Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
191621 6.8 警告 justjoomla - Joomla! 用の jjgallery コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-6027 2012-09-25 16:59 2007-11-19 Show GitHub Exploit DB Packet Storm
191622 5 警告 KDE project - KDE Konqueror におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2007-6000 2012-09-25 16:59 2007-11-15 Show GitHub Exploit DB Packet Storm
191623 7.8 危険 justin hagstrom - Justin Hagstrom AutoIndex PHP Scrpit の classes/Url.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2007-5984 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
191624 4.3 警告 justin hagstrom - Justin Hagstrom AutoIndex PHP Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5983 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
191625 3.3 注意 Lantronix, Inc. - Lantronix SCS3200 におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2007-5981 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
191626 7.5 危険 jportal - JPortal の mailer.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5974 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
191627 7.5 危険 jportal - JPortal の articles.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5973 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
191628 9 危険 MIT Kerberos - krb5 の lib/kdb/kdb_default.c におけるメモリ二重解放の脆弱性 CWE-119
バッファエラー
CVE-2007-5972 2012-09-25 16:59 2007-12-5 Show GitHub Exploit DB Packet Storm
191629 5.8 警告 MySQL AB - MySQL における任意のテーブルの権限を取得される脆弱性 CWE-DesignError
CVE-2007-5970 2012-09-25 16:59 2007-12-10 Show GitHub Exploit DB Packet Storm
191630 4.7 警告 KDE project - kdebase におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2007-5963 2012-09-25 16:59 2007-12-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
721 - - - Missing Authorization vulnerability in Gagan Sandhu , Enej Bajgoric , CTLT DEV, UBC People Lists allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects People Lis… CWE-862
 Missing Authorization
CVE-2025-24691 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
722 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lars Wallenborn Show/Hide Shortcode allows Stored XSS. This issue affects Show/Hide Shortcode: fr… CWE-79
Cross-site Scripting
CVE-2025-24687 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
723 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPChill RSVP and Event Management Plugin allows SQL Injection. This issue affects RSVP and Event … CWE-89
SQL Injection
CVE-2025-24683 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
724 - - - Missing Authorization vulnerability in mikemmx Super Block Slider allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Super Block Slider: from n/a through 2.7.… CWE-862
 Missing Authorization
CVE-2025-24682 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
725 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpWax Product Carousel Slider & Grid Ultimate for WooCommerce allows Stored XSS. This issue affec… CWE-79
Cross-site Scripting
CVE-2025-24681 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
726 - - - Missing Authorization vulnerability in webraketen Internal Links Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Internal Links Manager: from n/a t… CWE-862
 Missing Authorization
CVE-2025-24679 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
727 - - - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Listamester Listamester allows Stored XSS. This issue affects Listamester: from n/a through 2.3.4. CWE-80
Basic XSS
CVE-2025-24678 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
728 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in osamaesh WP Visitor Statistics (Real Time Traffic) allows Stored XSS. This issue affects WP Visit… CWE-79
Cross-site Scripting
CVE-2025-24675 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
729 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Teplitsa. Technologies for Social Good ShMapper by Teplitsa allows Stored XSS. This issue affects… CWE-79
Cross-site Scripting
CVE-2025-24674 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm
730 - - - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in AyeCode Ltd Ketchup Shortcodes allows Stored XSS. This issue affects Ketchup Shortcodes: from n/a throug… CWE-80
Basic XSS
CVE-2025-24673 2025-01-25 03:15 2025-01-25 Show GitHub Exploit DB Packet Storm