16 環境設定	CVE-2011-4129	2012-10-24 11:37	2012-10-22	Show	GitHub Exploit DB Packet Storm

187550	4.3	警告	phpMyFAQ	-	phpMyFAQ におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4821	2012-10-24 11:34	2010-09-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
741	3.5	LOW Network	-	-	A vulnerability was found in Eastnets PaymentSafe 2.5.26.0. It has been classified as problematic. This affects an unknown part of the component BIC Search. The manipulation leads to cross site scrip…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-1337	2025-02-16 20:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

742	4.3	MEDIUM Network	-	-	A vulnerability has been found in CmsEasy 7.7.7.9 and classified as problematic. Affected by this vulnerability is the function deleteimg_action in the library lib/admin/image_admin.php. The manipula…	CWE-22 Path Traversal	CVE-2025-1336	2025-02-16 18:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

743	3.3	LOW Local	-	-	A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function sys_device_close/sys_device_control/sys_device_find/sys_device_init/sys_de…	-	CVE-2025-1115	2025-02-16 18:15	2025-02-8	Show	GitHub Exploit DB Packet Storm

744	4.3	MEDIUM Network	-	-	A vulnerability, which was classified as problematic, was found in CmsEasy 7.7.7.9. Affected is the function deleteimg_action in the library lib/admin/file_admin.php. The manipulation of the argument…	CWE-22 Path Traversal	CVE-2025-1335	2025-02-16 13:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

745	-		-	-	DataSourceResource.java in the SpagoBI API support in Knowage Server in KNOWAGE before 8.1.30 does not ensure that java:comp/env/jdbc/ occurs at the beginning of a JNDI Name.	-	CVE-2024-57971	2025-02-16 13:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

746	2.4	LOW Network	-	-	A vulnerability has been found in FastCMS up to 0.1.5 and classified as problematic. This vulnerability affects unknown code of the file /fastcms.html#/template/menu of the component Template Menu. T…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-1332	2025-02-16 10:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

747	-		-	-	StrongKey FIDO Server before 4.15.1 treats a non-discoverable (namedcredential) flow as a discoverable transaction.	-	CVE-2025-26788	2025-02-16 01:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

748	-		-	-	The Web GUI configuration panel of Hirsch (formerly Identiv and Viscount) Enterphone MESH through 2024 ships with default credentials (username freedom, password viscount). The administrator is not p…	-	CVE-2025-26793	2025-02-16 00:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

749	5.4	MEDIUM Network	-	-	The Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and in…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-13834	2025-02-16 00:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

750	6.5	MEDIUM Network	-	-	Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.5.2 via the fileID Parameter. This makes it possible for authenticated attackers, with Subscrib…	CWE-23 Relative Path Traversal	CVE-2025-0822	2025-02-15 22:15	2025-02-15	Show	GitHub Exploit DB Packet Storm