Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 9, 2025, 4:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195311 5 警告 dotnetindex - Ikon AdManager におけるデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5596 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
195312 7.5 危険 aspapps - ASP AutoDealer の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5595 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
195313 7.5 危険 bpowerhouse - Mini Blog の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5594 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
195314 7.5 危険 bpowerhouse - Mini CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5593 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
195315 6.8 警告 check up - Check Up New Generation の findoffice.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5586 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
195316 7.5 危険 adcomplete - Poll Pro のログイン機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5573 2012-06-26 16:03 2008-12-15 Show GitHub Exploit DB Packet Storm
195317 5 警告 dotnetindex - Professional Download Assistant におけるデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5572 2012-06-26 16:03 2008-12-15 Show GitHub Exploit DB Packet Storm
195318 7.5 危険 dotnetindex - Professional Download Assistant の admin/login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5571 2012-06-26 16:03 2008-12-15 Show GitHub Exploit DB Packet Storm
195319 7.5 危険 Activewebsoftwares - Active eWebquiz の start.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5631 2012-06-26 16:03 2008-12-17 Show GitHub Exploit DB Packet Storm
195320 7.5 危険 Activewebsoftwares - Active Trade の account.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5627 2012-06-26 16:03 2008-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
11 - - - The Auto iFrame WordPress plugin before 2.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow us… New - CVE-2024-10151 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
12 - - - Bangkok Medical Software HOSxP XE v4.64.11.3 was discovered to contain a hardcoded IDEA Key-IV pair in the HOSxPXE4.exe and HOS-WIN32.INI components. This allows attackers to access sensitive informa… New - CVE-2024-53522 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
13 - - - An issue was discovered in SuiteCRM 7.12.7. Authenticated users can recover an arbitrary field of a database. New - CVE-2022-45186 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
14 - - - A vulnerability exits in driver SmSerl64.sys in Motorola SM56 Modem WDM Driver v6.12.23.0, which allows low-privileged users to mapping physical memory via specially crafted IOCTL requests . This can… New - CVE-2024-55414 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
15 - - - A vulnerability exits in driver snxppamd.sys in SUNIX Parallel Driver x64 - 10.1.0.0, which allows low-privileged users to read and write arbitary i/o port via specially crafted IOCTL requests . This… New - CVE-2024-55413 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
16 - - - A vulnerability exits in driver snxpsamd.sys in SUNIX Serial Driver x64 - 10.1.0.0, which allows low-privileged users to read and write arbitary i/o port via specially crafted IOCTL requests . This c… New - CVE-2024-55412 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
17 - - - File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality New - CVE-2024-50660 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
18 - - - Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html. New - CVE-2024-50659 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
19 - - - Server-Side Template Injection (SSTI) was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file New - CVE-2024-50658 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
20 - - - When using an invalid protocol scheme, an attacker could spoof the address bar. *Note: This issue only affected Android operating systems. Other operating systems are unaffected.* *Note: This issue … New - CVE-2025-0246 2025-01-9 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm