Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 12:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
190371 7.5 危険 Mambo Foundation
Joomla!
- Mambo および Joomla! 用の MaMML コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-0511 2012-09-25 16:59 2008-01-31 Show GitHub Exploit DB Packet Storm
190372 7.5 危険 Mambo Foundation
Joomla!
- Mambo および Joomla! 用の Newsletter における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-0510 2012-09-25 16:59 2008-01-31 Show GitHub Exploit DB Packet Storm
190373 4.4 警告 IBM - IBM AIX におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2008-0509 2012-09-25 16:59 2008-01-31 Show GitHub Exploit DB Packet Storm
190374 6.8 警告 netwerk - Netwerk Smart Publisher の admin/op/disp.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2008-0503 2012-09-25 16:59 2008-01-31 Show GitHub Exploit DB Packet Storm
190375 10 危険 mamboxchange - Mambo LaiThai における脆弱性 CWE-noinfo
情報不足
CVE-2008-0500 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
190376 7.5 危険 mamboxchange - Mambo LaiThai における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-0499 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
190377 4.3 警告 Nucleus - Nucleus CMS の action.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-0497 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
190378 9.3 危険 Irfan Skiljan - IrfanView の FlashPix プラグインの fpx.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2008-0493 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
190379 6.8 警告 persits - Persits XUpload の XUpload.ocx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2008-0492 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
190380 7.5 危険 MPlayer project
Xine
- Xine-lib で使用される MPlayer などにおける任意のコードを実行される脆弱性 CWE-189
数値処理の問題
CVE-2008-0486 2012-09-25 16:59 2008-02-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
761 - - - SQL Injection vulnerability in DDSN Net Pty Ltd (DDSN Interactive) DDSN Interactive cm3 Acora CMS 10.1.1 allows an attacker to execute arbitrary code via the table parameter. - CVE-2025-22964 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
762 6.1 MEDIUM
Network
- - The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the showdata and initiate_restore parameters in all versions up to, and includin… CWE-79
Cross-site Scripting
CVE-2025-0215 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
763 - - - An arbitrary file upload vulnerability in the UI login page logo upload function of Process Maker pm4core-docker 4.1.21-RC7 allows attackers to execute arbitrary code via uploading a crafted PHP or H… - CVE-2024-41454 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
764 - - - Insecure permissions in Aginode GigaSwitch v5 allows attackers to access sensitive information via using the SCP command. - CVE-2024-39967 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
765 - - - An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclo… - CVE-2025-0107 2025-01-16 08:15 2025-01-11 Show GitHub Exploit DB Packet Storm
766 - - - A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critical. Affected by this vulnerability is the function FUN_00412244. The manipulation leads to null pointer derefer… CWE-476
CWE-404
 NULL Pointer Dereference
 Improper Resource Shutdown or Release
CVE-2025-0492 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
767 - - - A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. Affected is an unknown function of the file /fladmin/cat_dodel.php. The manipulation of the argument id l… CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0491 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
768 - - - An issue in parse-uri v1.0.9 allows attackers to cause a Regular expression Denial of Service (ReDoS) via a crafted URL. - CVE-2024-36751 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
769 - - - A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /fladmin/cat_edit.php. The manipulation of t… CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0487 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
770 - - - A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fladmin/login.php. The manipulatio… CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0486 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm