Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 27, 2025, 10:01 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
195211 6.8 警告 galeriashqip - GaleriaSHQIP の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-3207 2012-06-26 16:19 2010-09-3 Show GitHub Exploit DB Packet Storm
195212 7.5 危険 diy-cms - DiY-CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2010-3206 2012-06-26 16:19 2010-09-3 Show GitHub Exploit DB Packet Storm
195213 9.3 危険 アドビシステムズ - Adobe Captivate における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3191 2012-06-26 16:19 2010-08-31 Show GitHub Exploit DB Packet Storm
195214 9.3 危険 アドビシステムズ - Adobe ESTK CS5 における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3155 2012-06-26 16:19 2010-08-27 Show GitHub Exploit DB Packet Storm
195215 9.3 危険 アドビシステムズ - Adobe Extension Manager CS5 における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3154 2012-06-26 16:19 2010-08-27 Show GitHub Exploit DB Packet Storm
195216 9.3 危険 アドビシステムズ - Adobe On Location CS4 における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3151 2012-06-26 16:19 2010-08-27 Show GitHub Exploit DB Packet Storm
195217 9.3 危険 アドビシステムズ - Adobe Premier Pro CS4 における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3150 2012-06-26 16:19 2010-08-27 Show GitHub Exploit DB Packet Storm
195218 9.3 危険 アドビシステムズ - Adobe Device Central CS5 における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3149 2012-06-26 16:19 2010-08-27 Show GitHub Exploit DB Packet Storm
195219 9.3 危険 シスコシステムズ - Cisco Packet Tracer における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3135 2012-06-26 16:19 2010-08-26 Show GitHub Exploit DB Packet Storm
195220 9.3 危険 Google - Google Earth における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3134 2012-06-26 16:19 2010-08-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
301 6.5 MEDIUM
Network
- - The Form Builder CP plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter of the 'CP_EASY_FORM_WILL_APPEAR_HERE' shortcode in all versions up to, and including, 1.2.41 due to ins… CWE-89
SQL Injection
CVE-2024-13680 2025-01-24 16:15 2025-01-24 Show GitHub Exploit DB Packet Storm
302 6.4 MEDIUM
Network
- - The Listamester plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'listamester' shortcode in all versions up to, and including, 2.3.4 due to insufficient input saniti… CWE-79
Cross-site Scripting
CVE-2024-13659 2025-01-24 15:15 2025-01-24 Show GitHub Exploit DB Packet Storm
303 - - - An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.6.4, 17.7 before 17.7.3, and 17.8 before 17.8.1. Improper rendering of certain file types lead to cross-site sc… CWE-79
Cross-site Scripting
CVE-2025-0314 2025-01-24 12:15 2025-01-24 Show GitHub Exploit DB Packet Storm
304 - - - An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.6.4, from 17.7 prior to 17.7.3, and from 17.8 prior to 17.8.1. Under certain conditions, it may have… CWE-1220
 Insufficient Granularity of Access Control
CVE-2024-11931 2025-01-24 12:15 2025-01-24 Show GitHub Exploit DB Packet Storm
305 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Rejected Reason: This candidate is unused by its CNA. - CVE-2021-30745 2025-01-24 11:15 2025-01-24 Show GitHub Exploit DB Packet Storm
306 - - - Heap buffer overflow in the server site handshake implementation in Real Time Logic LLC's SharkSSL version (from 05/05/24) commit 64808a5e12c83b38f85c943dee0112e428dc2a43 allows a remote attacker to … - CVE-2024-53379 2025-01-24 08:15 2025-01-24 Show GitHub Exploit DB Packet Storm
307 - - - Variable response times in the AWS Sign-in IAM user login flow allowed for the use of brute force enumeration techniques to identify valid IAM usernames in an arbitrary AWS account. - CVE-2025-0693 2025-01-24 07:15 2025-01-24 Show GitHub Exploit DB Packet Storm
308 - - - An allocation-size-too-big bug in the component /imagebuf.cpp of OpenImageIO v3.1.0.0dev may cause a Denial of Service (DoS) when the program to requests to allocate too much space. - CVE-2024-55195 2025-01-24 07:15 2025-01-24 Show GitHub Exploit DB Packet Storm
309 - - - OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component /OpenImageIO/fmath.h. - CVE-2024-55194 2025-01-24 07:15 2025-01-24 Show GitHub Exploit DB Packet Storm
310 - - - OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component OpenImageIO_v3_1_0::farmhash::inlined::Fetch64(char const*). - CVE-2024-55192 2025-01-24 07:15 2025-01-24 Show GitHub Exploit DB Packet Storm