Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 7, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197811 4 警告 Coppermine Photo Gallery - Coppermine Photo Gallery の admin.php における任意のローカルファイルをインクルードされる脆弱性 - CVE-2007-0836 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197812 6.5 警告 Coppermine Photo Gallery - Coppermine Photo Gallery の admin.php における任意のシェルコマンドを実行される脆弱性 - CVE-2007-0835 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197813 6.8 警告 darrens 5-dollar script archive - FlashChat におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0834 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197814 4.4 警告 AVAST Software s.r.o. - avast! Server Edition における認証要件が回避される脆弱性 - CVE-2007-0829 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197815 6.8 警告 alibaba - Alibaba Alipay の PTA.DLL における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2007-0827 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197816 7.8 危険 FlashFXP - FlashFXP におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0825 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197817 5 警告 cedric - Cedric CLAIRE PortailPhp におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0821 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197818 7.5 危険 cedric - Cedric CLAIRE PortailPhp における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0820 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197819 5 警告 CA Technologies - CA BrightStor ARCserve Backup の RPC Server サービスにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0816 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
197820 4.3 警告 adrenalin labs - Adrenalin の ASP Chat におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0814 2012-06-26 15:46 2007-02-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 7, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
11 - - - An issue was discovered in Optimizely Configured Commerce before 5.2.2408. A medium-severity session issue exists in the Commerce B2B application, affecting the longevity of active sessions in the st… New - CVE-2025-22386 2025-01-7 01:15 2025-01-4 Show GitHub Exploit DB Packet Storm
12 - - - An issue was discovered in Optimizely Configured Commerce before 5.2.2408. For newly created accounts, the Commerce B2B application does not require email confirmation. This medium-severity issue all… New - CVE-2025-22385 2025-01-7 01:15 2025-01-4 Show GitHub Exploit DB Packet Storm
13 9.8 CRITICAL
Network 		1000projects beauty_parlour_management_system A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-customer-se… Update CWE-89
SQL Injection 		CVE-2024-13072 2025-01-7 00:19 2025-01-1 Show GitHub Exploit DB Packet Storm
14 - - - OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in the application log, which an unauthorized actor can use to decrypt the VPN traf… New - CVE-2024-8474 2025-01-7 00:15 2025-01-7 Show GitHub Exploit DB Packet Storm
15 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… New - CVE-2024-12997 2025-01-7 00:15 2025-01-7 Show GitHub Exploit DB Packet Storm
16 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… New - CVE-2024-12996 2025-01-7 00:15 2025-01-7 Show GitHub Exploit DB Packet Storm
17 - - - In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, wi… New - CVE-2024-20154 2025-01-7 00:15 2025-01-6 Show GitHub Exploit DB Packet Storm
18 - - - In wlan STA, there is a possible way to trick a client to connect to an AP with spoofed SSID. This could lead to remote information disclosure with no additional execution privileges needed. User int… New - CVE-2024-20153 2025-01-7 00:15 2025-01-6 Show GitHub Exploit DB Packet Storm
19 - - - In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privile… New - CVE-2024-20152 2025-01-7 00:15 2025-01-6 Show GitHub Exploit DB Packet Storm
20 - - - In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. Us… New - CVE-2024-20151 2025-01-7 00:15 2025-01-6 Show GitHub Exploit DB Packet Storm