Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 7, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190051	10	危険	Mozilla Foundation	-	Mozilla などの Javascript エンジンにおける任意のコードを実行される脆弱性	-	CVE-2007-1794	2012-09-25 16:47	2007-04-2	Show	GitHub Exploit DB Packet Storm

190052	6.8	警告	kaqoo	-	Kaqoo Auction Software における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-1790	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

190053	6.8	警告	日立	-	Groupmax などの製品に使用される Hitachi Collaboration - Online Community Management における SQL インジェクションの脆弱性	-	CVE-2007-1786	2012-09-25 16:47	2007-03-30	Show	GitHub Exploit DB Packet Storm

190054	9.3	危険	IBM	-	IBM Lotus Notes Sametime における任意のコードを実行される脆弱性	-	CVE-2007-1784	2012-09-25 16:47	2007-03-30	Show	GitHub Exploit DB Packet Storm

190055	6.8	警告	jbrowser	-	JBrowser の upload.php3 における任意の PHP コードを実行される脆弱性	-	CVE-2007-1775	2012-09-25 16:47	2007-03-29	Show	GitHub Exploit DB Packet Storm

190056	7.1	危険	ヒューレット・パッカード	-	HP JetDirect プリントサーバの FTP サーバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1772	2012-09-25 16:47	2007-03-29	Show	GitHub Exploit DB Packet Storm

190057	4.3	警告	mephisto	-	Mephisto および Mephisto Edge におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1768	2012-09-25 16:47	2007-03-29	Show	GitHub Exploit DB Packet Storm

190058	10	危険	msxstudios	-	Advanced Login における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1766	2012-09-25 16:47	2007-03-29	Show	GitHub Exploit DB Packet Storm

190059	7.1	危険	マイクロソフト	-	Microsoft Windows Vista の ATI カーネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1763	2012-09-25 16:47	2007-03-29	Show	GitHub Exploit DB Packet Storm

190060	5	警告	Mozilla Foundation	-	Mozilla Firefox におけるフィッシングの保護を回避される脆弱性	-	CVE-2007-1762	2012-09-25 16:47	2007-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 7, 2025, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
131	-		-	-	An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS due to insufficient enforcement of password complexity requirements. The app…	-	CVE-2025-22390	2025-01-4 12:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

132	-		-	-	An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS, where the application does not properly validate uploaded files. This allow…	-	CVE-2025-22389	2025-01-4 12:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

133	-		-	-	An issue was discovered in Optimizely Configured Commerce before 5.2.2408. A medium-severity issue exists in requests for resources where the session token is submitted as a URL parameter. This expos…	-	CVE-2025-22387	2025-01-4 12:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

134	-		-	-	An issue was discovered in Optimizely Configured Commerce before 5.2.2408. A medium-severity issue concerning business logic exists in the Commerce B2B application, which allows storefront visitors t…	-	CVE-2025-22384	2025-01-4 11:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

135	-		-	-	A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewal…	-	CVE-2024-3393	2025-01-4 11:00	2024-12-27	Show	GitHub Exploit DB Packet Storm

136	-		-	-	A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minus_cart.php. The…	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0199	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

137	4.3	MEDIUM Network	-	-	IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to …	-	CVE-2024-55897	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

138	5.4	MEDIUM Network	-	-	IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthori…	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2024-55896	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

139	4.3	MEDIUM Network	-	-	The Photo Gallery Slideshow & Masonry Tiled Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.0.15 via the rjg_get_youtube_info_justifi…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-12237	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

140	7.3	HIGH Network	-	-	The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0. This is due to the software allowing users to execute …	CWE-94 Code Injection	CVE-2024-11733	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm