Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197331 7.5 危険 dora emlak - Dora Emlak における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6140 2012-06-26 15:54 2007-11-27 Show GitHub Exploit DB Packet Storm
197332 5.8 警告 devmass - DevMass Shopping Cart の admin/kfm/initialise.php における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6133 2012-06-26 15:54 2007-11-27 Show GitHub Exploit DB Packet Storm
197333 5 警告 GNU Project - gnump3d におけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-6130 2012-06-26 15:54 2007-11-26 Show GitHub Exploit DB Packet Storm
197334 5.8 警告 amber script - Amber Script の scripts/include/show_content.php におけるディレクトリトラバーサルの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6129 2012-06-26 15:54 2007-11-26 Show GitHub Exploit DB Packet Storm
197335 7.5 危険 flor de utopia - WorkingOnWeb の events.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6128 2012-06-26 15:54 2007-11-26 Show GitHub Exploit DB Packet Storm
197336 7.5 危険 AlstraSoft - AlstraSoft E-Friends の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6106 2012-06-26 15:54 2007-11-23 Show GitHub Exploit DB Packet Storm
197337 4 警告 Code Crafters Software Limited. - Ability Mail Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6101 2012-06-26 15:54 2007-11-23 Show GitHub Exploit DB Packet Storm
197338 7.5 危険 adventnet - AdventNet EventLog Analyzer における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6081 2012-06-26 15:54 2007-11-21 Show GitHub Exploit DB Packet Storm
197339 7.5 危険 bcoos - bcoos の banners モジュールの modules/banners/click.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6080 2012-06-26 15:54 2007-11-21 Show GitHub Exploit DB Packet Storm
197340 6.8 警告 bcoos - bcoos の include/common.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6079 2012-06-26 15:54 2007-11-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
441 - - - Incorrect Authorization vulnerability in Drupal Responsive and off-canvas menu allows Forceful Browsing.This issue affects Responsive and off-canvas menu: from 0.0.0 before 4.4.4. Update - CVE-2024-13266 2025-01-15 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
442 - - - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno Learning path allows PHP Local File Inclusion.This issue affects Opigno Learnin… Update - CVE-2024-13265 2025-01-15 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
443 - - - Memory safety bugs present in Firefox 133 and Thunderbird 133. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited t… Update - CVE-2025-0247 2025-01-15 02:15 2025-01-8 Show GitHub Exploit DB Packet Storm
444 - - - An access control issue in the component /api/squareComment/DelectSquareById of iceCMS v2.2.0 allows unauthenticated attackers to access sensitive information. New - CVE-2025-22984 2025-01-15 01:15 2025-01-15 Show GitHub Exploit DB Packet Storm
445 - - - An access control issue in the component /square/getAllSquare/circle of iceCMS v2.2.0 allows unauthenticated attackers to access sensitive information. New - CVE-2025-22983 2025-01-15 01:15 2025-01-15 Show GitHub Exploit DB Packet Storm
446 - - - A vulnerability has been found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0 and classified as problematic. This vulnerability affects unknown code of the file /crm/weixinmp/… New CWE-22
Path Traversal 		CVE-2025-0461 2025-01-15 01:15 2025-01-15 Show GitHub Exploit DB Packet Storm
447 - - - A vulnerability, which was classified as critical, was found in Blog Botz for Journal Theme 1.0 on OpenCart. This affects an unknown part of the file /index.php?route=extension/module/blog_add. The m… New CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-0460 2025-01-15 01:15 2025-01-15 Show GitHub Exploit DB Packet Storm
448 - - - A vulnerability, which was classified as problematic, has been found in libretro RetroArch up to 1.19.1 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll of … New CWE-426
 Untrusted Search Path 		CVE-2025-0459 2025-01-15 01:15 2025-01-15 Show GitHub Exploit DB Packet Storm
449 - - - A vulnerability classified as problematic was found in Virtual Computer Vysual RH Solution 2024.12.1. Affected by this vulnerability is an unknown functionality of the file /index.php of the componen… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-0458 2025-01-15 01:15 2025-01-15 Show GitHub Exploit DB Packet Storm
450 - - - Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore™ for Intel Kaby Lake, Phoenix SecureCore™ for Intel Coffee Lake, Phoenix SecureCore™ for Intel Comet Lake, Pho… New - CVE-2024-29980 2025-01-15 01:15 2025-01-15 Show GitHub Exploit DB Packet Storm