Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195241 4.3 警告 The Dojo Foundation - Dojo の dijit.Editor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6681 2012-06-26 16:10 2009-04-9 Show GitHub Exploit DB Packet Storm
195242 7.5 危険 dirk bartley - nweb2fax の viewrq.php における任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-6669 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
195243 5 警告 dirk bartley - nweb2fax におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6668 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
195244 6.8 警告 anantasoft - Ananta CMS の change.php における管理者の権限を取得される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6665 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
195245 4.3 警告 AVG Technologies
Linux		 - AVG Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6662 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
195246 5 警告 BitDefender
Linux		 - Bitdefender のスキャンエンジンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-6661 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
195247 4.3 警告 comscripts - GEDCOM_TO_MYSQL におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6655 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
195248 4.3 警告 coronamatrix - CoronaMatrix phpAddressBook の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6646 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
195249 7.5 危険 dotcontent - DotContent FluentCMS の view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6642 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
195250 6.5 警告 ASP indir - Shader TV (Beta) における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6641 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
151 5.4 MEDIUM
Network 		wangl1989 mysiteforme A vulnerability was found in wangl1989 mysiteforme 1.0. It has been classified as problematic. This affects the function RestResponse of the file src/main/java/com/mysiteforme/admin/controller/system… Update CWE-79
Cross-site Scripting 		CVE-2024-13137 2025-01-11 06:01 2025-01-5 Show GitHub Exploit DB Packet Storm
152 9.8 CRITICAL
Network 		wangl1989 mysiteforme A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by this issue is the function rememberMeManager of the file src/main/java/com/mysiteforme/admin/config/Shir… Update CWE-502
 Deserialization of Untrusted Data 		CVE-2024-13136 2025-01-11 06:01 2025-01-5 Show GitHub Exploit DB Packet Storm
153 - - - On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- c… New - CVE-2024-6437 2025-01-11 05:15 2025-01-11 Show GitHub Exploit DB Packet Storm
154 - - - Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the First Name and Last Name parameters in the endpoint /admin/module/view?type=users New - CVE-2024-33299 2025-01-11 05:15 2025-01-11 Show GitHub Exploit DB Packet Storm
155 - - - Microweber Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the create new backup function in the endpoint /admin/module/view?type=admin… New - CVE-2024-33298 2025-01-11 05:15 2025-01-11 Show GitHub Exploit DB Packet Storm
156 - - - Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the campaign Name (Internal Name) field in the Add new campaign function New - CVE-2024-33297 2025-01-11 05:15 2025-01-11 Show GitHub Exploit DB Packet Storm
157 - - - NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can execute arbitrary operating system commands as root by sending craf… New - CVE-2024-12847 2025-01-11 05:15 2025-01-11 Show GitHub Exploit DB Packet Storm
158 - - - Improper Ownership Management vulnerability in Drupal Node Access Rebuild Progressive allows Target Influence via Framing.This issue affects Node Access Rebuild Progressive: from 0.0.0 before 2.0.2. New - CVE-2024-13246 2025-01-11 05:15 2025-01-10 Show GitHub Exploit DB Packet Storm
159 8.8 HIGH
Network 		codezips gym_management_system A vulnerability has been found in Codezips Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /dashboard/admin/submit_payment… Update CWE-89
SQL Injection 		CVE-2025-0231 2025-01-11 04:58 2025-01-6 Show GitHub Exploit DB Packet Storm
160 9.8 CRITICAL
Network 		fabianros responsive_hotel_site A vulnerability, which was classified as critical, was found in code-projects Responsive Hotel Site 1.0. Affected is an unknown function of the file /admin/print.php. The manipulation of the argument… Update CWE-89
SQL Injection 		CVE-2025-0230 2025-01-11 04:48 2025-01-6 Show GitHub Exploit DB Packet Storm