Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190881	7.5	危険	gwm	-	Galatolo WebManager の view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2700	2012-09-25 17:17	2008-06-13	Show	GitHub Exploit DB Packet Storm

190882	7.5	危険	gwm	-	GWM におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2699	2012-09-25 17:17	2008-06-13	Show	GitHub Exploit DB Packet Storm

190883	7.5	危険	jiro	-	JiRo's FAQ Manager eXperience の read.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2691	2012-09-25 17:17	2008-06-13	Show	GitHub Exploit DB Packet Storm

190884	7.5	危険	insanelysimple2	-	Insanely Simple Blog の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2670	2012-09-25 17:17	2008-06-11	Show	GitHub Exploit DB Packet Storm

190885	10	危険	lavrsen	-	Motion の webhttpd.c の read_client 関数における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2008-2654	2012-09-25 17:17	2008-06-10	Show	GitHub Exploit DB Packet Storm

190886	6.8	警告	mebiblio	-	meBiblio の upload/uploader.html における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-2648	2012-09-25 17:17	2008-06-10	Show	GitHub Exploit DB Packet Storm

190887	7.5	危険	mebiblio	-	meBiblio の admin/journal_change_mask.inc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2647	2012-09-25 17:17	2008-06-10	Show	GitHub Exploit DB Packet Storm

190888	4.3	警告	mebiblio	-	meBiblio におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2646	2012-09-25 17:17	2008-06-10	Show	GitHub Exploit DB Packet Storm

190889	7.5	危険	kmrg-itb	-	OtomiGenX の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2642	2012-09-25 17:17	2008-06-10	Show	GitHub Exploit DB Packet Storm

190890	7.5	危険	Joomla!	-	Joomla! 用の JooBlog コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2630	2012-09-25 17:17	2008-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
981	-		-	-	OpenAirInterface CN5G AMF (oai-cn5g-amf) <= 2.0.0 contains a null dereference in its handling of unsupported NGAP protocol messages which allows an attacker with network-adjacent access to the AMF to…	-	CVE-2024-24445	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

982	-		-	-	pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the organizationCode parameter at project.php.	-	CVE-2023-27113	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

983	-		-	-	pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the projectCode parameter at project.php.	-	CVE-2023-27112	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

984	7.5	HIGH Network	-	-	Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable vulnerabi…	-	CVE-2025-21510	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

985	6.5	MEDIUM Network	-	-	Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable vulnerabi…	-	CVE-2025-21509	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

986	-		-	-	https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incorrect Access Control. The type of exploitation is: local. The component is: `nm --without-symbol-version` function.	-	CVE-2024-57360	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

987	-		-	-	Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions.	-	CVE-2024-55959	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

988	-		-	-	The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is vulnerable to Remote Code Execution via a modified MQTT broker message.	-	CVE-2024-42936	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

989	-		-	-	lunasvg v3.0.0 was discovered to contain a segmentation violation via the component gray_record_cell.	-	CVE-2024-57724	2025-01-24 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

990	-		-	-	lunasvg v3.0.0 was discovered to contain a segmentation violation via the component composition_source_over.	-	CVE-2024-57723	2025-01-24 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm