Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193061 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6.0 SP1 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0811 2012-09-25 16:47 2007-02-7 Show GitHub Exploit DB Packet Storm
193062 7.5 危険 mina ajans - Mina Ajans Script における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0808 2012-09-25 16:47 2007-02-7 Show GitHub Exploit DB Packet Storm
193063 7.5 危険 les news - Les News における管理者アクセス権を取得される脆弱性 - CVE-2007-0806 2012-09-25 16:47 2007-02-7 Show GitHub Exploit DB Packet Storm
193064 2.1 注意 ヒューレット・パッカード - HP Tru64 UNIX の /usr/ucb/ps コマンドにおける重要な情報を取得される脆弱性 - CVE-2007-0805 2012-09-25 16:47 2007-02-7 Show GitHub Exploit DB Packet Storm
193065 6.4 警告 Mozilla Foundation
Opera Software ASA		 - Mozilla Firefox におけるフィッシングの保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-0802 2012-09-25 16:47 2007-01-19 Show GitHub Exploit DB Packet Storm
193066 4.3 警告 Mozilla Foundation - Mozilla Firefox の nsExternalAppHandler::SetUpTempFile 関数における任意の Web スクリプトまたは HTML を実行される脆弱性 - CVE-2007-0801 2012-09-25 16:47 2007-02-7 Show GitHub Exploit DB Packet Storm
193067 7.5 危険 Mozilla Foundation - Bugzilla の mod_perl 初期化スクリプトにおけるデータベースのパスワードなどを取得される脆弱性 - CVE-2007-0792 2012-09-25 16:47 2007-02-2 Show GitHub Exploit DB Packet Storm
193068 4.3 警告 Mozilla Foundation - Bugzilla の Atom フィードにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0791 2012-09-25 16:47 2007-02-2 Show GitHub Exploit DB Packet Storm
193069 6.8 警告 Mambo Foundation - Mambo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0789 2012-09-25 16:47 2007-02-6 Show GitHub Exploit DB Packet Storm
193070 4.3 警告 MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0788 2012-09-25 16:47 2007-02-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1451 6.4 MEDIUM
Network 		- - The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including… CWE-79
Cross-site Scripting 		CVE-2025-0353 2025-01-29 21:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1452 - - - The file names constructed within image_picker are missing sanitization checks leaving them vulnerable to malicious document providers. This may result in cases where a user with a malicious document… - CVE-2024-54462 2025-01-29 21:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1453 - - - The file names constructed within file_selector are missing sanitization checks leaving them vulnerable to malicious document providers. This may result in cases where a user with a malicious documen… - CVE-2024-54461 2025-01-29 21:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1454 - - - Zohocorp ManageEngine Applications Manager versions 174000 and prior are vulnerable to the incorrect authorization in the update user function. - CVE-2024-41140 2025-01-29 21:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1455 6.4 MEDIUM
Network 		- - The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's brid_override_yt shortcode in all versions up to, and including, 3.8.3 due to insuffic… CWE-79
Cross-site Scripting 		CVE-2024-13561 2025-01-29 21:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1456 - - - Xerox Workplace Suite stores tokens in session storage, which may expose them to potential access if a user's session is compromised.  The patch for this vulnerability will be included in a future r… - CVE-2024-55931 2025-01-29 21:15 2025-01-27 Show GitHub Exploit DB Packet Storm
1457 - - - Xerox Workplace Suite has weak default folder permissions that allow unauthorized users to access, modify, or delete files - CVE-2024-55930 2025-01-29 21:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1458 - - - A mail spoofing vulnerability in Xerox Workplace Suite allows attackers to forge email headers, making it appear as though messages are sent from trusted sources. - CVE-2024-55929 2025-01-29 21:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1459 - - - Xerox Workplace Suite exposes sensitive secrets in clear text, both locally and remotely. This vulnerability allows attackers to intercept or access secrets without encryption - CVE-2024-55928 2025-01-29 21:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1460 - - - A vulnerability in Xerox Workplace Suite arises from flawed token generation and the use of hard-coded keys. These weaknesses allow attackers to predict or forge tokens, leading to unauthorized acces… - CVE-2024-55927 2025-01-29 21:15 2025-01-24 Show GitHub Exploit DB Packet Storm