Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 10, 2025, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196831	5	警告	elouai	-	メディアファイルスクリプトの eLouai's Force Download におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5732	2012-06-26 15:54	2007-10-30	Show	GitHub Exploit DB Packet Storm

196832	3.5	注意	Apache Software Foundation	-	Apache Jakarta Slide における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5731	2012-06-26 15:54	2007-10-30	Show	GitHub Exploit DB Packet Storm

196833	6.6	警告	Fabrice Bellard	-	QEMU の NE2000 エミュレータにおける任意のコードを実行される脆弱性	CWE-119 CWE-189	CVE-2007-5729	2012-06-26 15:54	2007-10-30	Show	GitHub Exploit DB Packet Storm

196834	4.3	警告	Phil Schwartz	-	DenyHosts における検出とブロックを回避される脆弱性	CWE-16 CWE-DesignError	CVE-2007-5715	2012-06-26 15:54	2007-10-30	Show	GitHub Exploit DB Packet Storm

196835	6.8	警告	Gentoo Linux	-	MLDonkey の Gentoo ebuild における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2007-5714	2012-06-26 15:54	2007-10-24	Show	GitHub Exploit DB Packet Storm

196836	7.5	危険	valve software AMX Mod X	-	Half-Life Server の GeoIP モジュールにおけるサービス運用妨害の脆弱性	CWE-189 数値処理の問題	CVE-2007-5713	2012-06-26 15:54	2007-10-30	Show	GitHub Exploit DB Packet Storm

196837	2.6	注意	Django Software Foundation	-	PyLucid などで使用される Django の国際化 (i18n) フレームワークにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-5712	2012-06-26 15:54	2007-10-30	Show	GitHub Exploit DB Packet Storm

196838	7.5	危険	codewidgets	-	CodeWidgets.com Online Event Registration Template における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5704	2012-06-26 15:54	2007-10-29	Show	GitHub Exploit DB Packet Storm

196839	6.8	警告	eiqnetworks	-	eIQNetworks ESA におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5699	2012-06-26 15:54	2007-10-29	Show	GitHub Exploit DB Packet Storm

196840	4.3	警告	creapark	-	CREApark GOLD KOY PORTALI の default.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5698	2012-06-26 15:54	2007-10-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 10, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
131	-	-	-	Parsing a JavaScript module as JSON could, under some circumstances, cause cross-compartment access, which may result in a use-after-free. This vulnerability affects Firefox < 134, Firefox ESR < 128.… New	-	CVE-2025-0240	2025-01-9 18:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

132	-	-	-	When using Alt-Svc, ALPN did not properly validate certificates when the original server is redirecting to an insecure site. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird… New	-	CVE-2025-0239	2025-01-9 18:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

133	-	-	-	Assuming a controlled failed memory allocation, an attacker could have caused a use-after-free, leading to a potentially exploitable crash. This vulnerability affects Firefox < 134, Firefox ESR < 128… New	-	CVE-2025-0238	2025-01-9 18:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

134	-	-	-	The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege… New	-	CVE-2025-0237	2025-01-9 18:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

135	-	-	-	A vulnerability has been found in leiyuxi cy-fast 1.0 and classified as critical. Affected by this vulnerability is the function listData of the file /commpara/listData. The manipulation of the argum… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0344	2025-01-9 17:15	2025-01-9	Show	GitHub Exploit DB Packet Storm

136	-	-	-	A vulnerability, which was classified as problematic, was found in CampCodes Computer Laboratory Management System 1.0. This affects an unknown part of the file /class/edit/edit. The manipulation of … New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0342	2025-01-9 17:15	2025-01-9	Show	GitHub Exploit DB Packet Storm

137	-	-	-	A vulnerability, which was classified as critical, has been found in CampCodes Computer Laboratory Management System 1.0. Affected by this issue is some unknown functionality of the file /class/edit/… New	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2025-0341	2025-01-9 17:15	2025-01-9	Show	GitHub Exploit DB Packet Storm

138	-	-	-	A post-authentication absolute path traversal vulnerability in SonicOS management allows a remote attacker to read an arbitrary file. New	CWE-37	CVE-2024-12806	2025-01-9 17:15	2025-01-9	Show	GitHub Exploit DB Packet Storm

139	-	-	-	The <redacted>.exe or <redacted>.exe CGI binary can be used to upload arbitrary files to /tmp/upload/ or /tmp/ respectively as any user, although the user interface for uploading files is only shown … New	-	CVE-2024-43662	2025-01-9 17:15	2025-01-9	Show	GitHub Exploit DB Packet Storm

140	-	-	-	Patch traversal, External Control of File Name or Path vulnerability in Iocharger Home allows deletion of arbitrary files This issue affects Iocharger firmware for AC model before firmware version 2… New	-	CVE-2024-43658	2025-01-9 17:15	2025-01-9	Show	GitHub Exploit DB Packet Storm