Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 4, 2025, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196481 9.3 危険 DELL EMC (旧 EMC Corporation) - EMC VMware の vielib.dll の特定の ActiveX コントロールにおける絶対パストラバーサルの脆弱性 - CVE-2007-4155 2012-06-26 15:54 2007-08-3 Show GitHub Exploit DB Packet Storm
196482 4.3 警告 bluesky - v2.ocx の BlueSkychat ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-4145 2012-06-26 15:54 2007-08-3 Show GitHub Exploit DB Packet Storm
196483 7.5 危険 firestorm technologies - Joomla! の gmaps コンポーネントにおける SQL インジェクションの脆弱性 - CVE-2007-4128 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
196484 10 危険 e-commerce solutions - E-Commerce Scripts Shopping Cart Script の admin.aspx における SQL インジェクションの脆弱性 - CVE-2007-4121 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
196485 7.5 危険 berthanas ziyaretci - Berthanas Ziyaretci Defteri 2.0 の yonetici.asp における SQL インジェクションの脆弱性 - CVE-2007-4119 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
196486 3.5 注意 awbs - AWBS における他の専用サーバの設定データを取得される脆弱性 - CVE-2007-4113 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
196487 6.8 警告 awbs - AWBS における SQL インジェクションの脆弱性 - CVE-2007-4112 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
196488 6.8 警告 codewidgets - Real Estate listing website アプリケーションテンプレートのログインスクリプトにおける SQL インジェクションの脆弱性 - CVE-2007-4111 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
196489 7.5 危険 codewidgets - Message Board / Threaded Discussion Forum Application Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4110 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
196490 7.5 危険 codewidgets - Online Store Application Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4109 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 4, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
111 - - - Missing Authorization vulnerability in supsystic.com Data Tables Generator by Supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Data Tables Generato… New CWE-862
 Missing Authorization 		CVE-2024-56253 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
112 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeLooks Enter Addons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.9. New CWE-79
Cross-site Scripting 		CVE-2024-56252 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
113 - - - Cross-Site Request Forgery (CSRF) vulnerability in Event Espresso Event Espresso 4 Decaf allows Cross Site Request Forgery.This issue affects Event Espresso 4 Decaf: from n/a through 5.0.28.decaf. New CWE-352
 Origin Validation Error 		CVE-2024-56251 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
114 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in GregRoss Just Writing Statistics allows SQL Injection.This issue affects Just Writing Statistics:… New CWE-89
SQL Injection 		CVE-2024-56250 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
115 - - - Unrestricted Upload of File with Dangerous Type vulnerability in Webdeclic WPMasterToolKit allows Upload a Web Shell to a Web Server.This issue affects WPMasterToolKit: from n/a through 1.13.1. New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-56249 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
116 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Webdeclic WPMasterToolKit allows Path Traversal.This issue affects WPMasterToolKit: from n/a through 1.… New CWE-22
Path Traversal 		CVE-2024-56248 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
117 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AF themes WP Post Author allows SQL Injection.This issue affects WP Post Author: from n/a through… New CWE-89
SQL Injection 		CVE-2024-56247 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
118 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH Nexter Blocks allows DOM-Based XSS.This issue affects Nexter Blocks: from n/a through 4.… New CWE-79
Cross-site Scripting 		CVE-2024-56246 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
119 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leap13 Premium Blocks – Gutenberg Blocks for WordPress allows Stored XSS.This issue affects Premi… New CWE-79
Cross-site Scripting 		CVE-2024-56245 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
120 - - - Missing Authorization vulnerability in WP Royal Ashe Extra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ashe Extra: from n/a through 1.2.92. New CWE-862
 Missing Authorization 		CVE-2024-56244 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm