Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194821	6.9	警告	Google	-	Tunnelblick における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3486	2012-08-29 11:49	2012-08-26	Show	GitHub Exploit DB Packet Storm

194822	7.2	危険	Google	-	Tunnelblick における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2012-3485	2012-08-29 11:48	2012-08-26	Show	GitHub Exploit DB Packet Storm

194823	7.2	危険	Google	-	Tunnelblick におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3484	2012-08-29 11:47	2012-08-26	Show	GitHub Exploit DB Packet Storm

194824	6.2	警告	Google	-	Tunnelblick の runScript 関数における権限を取得される脆弱性	CWE-362 競合状態	CVE-2012-3483	2012-08-29 11:35	2012-08-26	Show	GitHub Exploit DB Packet Storm

194825	5	警告	Munin	-	Munin の munin-cgi-graph におけるサービス運用妨害 (ディスク消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-4678	2012-08-29 11:25	2012-04-27	Show	GitHub Exploit DB Packet Storm

194826	2.1	注意	Creative Commons module Project	-	Drupal 用 Creative Commons モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2297	2012-08-29 11:20	2012-04-25	Show	GitHub Exploit DB Packet Storm

194827	5	警告	Munin	-	Munin の munin-cgi-graph におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2147	2012-08-29 11:17	2012-08-26	Show	GitHub Exploit DB Packet Storm

194828	4.3	警告	Elixir	-	Elixir における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2012-2146	2012-08-29 11:14	2012-08-26	Show	GitHub Exploit DB Packet Storm

194829	6.8	警告	Munin	-	Munin の cgi-bin/munin-cgi-graph における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-2104	2012-08-29 10:56	2012-08-26	Show	GitHub Exploit DB Packet Storm

194830	9.3	危険	Sitecom	-	Sitecom WLM-2501 におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1921	2012-08-29 10:28	2012-08-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
781	-		-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eniture Technology LTL Freight Quotes – Worldwide Express Edition allows SQL Injection. This issu…	CWE-89 SQL Injection	CVE-2025-24664	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

782	-		-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in MORKVA Shipping for Nova Poshta allows SQL Injection. This issue affects Shipping for Nova Poshta…	CWE-89 SQL Injection	CVE-2025-24612	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

783	-		-	-	Deserialization of Untrusted Data vulnerability in ThimPress FundPress allows Object Injection. This issue affects FundPress: from n/a through 2.0.6.	CWE-502 Deserialization of Untrusted Data	CVE-2025-24601	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

784	-		-	-	Missing Authorization vulnerability in BdThemes Ultimate Store Kit Elementor Addons allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Ultimate Store Kit Elem…	CWE-862 Missing Authorization	CVE-2025-24584	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

785	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in MetaSlider Responsive Slider by MetaSlider allows Cross Site Request Forgery. This issue affects Responsive Slider by MetaSlider: from n/a through 3…	CWE-352 Origin Validation Error	CVE-2025-24533	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

786	-		-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Busters Passwordless WP – Login with your glance or fingerprint allows Reflected XSS. This iss…	CWE-79 Cross-site Scripting	CVE-2025-23792	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

787	-		-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Clodeo Shipdeo allows Reflected XSS. This issue affects Shipdeo: from n/a through 1.2.8.	CWE-79 Cross-site Scripting	CVE-2025-23457	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

788	-		-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Simple Locator allows Reflected XSS. This issue affects Simple Locator: from n/a through…	CWE-79 Cross-site Scripting	CVE-2025-22513	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

789	-		-	-	Eura7 CMSmanager in version 4.6 and below is vulnerable to Reflected XSS attacks through manipulation of return GET request parameter sent to a specific endpoint. The vulnerability has been fixed by …	-	CVE-2024-11348	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

790	8.9	HIGH Network	-	-	A flaw was found in the Red Hat Advanced Cluster Security (RHACS) portal. When rendering a table view in the portal, for example, on any of the /main/configmanagement/* endpoints, the front-end gener…	CWE-79 Cross-site Scripting	CVE-2022-4975	2025-01-27 23:15	2025-01-27	Show	GitHub Exploit DB Packet Storm