Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196771	2.1	注意	Debian	-	tss における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1877	2012-06-26 16:02	2008-04-12	Show	GitHub Exploit DB Packet Storm

196772	7.5	危険	comdev	-	Comdev News Publisher の home.news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1872	2012-06-26 16:02	2008-04-17	Show	GitHub Exploit DB Packet Storm

196773	7.5	危険	geek247	-	PIGMy-SQL の getdata.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1870	2012-06-26 16:02	2008-04-17	Show	GitHub Exploit DB Packet Storm

196774	6.8	警告	exbb	-	ExBB Italia におけるチェックを回避される脆弱性	CWE-20 CWE-94	CVE-2008-1862	2012-06-26 16:02	2008-04-17	Show	GitHub Exploit DB Packet Storm

196775	5.1	警告	exbb	-	ExBB Italia の modules/threadstop/threadstop.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-1861	2012-06-26 16:02	2008-04-17	Show	GitHub Exploit DB Packet Storm

196776	7.5	危険	724cms	-	724Networks 724CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1858	2012-06-26 16:02	2008-04-16	Show	GitHub Exploit DB Packet Storm

196777	7.5	危険	coronamatrix	-	CoronaMatrix phpAddressBook の view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1847	2012-06-26 16:02	2008-04-16	Show	GitHub Exploit DB Packet Storm

196778	6.8	警告	Coppermine Photo Gallery	-	CPG の bridge/coppermine.inc.php のセッションハンドリング機能における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1841	2012-06-26 16:02	2008-04-16	Show	GitHub Exploit DB Packet Storm

196779	6.5	警告	Coppermine Photo Gallery	-	Coppermine Photo Gallery (CPG) の upload.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1840	2012-06-26 16:02	2008-04-16	Show	GitHub Exploit DB Packet Storm

196780	7.5	危険	bosdev	-	BosClassifieds Classified Ads System における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1838	2012-06-26 16:02	2008-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
491	-		-	-	An issue in the exp_copy component of MonetDB Server v11.49.1 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. New	-	CVE-2024-57634	2025-01-15 01:15	2025-01-14	Show	GitHub Exploit DB Packet Storm

492	-		-	-	An issue in the exps_bind_column component of MonetDB Server v11.49.1 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. New	-	CVE-2024-57633	2025-01-15 01:15	2025-01-14	Show	GitHub Exploit DB Packet Storm

493	-		-	-	An issue in the is_column_unique component of MonetDB Server v11.49.1 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. New	-	CVE-2024-57632	2025-01-15 01:15	2025-01-14	Show	GitHub Exploit DB Packet Storm

494	-		-	-	Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the First Name and Last Name parameters in the endpoint /admin/module/view?type=users Update	-	CVE-2024-33299	2025-01-15 01:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

495	-		-	-	Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the campaign Name (Internal Name) field in the Add new campaign function Update	-	CVE-2024-33297	2025-01-15 01:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

496	-		-	-	Hasleo Backup Suite Free v4.9.4 and before is vulnerable to Insecure Permissions via the File recovery function. Update	-	CVE-2024-54910	2025-01-15 01:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

497	-		-	-	TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the opmode parameter in the action_reboot function. Update	-	CVE-2024-57212	2025-01-15 01:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

498	-		-	-	Incorrect Authorization vulnerability in Drupal OhDear Integration allows Forceful Browsing.This issue affects OhDear Integration: from 0.0.0 before 2.0.4. Update	-	CVE-2024-13290	2025-01-15 01:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

499	9.0	CRITICAL Network	ivanti	connect_secure policy_secure neurons_for_zero-trust_access	A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remo… Update	CWE-787 Out-of-bounds Write	CVE-2025-0282	2025-01-15 00:59	2025-01-9	Show	GitHub Exploit DB Packet Storm

500	7.0	HIGH Local	ivanti	connect_secure neurons_for_zero-trust_access policy_secure	A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a loca… Update	CWE-787 Out-of-bounds Write	CVE-2025-0283	2025-01-15 00:58	2025-01-9	Show	GitHub Exploit DB Packet Storm