Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197501 7.5 危険 beaussier - RoomPHPlanning における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6634 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
197502 7.5 危険 beaussier - RoomPHPlanning における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6633 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
197503 4.3 警告 BlogPHP - BlogPHP の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6631 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
197504 7.8 危険 GraphicsMagick - GraphicsMagick におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-6621 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
197505 4.3 警告 grafxsoftware - GraFX MIniCWB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6620 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
197506 7.5 危険 abweb - minimal-ablog の uploader.php における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6613 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
197507 6.8 警告 abweb - Minimal ABlog の admin/uploader.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6612 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
197508 7.5 危険 abweb - Minimal ABlog の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6611 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
197509 7.5 危険 developiteasy - DevelopItEasy Events Calendar における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6608 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
197510 6.8 警告 2wire - 複数の 2wire 製品の xslt におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-6605 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1821 - - - In shouldSkipForInitialSUW of AdvancedPowerUsageDetail.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of priv… - CVE-2024-40677 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1822 - - - In onCreate of ChooserActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with no additional… - CVE-2024-40672 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1823 - - - In TBD of TBD, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee… - CVE-2024-40670 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1824 - - - In TBD of TBD, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee… - CVE-2024-40669 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1825 - - - In TBD of TBD, there is a possible use-after-free due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User… - CVE-2024-40651 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1826 - - - In TBD of TBD, there is a possible use-after-free due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User… - CVE-2024-40649 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1827 - - - In _DevmemXReservationPageAddress of devicemem_server.c, there is a possible use-after-free due to improper casting. This could lead to local escalation of privilege in the kernel with no additional … - CVE-2024-34748 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1828 - - - In DevmemXIntMapPages of devicemem_server.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional… - CVE-2024-34733 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1829 - - - In RGXMMUCacheInvalidate of rgxmem.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution… - CVE-2024-34732 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1830 - - - The WP Triggers Lite WordPress plugin through 2.5.3 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks - CVE-2024-13095 2025-01-29 06:15 2025-01-27 Show GitHub Exploit DB Packet Storm