Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192631 10 危険 mynewsgroup - MyNewsGroups :) の include.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2325 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192632 7.8 危険 julmajanne - JulmaCMS の file.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2324 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192633 10 危険 intervideo - InterVideo Home Theater の WinDVDX ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2007-2323 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192634 7.8 危険 Nero - Nero MediaHome などの NMMediaServer.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-2322 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192635 7.5 危険 Papoo Software - Papoo の kontakt.php における SQL インジェクションの脆弱性 - CVE-2007-2320 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192636 7.5 危険 miniBB
tosmo mambo		 - TOSMO/Mambo などの製品における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2317 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192637 10 危険 open business management - OBM の admin script における脆弱性 - CVE-2007-2316 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192638 7.8 危険 minishare - MiniShare におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2315 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192639 7.5 危険 mxbb - mxBB 用の Shotcast モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2313 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
192640 6.8 警告 news manager deluxe - NMDeluxe の includes/footer.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2303 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 5, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1401 4.3 MEDIUM
Network 		- - The Automate Hub Free by Sperse.IO plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.0. This is due to missing or incorrect nonce validation o… CWE-352
 Origin Validation Error 		CVE-2024-13683 2025-01-24 16:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1402 6.5 MEDIUM
Network 		- - The Form Builder CP plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter of the 'CP_EASY_FORM_WILL_APPEAR_HERE' shortcode in all versions up to, and including, 1.2.41 due to ins… CWE-89
SQL Injection 		CVE-2024-13680 2025-01-24 16:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1403 6.4 MEDIUM
Network 		- - The Listamester plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'listamester' shortcode in all versions up to, and including, 2.3.4 due to insufficient input saniti… CWE-79
Cross-site Scripting 		CVE-2024-13659 2025-01-24 15:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1404 - - - An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.6.4, 17.7 before 17.7.3, and 17.8 before 17.8.1. Improper rendering of certain file types lead to cross-site sc… CWE-79
Cross-site Scripting 		CVE-2025-0314 2025-01-24 12:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1405 - - - An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.6.4, from 17.7 prior to 17.7.3, and from 17.8 prior to 17.8.1. Under certain conditions, it may have… CWE-1220
 Insufficient Granularity of Access Control 		CVE-2024-11931 2025-01-24 12:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1406 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Rejected Reason: This candidate is unused by its CNA. - CVE-2021-30745 2025-01-24 11:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1407 - - - Heap buffer overflow in the server site handshake implementation in Real Time Logic LLC's SharkSSL version (from 05/05/24) commit 64808a5e12c83b38f85c943dee0112e428dc2a43 allows a remote attacker to … - CVE-2024-53379 2025-01-24 08:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1408 - - - Variable response times in the AWS Sign-in IAM user login flow allowed for the use of brute force enumeration techniques to identify valid IAM usernames in an arbitrary AWS account. - CVE-2025-0693 2025-01-24 07:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1409 - - - Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a sufficiently large ASN.1 packet over the S1AP interface. An attacker may repeatedly send such an oversized pac… - CVE-2023-37013 2025-01-24 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1410 - - - This CVE has been issued to inform users that they are using End-of-Life (EOL) versions of Node.js. These versions are no longer supported and do not receive updates, including security patches. The … - CVE-2025-23089 2025-01-24 07:15 2025-01-22 Show GitHub Exploit DB Packet Storm