Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191371	7.5	危険	Joomla!	-	Joomla! 用の mosDirectory コンポーネントの index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0690	2012-09-25 16:59	2008-02-11	Show	GitHub Exploit DB Packet Storm

191372	7.5	危険	Joomla!	-	Joomla! 用の Marketplace コンポーネントの index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0689	2012-09-25 16:59	2008-02-11	Show	GitHub Exploit DB Packet Storm

191373	7.5	危険	Mambo Foundation Joomla!	-	Joomla! 用の NeoReferences の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0686	2012-09-25 16:59	2008-02-11	Show	GitHub Exploit DB Packet Storm

191374	7.5	危険	ITechScripts	-	iTechClassifieds の ViewCat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0685	2012-09-25 16:59	2008-02-11	Show	GitHub Exploit DB Packet Storm

191375	4.3	警告	ITechScripts	-	iTechClassifieds の ViewCat.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0684	2012-09-25 16:59	2008-02-11	Show	GitHub Exploit DB Packet Storm

191376	7.8	危険	microtik	-	MicroTik RouterOS の SNMPd におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2008-0680	2012-09-25 16:59	2008-02-11	Show	GitHub Exploit DB Packet Storm

191377	7.5	危険	Joomla!	-	Joomla! 用の Noticias の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0670	2012-09-25 16:59	2008-02-11	Show	GitHub Exploit DB Packet Storm

191378	2.1	注意	Novell	-	Novell Client で使用される LCM におけるクリップボードのコンテンツを取得される脆弱性	CWE-DesignError	CVE-2008-0663	2012-09-25 16:59	2008-02-7	Show	GitHub Exploit DB Packet Storm

191379	6.8	警告	illustrate	-	dBpowerAMP Audio Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0661	2012-09-25 16:59	2008-02-7	Show	GitHub Exploit DB Packet Storm

191380	7.5	危険	Joomla!	-	Joomla! 用の Ynews の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0653	2012-09-25 16:59	2008-02-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1271	7.2	HIGH Network	aipower	aipower	The "AI Power: Complete AI Pack" plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.8.96 via deserialization of untrusted input from the $form['post_conten…	CWE-502 Deserialization of Untrusted Data	CVE-2025-0429	2025-01-25 05:51	2025-01-22	Show	GitHub Exploit DB Packet Storm

1272	7.3	HIGH Network	gamipress	gamipress	The The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to arbitrary shortcode execution via the gamipress_ajax_get_logs…	CWE-94 Code Injection	CVE-2024-13495	2025-01-25 05:46	2025-01-22	Show	GitHub Exploit DB Packet Storm

1273	7.5	HIGH Network	gamipress	gamipress	The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versi…	CWE-89 SQL Injection	CVE-2024-13496	2025-01-25 05:45	2025-01-22	Show	GitHub Exploit DB Packet Storm

1274	7.3	HIGH Network	gamipress	gamipress	The The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to arbitrary shortcode execution via gamipress_do_shortcode() fu…	CWE-94 Code Injection	CVE-2024-13499	2025-01-25 05:37	2025-01-22	Show	GitHub Exploit DB Packet Storm

1275	3.5	LOW Network	-	-	A vulnerability was found in fumiao opencms 2.2. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/model/addOrUpdate of the component Add Model Managemen…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0708	2025-01-25 05:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1276	7.8	HIGH Local	-	-	A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. It has been classified as critical. This affects an unknown part in the library CRYPTBASE.dll of the component Startup. The manipulatio…	CWE-426 Untrusted Search Path	CVE-2025-0707	2025-01-25 05:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1277	2.4	LOW Network	-	-	A vulnerability was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/s…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0706	2025-01-25 05:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1278	-		-	-	InnoShop V.0.3.8 and below is vulnerable to Cross Site Scripting (XSS) via SVG file upload.	-	CVE-2024-57277	2025-01-25 05:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1279	-		-	-	SQL injection vulnerability in Go-CMS v.1.1.10 allows a remote attacker to execute arbitrary code via a crafted payload.	-	CVE-2024-57095	2025-01-25 05:15	2025-01-25	Show	GitHub Exploit DB Packet Storm

1280	-		-	-	A persistent cross-site scripting (XSS) vulnerability in NodeBB v3.11.0 allows remote attackers to store arbitrary code in the 'about me' section of their profile.	-	CVE-2024-57041	2025-01-25 05:15	2025-01-25	Show	GitHub Exploit DB Packet Storm