Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 7, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193201 7.5 危険 e107.org - e107 の usersettings.php におけるSQL インジェクション攻撃を誘発される脆弱性 CWE-Other
その他 		CVE-2010-2098 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
193202 7.5 危険 cmsqlite - CMSQlite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2096 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
193203 7.5 危険 cmsqlite - CMSQlite の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2095 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
193204 7.5 危険 The Cacti Group - Cacti の graph.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2092 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
193205 4 警告 Apache Software Foundation - IBM WebSphere Application Server などで使用される Apache MyFaces における任意の EL 宣言文を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2086 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
193206 5 警告 シスコシステムズ - Cisco Scientific Atlanta WebSTAR DPC2100R2 ケーブルモデムの Web インターフェースにおける特権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-2082 2012-06-26 16:19 2010-05-26 Show GitHub Exploit DB Packet Storm
193207 7.5 危険 Apache Software Foundation - Apache ServiceMix などで使用される Apache CXF における任意のファイルを読まれ任意の HTTP リクエストをサーバに送信される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2076 2012-06-26 16:19 2010-06-16 Show GitHub Exploit DB Packet Storm
193208 3.3 注意 GNU Project - GNU gv における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2056 2012-06-26 16:19 2010-06-6 Show GitHub Exploit DB Packet Storm
193209 3.3 注意 emesene - emesene の emesenelib/ProfileManager.py における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2053 2012-06-26 16:19 2010-06-7 Show GitHub Exploit DB Packet Storm
193210 7.5 危険 debliteck - Debliteck DBCart の article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2051 2012-06-26 16:19 2010-05-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 7, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 - - - A vulnerability was found in Campcodes Student Grading System 1.0. It has been classified as critical. This affects an unknown part of the file /view_students.php. The manipulation of the argument id… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0212 2025-01-5 01:15 2025-01-5 Show GitHub Exploit DB Packet Storm
102 - - - A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipula… New CWE-73
 External Control of File Name or Path 		CVE-2025-0211 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
103 6.5 MEDIUM
Network 		- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure sta… New CWE-544
 Missing Standardized Error Handling Mechanism 		CVE-2024-41768 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
104 7.3 HIGH
Network 		- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to vi… New CWE-89
SQL Injection 		CVE-2024-41767 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
105 7.5 HIGH
Network 		- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause a denial of service using a complex regular expression. New CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2024-41766 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
106 6.5 MEDIUM
Network 		- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request contain… New CWE-22
Path Traversal 		CVE-2024-41765 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
107 5.9 MEDIUM
Network 		- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. New CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-41763 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
108 - - - A vulnerability has been found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?act… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0210 2025-01-4 23:15 2025-01-4 Show GitHub Exploit DB Packet Storm
109 8.8 HIGH
Network 		- - The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.24.11 via deserialization of untrusted input in the 'r… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-10957 2025-01-4 23:15 2025-01-4 Show GitHub Exploit DB Packet Storm
110 - - - A vulnerability, which was classified as critical, was found in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /summary.php. The manipulation of the argument tid leads … CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0208 2025-01-4 22:15 2025-01-4 Show GitHub Exploit DB Packet Storm