Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 1, 2025, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189191 4.3 警告 マイクロソフト - Windows XP SP2 の Microsoft Internet Explorer 6 における絶対パストラバーサルの脆弱性 - CVE-2007-3406 2012-09-25 16:47 2007-06-26 Show GitHub Exploit DB Packet Storm
189192 4.3 警告 lebisoft - Lebisoft zdefter の defter_yaz.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3405 2012-09-25 16:47 2007-06-26 Show GitHub Exploit DB Packet Storm
189193 7.5 危険 pagetool - pagetool の index.php における SQL インジェクションの脆弱性 - CVE-2007-3402 2012-09-25 16:47 2007-06-26 Show GitHub Exploit DB Packet Storm
189194 9.3 危険 nctsoft products - NCTAudioEditor などの製品で使用される NCTWMAFile2.dll の NCTAudioEditor2 ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2007-3400 2012-09-25 16:47 2007-06-26 Show GitHub Exploit DB Packet Storm
189195 5 警告 perception - LiteWeb におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3398 2012-09-25 16:47 2007-06-26 Show GitHub Exploit DB Packet Storm
189196 4.3 警告 key focus - KF Web サーバの index.wkf におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3396 2012-09-25 16:47 2007-06-26 Show GitHub Exploit DB Packet Storm
189197 7.5 危険 kim kyoung min - Sun Board における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3370 2012-09-25 16:47 2007-06-22 Show GitHub Exploit DB Packet Storm
189198 7.8 危険 myserver - MyServer における重要な情報を取得される脆弱性 - CVE-2007-3365 2012-09-25 16:47 2007-06-22 Show GitHub Exploit DB Packet Storm
189199 4.3 警告 myserver - MyServer の cgi-bin/post.mscgi サンプルページにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3364 2012-09-25 16:47 2007-06-22 Show GitHub Exploit DB Packet Storm
189200 7.8 危険 Nortel Networks - Nortel PC Client SIP Soft Phone におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3361 2012-09-25 16:47 2007-06-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 1, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
131 - - - Tecnick TCExam – CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') New CWE-89
SQL Injection 		CVE-2024-47926 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
132 - - - Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') New CWE-79
Cross-site Scripting 		CVE-2024-47925 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
133 - - - Boa web server – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') New CWE-79
Cross-site Scripting 		CVE-2024-47924 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
134 - - - Mashov – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor New CWE-200
Information Exposure 		CVE-2024-47923 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
135 - - - Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor New CWE-200
Information Exposure 		CVE-2024-47922 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
136 - - - Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm New CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-47921 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
137 - - - Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') New CWE-79
Cross-site Scripting 		CVE-2024-47920 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
138 - - - Tiki Wiki CMS – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') New CWE-78
OS Command  		CVE-2024-47919 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
139 - - - Tiki Wiki CMS – CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) New CWE-78
OS Command  		CVE-2024-47918 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm
140 - - - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') New CWE-79
Cross-site Scripting 		CVE-2024-47917 2024-12-30 19:15 2024-12-30 Show GitHub Exploit DB Packet Storm