Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 27, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191131	6.8	警告	nmnnewsletter	-	NmnNewsletter の confirmUnsubscription.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6585	2012-09-25 16:59	2007-12-28	Show	GitHub Exploit DB Packet Storm

191132	7.5	危険	ip reg	-	Ip Reg における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6579	2012-09-25 16:59	2007-12-28	Show	GitHub Exploit DB Packet Storm

191133	4.3	警告	limbo cms	-	Limbo CMS の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6564	2012-09-25 16:59	2007-12-27	Show	GitHub Exploit DB Packet Storm

191134	5.7	警告	pdflib	-	PDFLib におけるスタックベースのバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6561	2012-09-25 16:59	2007-12-27	Show	GitHub Exploit DB Packet Storm

191135	4.3	警告	logaholic	-	Logaholic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6560	2012-09-25 16:59	2007-12-27	Show	GitHub Exploit DB Packet Storm

191136	7.5	危険	logaholic	-	Logaholic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6559	2012-09-25 16:59	2007-12-27	Show	GitHub Exploit DB Packet Storm

191137	7.5	危険	megacheatz	-	MeGaCheatZ における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6557	2012-09-25 16:59	2007-12-27	Show	GitHub Exploit DB Packet Storm

191138	9.3	危険	phil taylor	-	Joomla! 用の mosDirectory コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6555	2012-09-25 16:59	2007-12-27	Show	GitHub Exploit DB Packet Storm

191139	7.5	危険	mail machine	-	MailMachine Pro の showMsg.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6551	2012-09-25 16:59	2007-12-27	Show	GitHub Exploit DB Packet Storm

191140	4.3	警告	neuron news	-	neuron news におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6541	2012-09-25 16:59	2007-12-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
981	7.2	HIGH Network	-	-	The a+HRD from aEnrich Technology has an Insecure Deserialization vulnerability, allowing remote attackers with database modification privileges and regular system privileges to perform arbitrary cod…	CWE-502 Deserialization of Untrusted Data	CVE-2025-0586	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

982	9.8	CRITICAL Network	-	-	The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.	CWE-89 SQL Injection	CVE-2025-0585	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

983	5.3	MEDIUM Network	-	-	The a+HRD from aEnrich Technology has a Server-side Request Forgery, allowing unauthenticated remote attackers to exploit this vulnerability to probe internal network.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2025-0584	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

984	4.7	MEDIUM Network	-	-	A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument p…	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2025-0582	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

985	3.5	LOW Network	-	-	A vulnerability classified as problematic has been found in CampCodes School Management Software 1.0. This affects an unknown part of the file /chat/group/send of the component Chat History. The mani…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0581	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

986	5.6	MEDIUM Network	-	-	A vulnerability was found in Shiprocket Module 3 on OpenCart. It has been rated as critical. Affected by this issue is some unknown functionality of the file /index.php?route=extension/module/rest_ap…	CWE-285 CWE-863 Improper Authorization Incorrect Authorization	CVE-2025-0580	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

987	7.3	HIGH Network	-	-	A vulnerability was found in Shiprocket Module 3/4 on OpenCart. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php?route=extension/shi…	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0579	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

988	4.5	MEDIUM Local	-	-	A vulnerability has been found in obsproject OBS Studio up to 30.0.2 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to un…	CWE-426 Untrusted Search Path	CVE-2024-13524	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

989	6.1	MEDIUM Network	-	-	The a+HRD from aEnrich Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishin…	CWE-79 Cross-site Scripting	CVE-2025-0583	2025-01-20 11:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

990	3.5	LOW Network	-	-	A vulnerability was found in Facile Sistemas Cloud Apps up to 20250107. It has been classified as problematic. Affected is an unknown function of the file /account/forgotpassword of the component Pas…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0578	2025-01-20 11:15	2025-01-20	Show	GitHub Exploit DB Packet Storm