Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192071 7.5 危険 Mambo Foundation
Mambo Communities Pty		 - Mambo 用の remository コンポーネントにおける SQL インジェクションの脆弱性 - CVE-2007-4505 2012-09-25 16:59 2007-08-23 Show GitHub Exploit DB Packet Storm
192072 5 警告 Joomla! - Joomla! 用の Rsfiles コンポーネントにおけるディレクトリトラバーサルの脆弱性 - CVE-2007-4504 2012-09-25 16:59 2007-08-23 Show GitHub Exploit DB Packet Storm
192073 7.5 危険 Joomla! - Joomla! 用の Nick Talk コンポーネントにおける SQL インジェクションの脆弱性 - CVE-2007-4503 2012-09-25 16:59 2007-08-23 Show GitHub Exploit DB Packet Storm
192074 7.5 危険 Joomla! - Joomla! 用の BibTex コンポーネントの index.php における SQL インジェクションの脆弱性 - CVE-2007-4502 2012-09-25 16:59 2007-08-23 Show GitHub Exploit DB Packet Storm
192075 7.5 危険 gurur haber - Gurur haber の uyeler2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4491 2012-09-25 16:59 2007-08-22 Show GitHub Exploit DB Packet Storm
192076 7.5 危険 linkliste - Linkliste の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-4486 2012-09-25 16:59 2007-08-22 Show GitHub Exploit DB Packet Storm
192077 7.5 危険 my referer - My_REFERER の login.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-4484 2012-09-25 16:59 2007-08-22 Show GitHub Exploit DB Packet Storm
192078 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6.0 および 7 におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4478 2012-09-25 16:59 2007-08-22 Show GitHub Exploit DB Packet Storm
192079 9.3 危険 Intuit - Intuit QuickBooks Online Edition ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-22
CWE-264
CVE-2007-4471 2012-09-25 16:59 2007-09-5 Show GitHub Exploit DB Packet Storm
192080 4.3 警告 nufw - NuFW における時間ベースのパケットフィルタルールを回避される脆弱性 - CVE-2007-4461 2012-09-25 16:59 2007-08-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1691 4.3 MEDIUM
Network 		- - A vulnerability was found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel. 40304. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to clickjacking. T… CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2025-0729 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1692 - - - A cross-site scripting (XSS) vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title… - CVE-2024-55227 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1693 - - - Cacti is an open source performance and fault management framework. Cacti has a SQL injection vulnerability in the template function of host_templates.php using the graph_template parameter. This vul… CWE-89
SQL Injection 		CVE-2024-54146 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1694 - - - Cacti is an open source performance and fault management framework. Cacti has a SQL injection vulnerability in the get_discovery_results function of automation_devices.php using the network parameter… CWE-89
SQL Injection 		CVE-2024-54145 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1695 3.7 LOW
Network 		- - A vulnerability classified as problematic has been found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel. 40304. Affected is an unknown function of the file /usr_account_set.cgi of the component HTTP G… CWE-598
Information Exposure Through Query Strings in GET Request  		CVE-2025-0730 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1696 5.9 MEDIUM
Network 		- - IBM MQ Container 3.0.0, 3.0.1, 3.1.0 through 3.1.3 CD, 2.0.0 LTS through 2.0.22 LTS and 2.4.0 through 2.4.8, 2.3.0 through 2.3.3, 2.2.0 through 2.2.2 uses weaker than expected cryptographic algorithm… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-27256 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1697 - - - Cacti is an open source performance and fault management framework. Prior to 1.2.29, an administrator can change the `Poller Standard Error Log Path` parameter in either Installation Step 5 or in Con… CWE-22
Path Traversal 		CVE-2024-45598 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1698 5.9 MEDIUM
Network 		- - IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI could allow a remote attacker to obtain sensitive information, caused by sending network requests over an insecure channel. … CWE-311
Missing Encryption of Sensitive Data 		CVE-2024-38325 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1699 5.9 MEDIUM
Network 		- - IBM Storage Protect for Virtual Environments: Data Protection for VMware and Storage Protect Backup-Archive Client 8.1.0.0 through 8.1.23.0 uses weaker than expected cryptographic algorithms that cou… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-38320 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1700 5.4 MEDIUM
Network 		- - IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intende… CWE-79
Cross-site Scripting 		CVE-2024-37527 2025-01-28 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm