Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 19, 2025, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195491 7.5 危険 datachecknh - DataCheck Solutions ForumPal FE および ForumPal の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2366 2012-06-26 16:10 2009-07-8 Show GitHub Exploit DB Packet Storm
195492 7.5 危険 datachecknh - DataCheck Solutions GalleryPal FE の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2365 2012-06-26 16:10 2009-07-8 Show GitHub Exploit DB Packet Storm
195493 9.3 危険 dan cahill - NullLogic Groupware の pgsqlQuery 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2356 2012-06-26 16:10 2009-07-7 Show GitHub Exploit DB Packet Storm
195494 6.8 警告 eaccelerator - eAccelerator の encoder.php における 任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2353 2012-06-26 16:10 2009-07-7 Show GitHub Exploit DB Packet Storm
195495 7.8 危険 Digium - Asterisk Open Source の IAX2 プロトコル実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-2346 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
195496 7.5 危険 csphere - ClanSphere における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2345 2012-06-26 16:10 2009-07-7 Show GitHub Exploit DB Packet Storm
195497 6.8 警告 FreeWebshop - FreeWebshop.org の includes/startmodules.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2338 2012-06-26 16:10 2009-07-7 Show GitHub Exploit DB Packet Storm
195498 7.5 危険 cms.tut.su - CMS Chainuk におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2333 2012-06-26 16:10 2009-07-5 Show GitHub Exploit DB Packet Storm
195499 5 警告 cms.tut.su - CMS Chainuk における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-2332 2012-06-26 16:10 2009-07-5 Show GitHub Exploit DB Packet Storm
195500 7.5 危険 cms.tut.su - CMS Chainuk における任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2331 2012-06-26 16:10 2009-07-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
571 - - - A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critical. Affected by this vulnerability is the function FUN_00412244. The manipulation leads to null pointer derefer… CWE-476
CWE-404
 NULL Pointer Dereference
 Improper Resource Shutdown or Release 		CVE-2025-0492 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
572 - - - A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. Affected is an unknown function of the file /fladmin/cat_dodel.php. The manipulation of the argument id l… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0491 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
573 - - - An issue in parse-uri v1.0.9 allows attackers to cause a Regular expression Denial of Service (ReDoS) via a crafted URL. - CVE-2024-36751 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
574 - - - A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /fladmin/cat_edit.php. The manipulation of t… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0487 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
575 - - - A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fladmin/login.php. The manipulatio… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0486 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
576 - - - An issue in the USB Autorun function of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to execute arbitrary code via uploading a crafted script from a USB device. - CVE-2024-48123 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
577 - - - Insecure default configurations in HI-SCAN 6040i Hitrax HX-03-19-I allow authenticated attackers with low-level privileges to escalate to root-level privileges. - CVE-2024-48122 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
578 - - - The HI-SCAN 6040i Hitrax HX-03-19-I was discovered to transmit user credentials in cleartext over the GIOP protocol. This allows attackers to possibly gain access to sensitive information via a man-i… - CVE-2024-48121 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
579 - - - A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. This affects an unknown part of the file /fladmin/user_recoverpwd.php. The manipulation leads to use of d… - CVE-2025-0482 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
580 - - - Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the iface parameter in the vif_enable function. - CVE-2024-57226 2025-01-16 06:15 2025-01-11 Show GitHub Exploit DB Packet Storm