Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195521 5.4 警告 マイクロソフト
Arab Portal		 - Windows 上で稼動する Arab Portal の mod.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5787 2012-06-26 16:10 2008-12-31 Show GitHub Exploit DB Packet Storm
195522 7.5 危険 cfagcms - CFAGCMS の right.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5781 2012-06-26 16:10 2008-12-30 Show GitHub Exploit DB Packet Storm
195523 7.5 危険 flds-script - FLDS の lpro.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5779 2012-06-26 16:10 2008-12-30 Show GitHub Exploit DB Packet Storm
195524 7.5 危険 flds-script - FLDS の report.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5778 2012-06-26 16:10 2008-12-30 Show GitHub Exploit DB Packet Storm
195525 7.5 危険 cadenix - CadeNix の inindex.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5777 2012-06-26 16:03 2008-12-30 Show GitHub Exploit DB Packet Storm
195526 7.5 危険 apertoblog - Aperto Blog におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5776 2012-06-26 16:03 2008-12-30 Show GitHub Exploit DB Packet Storm
195527 7.5 危険 apertoblog - Aperto Blog の categories.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5775 2012-06-26 16:03 2008-12-30 Show GitHub Exploit DB Packet Storm
195528 7.5 危険 aspsiteware - ASPSiteWare HomeBuilder における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5774 2012-06-26 16:03 2008-12-30 Show GitHub Exploit DB Packet Storm
195529 7.5 危険 aspsiteware - ASPSiteWare RealtyListings における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5772 2012-06-26 16:03 2008-12-30 Show GitHub Exploit DB Packet Storm
195530 7.5 危険 gazatem - gNews Publisher の authors.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5767 2012-06-26 16:03 2008-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 12, 2025, 4:59 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adding array index check to prevent memory corruption [Why & How] Array indices out of bound caused memory corru… New CWE-787
 Out-of-bounds Write 		CVE-2024-56784 2025-01-10 06:25 2025-01-9 Show GitHub Exploit DB Packet Storm
292 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level cgroup maximum depth is INT_MAX by default, there is a cgroup … New CWE-617
 Reachable Assertion 		CVE-2024-56783 2025-01-10 06:24 2025-01-9 Show GitHub Exploit DB Packet Storm
293 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: powerpc/prom_init: Fixup missing powermac #size-cells On some powermacs `escc` nodes are missing `#size-cells` properties, which … New NVD-CWE-noinfo
CVE-2024-56781 2025-01-10 06:21 2025-01-9 Show GitHub Exploit DB Packet Storm
294 - - - Buffer Overflow vulnerability in Neat Board NFC v.1.20240620.0015 allows a physically proximate attackers to escalate privileges via a crafted payload to the password field New - CVE-2024-48806 2025-01-10 06:15 2025-01-10 Show GitHub Exploit DB Packet Storm
295 - - - Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 11.8.0 before 12.3.10, from 12.4.0 before 12.4.9. New - CVE-2024-13312 2025-01-10 06:15 2025-01-10 Show GitHub Exploit DB Packet Storm
296 - - - Vulnerability in Drupal Allow All File Extensions for file fields.This issue affects Allow All File Extensions for file fields: *.*. New - CVE-2024-13311 2025-01-10 06:15 2025-01-10 Show GitHub Exploit DB Packet Storm
297 - - - Vulnerability in Drupal Git Utilities for Drupal.This issue affects Git Utilities for Drupal: *.*. New - CVE-2024-13310 2025-01-10 06:15 2025-01-10 Show GitHub Exploit DB Packet Storm
298 - - - Improper Authentication vulnerability in Drupal Login Disable allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Login Disable: from 2.0.0 before 2.1.1. New - CVE-2024-13309 2025-01-10 06:15 2025-01-10 Show GitHub Exploit DB Packet Storm
299 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Browser Back Button allows Cross-Site Scripting (XSS).This issue affects Browser Back Butt… New - CVE-2024-13308 2025-01-10 06:15 2025-01-10 Show GitHub Exploit DB Packet Storm
300 - - - Vulnerability in Drupal Print Anything.This issue affects Print Anything: *.*. New - CVE-2024-13300 2025-01-10 06:15 2025-01-10 Show GitHub Exploit DB Packet Storm