Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 19, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196061 5 警告 aspthai.net - ASPThai.NET ASPThai Forums におけるデータベースをダウンロードされる脆弱性 CWE-200
情報漏えい 		CVE-2008-6872 2012-06-26 16:10 2009-07-23 Show GitHub Exploit DB Packet Storm
196062 4.3 警告 editeurscripts - EditeurScripts EsBaseAdmin の default/login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6868 2012-06-26 16:10 2009-07-23 Show GitHub Exploit DB Packet Storm
196063 6.8 警告 AVAST Software s.r.o. - avast! Linux Home Edition におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6846 2012-06-26 16:10 2009-07-2 Show GitHub Exploit DB Packet Storm
196064 5 警告 ClamAV - ClamAV のアンパック機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2008-6845 2012-06-26 16:10 2009-07-2 Show GitHub Exploit DB Packet Storm
196065 7.5 危険 eZ - eZ Publish の登録ビューにおける他のユーザとして権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6844 2012-06-26 16:10 2009-07-2 Show GitHub Exploit DB Packet Storm
196066 5 警告 cPanel - cPanel で使用される Fantastico の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6843 2012-06-26 16:10 2009-07-2 Show GitHub Exploit DB Packet Storm
196067 7.5 危険 gmitc
Joomla!		 - Joomla! の Green Mountain Information Technology および Consulting dbquery コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6841 2012-06-26 16:10 2009-07-1 Show GitHub Exploit DB Packet Storm
196068 6.8 警告 christof bruyland - V-webmail における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6840 2012-06-26 16:10 2009-07-1 Show GitHub Exploit DB Packet Storm
196069 10 危険 fuzzylime - fuzzylime (cms) における ディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6834 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
196070 10 危険 fuzzylime - fuzzylime (cms) の commsrss.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6833 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
571 - - - A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critical. Affected by this vulnerability is the function FUN_00412244. The manipulation leads to null pointer derefer… CWE-476
CWE-404
 NULL Pointer Dereference
 Improper Resource Shutdown or Release 		CVE-2025-0492 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
572 - - - A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. Affected is an unknown function of the file /fladmin/cat_dodel.php. The manipulation of the argument id l… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0491 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
573 - - - An issue in parse-uri v1.0.9 allows attackers to cause a Regular expression Denial of Service (ReDoS) via a crafted URL. - CVE-2024-36751 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
574 - - - A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /fladmin/cat_edit.php. The manipulation of t… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0487 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
575 - - - A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fladmin/login.php. The manipulatio… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0486 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
576 - - - An issue in the USB Autorun function of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to execute arbitrary code via uploading a crafted script from a USB device. - CVE-2024-48123 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
577 - - - Insecure default configurations in HI-SCAN 6040i Hitrax HX-03-19-I allow authenticated attackers with low-level privileges to escalate to root-level privileges. - CVE-2024-48122 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
578 - - - The HI-SCAN 6040i Hitrax HX-03-19-I was discovered to transmit user credentials in cleartext over the GIOP protocol. This allows attackers to possibly gain access to sensitive information via a man-i… - CVE-2024-48121 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
579 - - - A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. This affects an unknown part of the file /fladmin/user_recoverpwd.php. The manipulation leads to use of d… - CVE-2025-0482 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
580 - - - Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the iface parameter in the vif_enable function. - CVE-2024-57226 2025-01-16 06:15 2025-01-11 Show GitHub Exploit DB Packet Storm