Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 27, 2025, 2:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
197251	7.2	危険	FreeBSD	-	FreeBSD における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5736	2012-06-26 16:03	2008-12-23	Show	GitHub Exploit DB Packet Storm

197252	9.3	危険	coolplayer	-	CoolPlayer の skin.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5735	2012-06-26 16:03	2008-12-26	Show	GitHub Exploit DB Packet Storm

197253	7.2	危険	entechtaiwan	-	EnTech Taiwan PowerStrip の NT カーネルモードドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5725	2012-06-26 16:03	2008-12-26	Show	GitHub Exploit DB Packet Storm

197254	7.2	危険	ESET	-	Personal Firewall ドライバおよび ESET Smart Security における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5724	2012-06-26 16:03	2008-12-26	Show	GitHub Exploit DB Packet Storm

197255	9.3	危険	Facebook	-	Facebook PhotoUploader ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5711	2012-06-26 16:03	2008-12-24	Show	GitHub Exploit DB Packet Storm

197256	5	警告	アバイア	-	Avaya CM の Web 管理インターフェースにおける設定ファイルを読み取られる脆弱性	CWE-16 環境設定	CVE-2008-5710	2012-06-26 16:03	2008-10-8	Show	GitHub Exploit DB Packet Storm

197257	9	危険	アバイア	-	Avaya CM の Web 管理インターフェースにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5709	2012-06-26 16:03	2008-10-8	Show	GitHub Exploit DB Packet Storm

197258	7.5	危険	ASP indir	-	Iltaweb Alisveris Sistemi の urunler.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5707	2012-06-26 16:03	2008-12-24	Show	GitHub Exploit DB Packet Storm

197259	7.6	危険	gpsdrive	-	gpsdrive-scripts の src/unit_test.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5704	2012-06-26 16:03	2008-12-22	Show	GitHub Exploit DB Packet Storm

197260	6.2	警告	gpsdrive	-	gpsdrive-scripts における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5703	2012-06-26 16:03	2008-12-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
981	7.2	HIGH Network	-	-	The a+HRD from aEnrich Technology has an Insecure Deserialization vulnerability, allowing remote attackers with database modification privileges and regular system privileges to perform arbitrary cod…	CWE-502 Deserialization of Untrusted Data	CVE-2025-0586	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

982	9.8	CRITICAL Network	-	-	The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.	CWE-89 SQL Injection	CVE-2025-0585	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

983	5.3	MEDIUM Network	-	-	The a+HRD from aEnrich Technology has a Server-side Request Forgery, allowing unauthenticated remote attackers to exploit this vulnerability to probe internal network.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2025-0584	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

984	4.7	MEDIUM Network	-	-	A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument p…	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2025-0582	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

985	3.5	LOW Network	-	-	A vulnerability classified as problematic has been found in CampCodes School Management Software 1.0. This affects an unknown part of the file /chat/group/send of the component Chat History. The mani…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0581	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

986	5.6	MEDIUM Network	-	-	A vulnerability was found in Shiprocket Module 3 on OpenCart. It has been rated as critical. Affected by this issue is some unknown functionality of the file /index.php?route=extension/module/rest_ap…	CWE-285 CWE-863 Improper Authorization Incorrect Authorization	CVE-2025-0580	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

987	7.3	HIGH Network	-	-	A vulnerability was found in Shiprocket Module 3/4 on OpenCart. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php?route=extension/shi…	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0579	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

988	4.5	MEDIUM Local	-	-	A vulnerability has been found in obsproject OBS Studio up to 30.0.2 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to un…	CWE-426 Untrusted Search Path	CVE-2024-13524	2025-01-20 12:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

989	6.1	MEDIUM Network	-	-	The a+HRD from aEnrich Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishin…	CWE-79 Cross-site Scripting	CVE-2025-0583	2025-01-20 11:15	2025-01-20	Show	GitHub Exploit DB Packet Storm

990	3.5	LOW Network	-	-	A vulnerability was found in Facile Sistemas Cloud Apps up to 20250107. It has been classified as problematic. Affected is an unknown function of the file /account/forgotpassword of the component Pas…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0578	2025-01-20 11:15	2025-01-20	Show	GitHub Exploit DB Packet Storm