Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 18, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
189851	9.3	危険	JSPWiki	-	JSPWiki における任意の .jsp ファイルをアップロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1230	2012-09-25 16:59	2008-03-10	Show	GitHub Exploit DB Packet Storm

189852	4.3	警告	JSPWiki	-	JSPWiki の Edit.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1229	2012-09-25 16:59	2008-03-10	Show	GitHub Exploit DB Packet Storm

189853	4.3	警告	minigal	-	MG2 の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1228	2012-09-25 16:59	2008-03-10	Show	GitHub Exploit DB Packet Storm

189854	5	警告	MicroWorld Technologies Inc.	-	MicroWorld eScan Corporate Edition などの FTP サーバにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-1221	2012-09-25 16:59	2008-03-10	Show	GitHub Exploit DB Packet Storm

189855	6.8	警告	IBM	-	IBM Lotus Quickr サーバにおける任意の Web スクリプトなどを挿入される脆弱性	CWE-20 不適切な入力確認	CVE-2008-1216	2012-09-25 16:59	2008-03-8	Show	GitHub Exploit DB Packet Storm

189856	7.5	危険	numara	-	Numara FootPrints の MRcgi/MRProcessIncomingForms.pl における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-1214	2012-09-25 16:59	2008-03-7	Show	GitHub Exploit DB Packet Storm

189857	4.3	警告	numara	-	Linux 用の Numara FootPrints におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1213	2012-09-25 16:59	2008-03-7	Show	GitHub Exploit DB Packet Storm

189858	6.8	警告	linux kiss server	-	Linux Kiss Server の lks.c におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2008-1206	2012-09-25 16:59	2008-03-7	Show	GitHub Exploit DB Packet Storm

189859	9.3	危険	マイクロソフト	-	Microsoft Access 2000 における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2008-1200	2012-09-25 16:59	2008-03-6	Show	GitHub Exploit DB Packet Storm

189860	6.3	警告	ネットギア marvell	-	Netgear WN802T Wi-Fi アクセスポイントの Marvell ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-1197	2012-09-25 16:59	2008-09-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
571	-	-	-	A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critical. Affected by this vulnerability is the function FUN_00412244. The manipulation leads to null pointer derefer… New	CWE-476 CWE-404 NULL Pointer Dereference Improper Resource Shutdown or Release	CVE-2025-0492	2025-01-16 07:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

572	-	-	-	A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. Affected is an unknown function of the file /fladmin/cat_dodel.php. The manipulation of the argument id l… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0491	2025-01-16 07:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

573	-	-	-	An issue in parse-uri v1.0.9 allows attackers to cause a Regular expression Denial of Service (ReDoS) via a crafted URL. New	-	CVE-2024-36751	2025-01-16 07:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

574	-	-	-	A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /fladmin/cat_edit.php. The manipulation of t… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0487	2025-01-16 06:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

575	-	-	-	A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fladmin/login.php. The manipulatio… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0486	2025-01-16 06:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

576	-	-	-	An issue in the USB Autorun function of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to execute arbitrary code via uploading a crafted script from a USB device. New	-	CVE-2024-48123	2025-01-16 06:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

577	-	-	-	Insecure default configurations in HI-SCAN 6040i Hitrax HX-03-19-I allow authenticated attackers with low-level privileges to escalate to root-level privileges. New	-	CVE-2024-48122	2025-01-16 06:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

578	-	-	-	The HI-SCAN 6040i Hitrax HX-03-19-I was discovered to transmit user credentials in cleartext over the GIOP protocol. This allows attackers to possibly gain access to sensitive information via a man-i… New	-	CVE-2024-48121	2025-01-16 06:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

579	-	-	-	A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. This affects an unknown part of the file /fladmin/user_recoverpwd.php. The manipulation leads to use of d… New	-	CVE-2025-0482	2025-01-16 06:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

580	-	-	-	Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the iface parameter in the vif_enable function. Update	-	CVE-2024-57226	2025-01-16 06:15	2025-01-11	Show	GitHub Exploit DB Packet Storm