Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 15, 2025, 2:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195071	6	警告	collector	-	myGesuad における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1812	2012-06-26 16:10	2009-05-29	Show	GitHub Exploit DB Packet Storm

195072	4.3	警告	collector	-	myGesuad におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1811	2012-06-26 16:10	2009-05-29	Show	GitHub Exploit DB Packet Storm

195073	6	警告	collector	-	myColex における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1810	2012-06-26 16:10	2009-05-29	Show	GitHub Exploit DB Packet Storm

195074	4.3	警告	collector	-	myColex におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1809	2012-06-26 16:10	2009-05-29	Show	GitHub Exploit DB Packet Storm

195075	9.3	危険	baofeng	-	Baofeng 製品の Config.dll における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-1807	2012-06-26 16:10	2009-05-28	Show	GitHub Exploit DB Packet Storm

195076	5	警告	FreePBX	-	FreePBX における有効なユーザ名を列挙される脆弱性	CWE-200 情報漏えい	CVE-2009-1803	2012-06-26 16:10	2009-05-28	Show	GitHub Exploit DB Packet Storm

195077	6.8	警告	FreePBX	-	FreePBX におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-1802	2012-06-26 16:10	2009-05-28	Show	GitHub Exploit DB Packet Storm

195078	4.3	警告	FreePBX	-	FreePBX におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1801	2012-06-26 16:10	2009-05-28	Show	GitHub Exploit DB Packet Storm

195079	7.5	危険	chinagames	-	CGAgent.dll の Chinagames CGAgent ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1800	2012-06-26 16:10	2009-05-28	Show	GitHub Exploit DB Packet Storm

195080	4.3	警告	philip moore eggheads	-	Eggheads Eggdrop の mod/server.mod/servmsg.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-1789	2012-06-26 16:10	2009-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 15, 2025, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
81	9.1	CRITICAL Network	-	-	Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overfl… New	CWE-120 Classic Buffer Overflow	CVE-2024-39768	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

82	9.1	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary co… New	CWE-77 Command Injection	CVE-2024-39765	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

83	9.1	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary co… New	CWE-77 Command Injection	CVE-2024-39764	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

84	9.1	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary co… New	CWE-77 Command Injection	CVE-2024-39763	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

85	9.1	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary co… New	CWE-77 Command Injection	CVE-2024-39762	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

86	10.0	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code exe… New	CWE-77 Command Injection	CVE-2024-39761	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

87	10.0	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code exe… New	CWE-77 Command Injection	CVE-2024-39760	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

88	10.0	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code exe… New	CWE-77 Command Injection	CVE-2024-39759	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

89	-		-	-	Howyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned software in a hardcoded path. New	-	CVE-2024-7344	2025-01-15 00:15	2025-01-14	Show	GitHub Exploit DB Packet Storm

90	-		-	-	An improper neutralization of formula elements in a csv file in Fortinet FortiSOAR 7.2.1 through 7.4.1 allows attacker to execute unauthorized code or commands via manipulating csv file New	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2024-47572	2025-01-15 00:15	2025-01-14	Show	GitHub Exploit DB Packet Storm