Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191621 7.5 危険 hosting controller - Hosting Controller における任意のユーザプロファイルを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6497 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
191622 6.8 警告 hosting controller - Hosting Controller における任意のユーザを登録される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6496 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
191623 6.5 警告 hosting controller - Hosting Controller の inc_newuser.asp におけるディレクトリ名 db のパーミッションを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6495 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
191624 10 危険 hosting controller - Hosting Controller におけるログインアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6494 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
191625 10 危険 imesh.com - iMesh の IMWeb.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6493 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
191626 7.1 危険 imesh.com - iMesh の IMWeb.dll および IMWebControl.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6492 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
191627 10 危険 kvaliitti - Kvaliitti WebDoc CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6491 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
191628 9.3 危険 hammer of thyrion - Hammer of Thyrion の HuffDecode 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6468 2012-09-25 16:59 2007-12-19 Show GitHub Exploit DB Packet Storm
191629 7.5 危険 mkportal - MKPortal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6467 2012-09-25 16:59 2007-12-19 Show GitHub Exploit DB Packet Storm
191630 4.3 警告 php real estate script - PHP Real Estate Classifieds の管理パネルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6463 2012-09-25 16:59 2007-12-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1181 - - - An argument injection vulnerability in the diagnose and import pac commands in WatchGuard Fireware OS before 12.8.1, 12.1.4, and 12.5.10 allows an authenticated remote attacker with unprivileged cred… - CVE-2022-31749 2025-01-28 09:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1182 - - - Anubis is a tool that allows administrators to protect bots against AI scrapers through bot-checking heuristics and a proof-of-work challenge to discourage scraping from multiple IP addresses. Anubis… CWE-807
 Reliance on Untrusted Inputs in a Security Decision 		CVE-2025-24369 2025-01-28 08:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1183 6.5 MEDIUM
Network 		- - IBM Watson Query on Cloud Pak for Data (IBM Data Virtualization 1.8, 2.0, 2.1, 2.2, and 3.0.0) could allow an authenticated user to obtain sensitive information from objects published using Watson Qu… CWE-497
 Exposure of Sensitive System Information to an Unauthorized Control Sphere 		CVE-2024-37526 2025-01-28 07:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1184 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `Handover Required` message missing a re… - CVE-2023-37011 2025-01-28 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1185 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `eNB Status Transfer` message missing a… - CVE-2023-37010 2025-01-28 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1186 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `Handover Notification` message missing … - CVE-2023-37009 2025-01-28 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1187 - - - An issue in System.Linq.Dynamic.Core before 1.6.0 allows remote access to properties on reflection types and static properties/fields. - CVE-2024-51417 2025-01-28 07:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1188 6.3 MEDIUM
Network 		- - A vulnerability classified as critical was found in Axiomatic Bento4 up to 1.6.0. This vulnerability affects the function AP4_StdcFileByteStream::ReadPartial of the component mp42aac. The manipulatio… CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2025-0753 2025-01-28 06:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1189 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `Initial UE Message` message missing a … - CVE-2023-37012 2025-01-28 06:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1190 - - - SSRF vulnerability in Edit Service Page of Apache Ranger UI in Apache Ranger Version 2.4.0. Users are recommended to upgrade to version Apache Ranger 2.5.0, which fixes this issue. - CVE-2024-45479 2025-01-28 06:15 2025-01-22 Show GitHub Exploit DB Packet Storm