Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 6, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190281 10 危険 noah spurrier - PHP 用の Upload Tool におけるファイルをアップロードされる脆弱性 - CVE-2006-7134 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
190282 5 警告 php upload tool - Upload Tool の upload/bin/download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7133 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
190283 4.3 警告 オラクル - Oracle APEX におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7158 2012-09-25 15:36 2006-10-17 Show GitHub Exploit DB Packet Storm
190284 6 警告 オラクル - WWV_FLOW_UTILITIES パッケージの wwv_flow_utilities.gen_popup_list における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-7138 2012-09-25 15:36 2006-10-17 Show GitHub Exploit DB Packet Storm
190285 10 危険 jinzora - Jinzora の extras/mt.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7131 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
190286 7.5 危険 jinzora - Jinzora における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-7130 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
190287 2.1 注意 インターネット セキュリティ システムズ - ISS BlackICE PC Protection におけるスキーム保護を回避される脆弱性 - CVE-2006-7129 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
190288 6.8 警告 Joomla! - Joomla BSQ Sitestats における SQL インジェクションの脆弱性 - CVE-2006-7126 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
190289 6.8 警告 Joomla! - Joomla BSQ Sitestats におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7125 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
190290 7.5 危険 Joomla! - BSQ Sitestats の external/rssfeeds.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7124 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 7, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
91 - - - A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by this issue is the function rememberMeManager of the file src/main/java/com/mysiteforme/admin/config/Shir… New CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2024-13136 2025-01-5 18:15 2025-01-5 Show GitHub Exploit DB Packet Storm
92 - - - A vulnerability has been found in Emlog Pro 2.4.3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/twitter.php of the component Subpage Han… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2024-13135 2025-01-5 18:15 2025-01-5 Show GitHub Exploit DB Packet Storm
93 - - - A vulnerability, which was classified as critical, was found in ZeroWdd studentmanager 1.0. Affected is the function addTeacher/editTeacher of the file src/main/Java/com/wdd/studentmanager/controller… New CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-13134 2025-01-5 17:15 2025-01-5 Show GitHub Exploit DB Packet Storm
94 - - - A vulnerability, which was classified as problematic, has been found in Trimble SPS851 488.01. Affected by this issue is some unknown functionality of the component Receiver Status Identity Tab. The … New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-0219 2025-01-5 15:15 2025-01-5 Show GitHub Exploit DB Packet Storm
95 - - - A vulnerability, which was classified as critical, has been found in ZeroWdd studentmanager 1.0. This issue affects the function addStudent/editStudent of the file src/main/Java/com/wdd/studentmanage… New CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-13133 2025-01-5 14:15 2025-01-5 Show GitHub Exploit DB Packet Storm
96 - - - A vulnerability classified as problematic was found in Emlog Pro up to 2.4.3. This vulnerability affects unknown code of the file /admin/article.php of the component Subpage Handler. The manipulation… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2024-13132 2025-01-5 14:15 2025-01-5 Show GitHub Exploit DB Packet Storm
97 - - - A vulnerability classified as problematic has been found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. This affects an unknown part of the file /web_caps/webC… New CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2024-13131 2025-01-5 12:15 2025-01-5 Show GitHub Exploit DB Packet Storm
98 - - - A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. It has been rated as problematic. Affected by this issue is some unknown functionality… New CWE-23
CWE-24
 Relative Path Traversal
 Path Traversal: '../filedir' 		CVE-2024-13130 2025-01-5 10:15 2025-01-5 Show GitHub Exploit DB Packet Storm
99 - - - A vulnerability was found in TMD Custom Header Menu 4.0.0.1 on OpenCart. It has been rated as problematic. This issue affects some unknown processing of the file /admin/index.php. The manipulation of… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0214 2025-01-5 02:15 2025-01-5 Show GitHub Exploit DB Packet Storm
100 - - - A vulnerability was found in Campcodes Project Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forms/update_forms.php?action=change_pic2&… New CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-0213 2025-01-5 02:15 2025-01-5 Show GitHub Exploit DB Packet Storm