Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191311 7.5 危険 Mambo Foundation
Joomla!		 - Joomla! および Mambo 用の com_scheduling モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0810 2012-09-25 16:59 2008-02-18 Show GitHub Exploit DB Packet Storm
191312 4.3 警告 ikiwiki - Ikiwiki の htmlscrubber におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0809 2012-09-25 16:59 2008-02-18 Show GitHub Exploit DB Packet Storm
191313 4.3 警告 ikiwiki - Ikiwiki の meta プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0808 2012-09-25 16:59 2008-02-18 Show GitHub Exploit DB Packet Storm
191314 4.9 警告 Horde - Horde Groupware などの turba2 Contact Manager におけるアドレスデータを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0807 2012-09-25 16:59 2008-02-15 Show GitHub Exploit DB Packet Storm
191315 3.6 注意 paul pelzl - wyred における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-0806 2012-09-25 16:59 2008-02-18 Show GitHub Exploit DB Packet Storm
191316 7.5 危険 lookstrike - LookStrike Lan Manager における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0803 2012-09-25 16:59 2008-02-15 Show GitHub Exploit DB Packet Storm
191317 7.5 危険 mediaslide
Joomla!		 - Joomla! 用の MediaSlide コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0802 2012-09-25 16:59 2008-02-15 Show GitHub Exploit DB Packet Storm
191318 7.5 危険 paxxgallery - Mambo および Joomla! 用の PAXXGallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0801 2012-09-25 16:59 2008-02-15 Show GitHub Exploit DB Packet Storm
191319 7.5 危険 Joomla! - Joolma! 用の McQuiz コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0800 2012-09-25 16:59 2008-02-15 Show GitHub Exploit DB Packet Storm
191320 7.5 危険 Mambo Foundation
Joomla!		 - Mambo および Joomla! 用の Quiz における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0799 2012-09-25 16:59 2008-02-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1371 - - - Cacti is an open source performance and fault management framework. Cacti has a SQL injection vulnerability in the get_discovery_results function of automation_devices.php using the network parameter… CWE-89
SQL Injection 		CVE-2024-54145 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1372 3.7 LOW
Network 		- - A vulnerability classified as problematic has been found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel. 40304. Affected is an unknown function of the file /usr_account_set.cgi of the component HTTP G… CWE-598
Information Exposure Through Query Strings in GET Request  		CVE-2025-0730 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1373 5.9 MEDIUM
Network 		- - IBM MQ Container 3.0.0, 3.0.1, 3.1.0 through 3.1.3 CD, 2.0.0 LTS through 2.0.22 LTS and 2.4.0 through 2.4.8, 2.3.0 through 2.3.3, 2.2.0 through 2.2.2 uses weaker than expected cryptographic algorithm… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-27256 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1374 - - - Cacti is an open source performance and fault management framework. Prior to 1.2.29, an administrator can change the `Poller Standard Error Log Path` parameter in either Installation Step 5 or in Con… CWE-22
Path Traversal 		CVE-2024-45598 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1375 5.9 MEDIUM
Network 		- - IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI could allow a remote attacker to obtain sensitive information, caused by sending network requests over an insecure channel. … CWE-311
Missing Encryption of Sensitive Data 		CVE-2024-38325 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1376 5.9 MEDIUM
Network 		- - IBM Storage Protect for Virtual Environments: Data Protection for VMware and Storage Protect Backup-Archive Client 8.1.0.0 through 8.1.23.0 uses weaker than expected cryptographic algorithms that cou… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-38320 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1377 5.4 MEDIUM
Network 		- - IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intende… CWE-79
Cross-site Scripting 		CVE-2024-37527 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1378 4.3 MEDIUM
Network 		- - IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to perform unauthorized actions to another user's data due to improper access controls. CWE-284
Improper Access Control 		CVE-2024-22316 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1379 6.4 MEDIUM
Network 		- - IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the W… CWE-79
Cross-site Scripting 		CVE-2023-52292 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1380 4.3 MEDIUM
Network 		- - IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses. CWE-204
 Response Discrepancy Information Exposure 		CVE-2023-47159 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm