Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191891	5	警告	madwifi	-	MadWifi の if_ath.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2830	2012-09-25 16:47	2007-05-23	Show	GitHub Exploit DB Packet Storm

191892	5	警告	madwifi	-	MadWifi の net80211/ieee80211_wireless.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2829	2012-09-25 16:47	2007-05-23	Show	GitHub Exploit DB Packet Storm

191893	6	警告	johntp	-	WordPress 用の AdSense-Deluxe プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-2828	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

191894	9.3	危険	LEAD Technologies, Inc.	-	LEAD Technologies の LeadTools におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2827	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

191895	7.5	危険	madirish webmail	-	Madirish Webmail の lib/addressbook.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2826	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

191896	6.8	警告	ht editor	-	HT Editor におけるバッファオーバーフローの脆弱性	-	CVE-2007-2823	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

191897	7.5	危険	ksign	-	AxKSignSWAT.dll におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2820	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

191898	7.5	危険	ol bookmarks	-	ol'bookmarks の read/index.php における SQL インジェクションの脆弱性	-	CVE-2007-2817	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

191899	7.5	危険	ol bookmarks	-	ol'bookmarks における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2816	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

191900	10	危険	マイクロソフト	-	Microsoft IIS Web Server の webhits.dll における非公開 Web ディレクトリへアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-2815	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
771	-		-	-	Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDSA signature comp…	-	CVE-2024-13176	2025-01-20 23:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

772	-		-	-	This vulnerability exists in the CP Plus Router due to insecure handling of cookie flags used within its web interface. A remote attacker could exploit this vulnerability by intercepting data transmi…	CWE-1004 CWE-614 Sensitive Cookie Without 'HttpOnly' Flag Sensitive Cookie in HTTPS Session Without 'Secure' Attribute	CVE-2025-0479	2025-01-20 21:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

773	-		-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: adapt set backend to use GC transaction API Use the GC transaction API to replace the old and buggy gc API …	-	CVE-2023-52923	2025-01-20 20:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

774	7.2	HIGH Network	-	-	The a+HRD from aEnrich Technology has an Insecure Deserialization vulnerability, allowing remote attackers with database modification privileges and regular system privileges to perform arbitrary cod…	CWE-502 Deserialization of Untrusted Data	CVE-2025-0586	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

775	9.8	CRITICAL Network	-	-	The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.	CWE-89 SQL Injection	CVE-2025-0585	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

776	5.3	MEDIUM Network	-	-	The a+HRD from aEnrich Technology has a Server-side Request Forgery, allowing unauthenticated remote attackers to exploit this vulnerability to probe internal network.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2025-0584	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

777	4.7	MEDIUM Network	-	-	A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument p…	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2025-0582	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

778	3.5	LOW Network	-	-	A vulnerability classified as problematic has been found in CampCodes School Management Software 1.0. This affects an unknown part of the file /chat/group/send of the component Chat History. The mani…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0581	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

779	5.6	MEDIUM Network	-	-	A vulnerability was found in Shiprocket Module 3 on OpenCart. It has been rated as critical. Affected by this issue is some unknown functionality of the file /index.php?route=extension/module/rest_ap…	CWE-285 CWE-863 Improper Authorization Incorrect Authorization	CVE-2025-0580	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

780	7.3	HIGH Network	-	-	A vulnerability was found in Shiprocket Module 3/4 on OpenCart. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php?route=extension/shi…	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0579	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm