Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 9, 2025, 4:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
197591	10	危険	efilecabinet	-	eFileCabinet におけるインターフェースの制限部分へアクセスされる脆弱性	-	CVE-2007-2638	2012-06-26 15:46	2007-05-13	Show	GitHub Exploit DB Packet Storm

197592	6.8	警告	agner fog	-	aForum の common/errormsg.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2634	2012-06-26 15:46	2007-05-13	Show	GitHub Exploit DB Packet Storm

197593	6.5	警告	activecampaign	-	FCKeditor モジュールの filemanager/browser/default/connectors/php/config.php における .php4 および .php5 をアップロードされる脆弱性	-	CVE-2007-2630	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

197594	7.8	危険	Bradford Networks	-	Bradford CampusManager Network Control Application Server における重要な情報を取得される脆弱性	-	CVE-2007-2629	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

197595	6.8	警告	aiocp	-	AIOCP の shared/code/cp_authorization.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2625	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

197596	6.8	警告	aiocp	-	AIOCP の shared/config/cp_config.php におけるクロスサイトスクリプティング攻撃を誘発する脆弱性	-	CVE-2007-2624	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

197597	7.8	危険	fruit2004	-	Remote Display Dev キットの RControl.dll におけるバッファオーバーフローの脆弱性	-	CVE-2007-2623	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

197598	7.5	危険	extrovert software	-	Thyme Calendar の event_view.php における SQL インジェクションの脆弱性	-	CVE-2007-2621	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

197599	5.1	警告	drake team	-	Drake CMS の index.php における CRLF インジェクションの脆弱性	-	CVE-2007-2618	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

197600	7.5	危険	crie sue	-	Crie seu PHPLojaFacil における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2615	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
71	-		-	-	Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. New	-	CVE-2024-56452	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

72	-		-	-	Integer overflow vulnerability during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. New	-	CVE-2024-56451	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

73	-		-	-	Buffer overflow vulnerability in the component driver module Impact: Successful exploitation of this vulnerability may affect availability. New	-	CVE-2024-56450	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

74	-		-	-	Privilege escalation vulnerability in the Account module Impact: Successful exploitation of this vulnerability may affect service confidentiality. New	-	CVE-2024-56449	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

75	-		-	-	Vulnerability of improper access control in the home screen widget module Impact: Successful exploitation of this vulnerability may affect availability. New	-	CVE-2024-56448	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

76	-		-	-	Startup control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. New	-	CVE-2024-54121	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

77	5.3	MEDIUM Network	-	-	The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.2 via the handle_export_form() function d… New	CWE-862 Missing Authorization	CVE-2024-12713	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

78	6.4	MEDIUM Network	-	-	The Slotti Ajanvaraus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slotti-embed-ga' shortcode in all versions up to, and including, 1.3.1 due to insufficient in… New	CWE-79 Cross-site Scripting	CVE-2024-12521	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

79	6.4	MEDIUM Network	-	-	The Easy Form Builder – WordPress plugin form builder: contact form, survey form, payment form, and custom form builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name… New	CWE-79 Cross-site Scripting	CVE-2024-12112	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

80	7.4	HIGH Network	-	-	The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification and retrieval of data due to a missing capability check on several functions in all ve… New	CWE-862 Missing Authorization	CVE-2024-11916	2025-01-8 13:15	2025-01-8	Show	GitHub Exploit DB Packet Storm