Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 14, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198391 10 危険 CA Technologies - CA BrightStor ARCserve Backup の Tape Engine におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1447 2012-06-26 15:46 2007-03-16 Show GitHub Exploit DB Packet Storm
198392 7.5 危険 danny ho - OES における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-1446 2012-06-26 15:46 2007-03-13 Show GitHub Exploit DB Packet Storm
198393 7.5 危険 betaparticle - BP Blog の default.asp 用の heme プレビュー機能における SQL インジェクションの脆弱性 - CVE-2007-1445 2012-06-26 15:46 2007-03-13 Show GitHub Exploit DB Packet Storm
198394 9.3 危険 bitesser - bitesser MySQL Commander の ressourcen/dbopen.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1439 2012-06-26 15:46 2007-03-13 Show GitHub Exploit DB Packet Storm
198395 10 危険 D-Link Systems, Inc. - D-Link TFTP Server におけるバッファオーバーフローの脆弱性 - CVE-2007-1435 2012-06-26 15:46 2007-03-13 Show GitHub Exploit DB Packet Storm
198396 7.5 危険 grayscale - Grayscale Blog における SQL インジェクションの脆弱性 - CVE-2007-1434 2012-06-26 15:46 2007-03-13 Show GitHub Exploit DB Packet Storm
198397 4.3 警告 grayscale - Grayscale Blog におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1433 2012-06-26 15:46 2007-03-13 Show GitHub Exploit DB Packet Storm
198398 7.5 危険 grayscale - Grayscale Blog における権限を取得される脆弱性 - CVE-2007-1432 2012-06-26 15:46 2007-03-13 Show GitHub Exploit DB Packet Storm
198399 7.5 危険 clip-share - ClipShare の include/adodb-connection.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1430 2012-06-26 15:46 2007-03-12 Show GitHub Exploit DB Packet Storm
198400 5 警告 assetman - AssetMan の download_pdf.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1427 2012-06-26 15:46 2007-03-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 15, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
571 - - - Cross-Site Request Forgery (CSRF) vulnerability in Drupal POST File allows Cross Site Request Forgery.This issue affects POST File: from 0.0.0 before 1.0.2. - CVE-2024-13293 2025-01-11 04:15 2025-01-10 Show GitHub Exploit DB Packet Storm
572 - - - Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful Browsing.This issue affects Basic HTTP Authentication: from 7.X-1.0 before 7.X-1.4. - CVE-2024-13291 2025-01-11 04:15 2025-01-10 Show GitHub Exploit DB Packet Storm
573 9.8 CRITICAL
Network 		campcodes school_faculty_scheduling_system A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipula… NVD-CWE-Other
CVE-2025-0211 2025-01-11 04:02 2025-01-5 Show GitHub Exploit DB Packet Storm
574 9.8 CRITICAL
Network 		campcodes student_grading_system A vulnerability was found in Campcodes Student Grading System 1.0. It has been classified as critical. This affects an unknown part of the file /view_students.php. The manipulation of the argument id… CWE-89
SQL Injection 		CVE-2025-0212 2025-01-11 03:57 2025-01-5 Show GitHub Exploit DB Packet Storm
575 9.8 CRITICAL
Network 		campcodes project_management_system A vulnerability was found in Campcodes Project Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forms/update_forms.php?action=change_pic2&… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-0213 2025-01-11 03:55 2025-01-5 Show GitHub Exploit DB Packet Storm
576 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: put bpf_link's program when link is safe to be deallocated In general, BPF link's underlying BPF program should be considere… NVD-CWE-noinfo
CVE-2024-56786 2025-01-11 03:53 2025-01-9 Show GitHub Exploit DB Packet Storm
577 - - - During MegaBIP installation process, a user is encouraged to change a default path to administrative portal, as keeping it secret is listed by the author as one of the protection mechanisms.  Publicl… - CVE-2024-6880 2025-01-11 03:15 2025-01-11 Show GitHub Exploit DB Packet Storm
578 - - - Websites managed by MegaBIP in versions below 5.15 are vulnerable to Cross-Site Request Forgery (CSRF) as the form available under "/edytor/index.php?id=7,7,0" lacks protection mechanisms. A user cou… - CVE-2024-6662 2025-01-11 03:15 2025-01-11 Show GitHub Exploit DB Packet Storm
579 - - - Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the iface parameter in the vif_disable function. - CVE-2024-57228 2025-01-11 03:15 2025-01-11 Show GitHub Exploit DB Packet Storm
580 - - - Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pbc_wps function. - CVE-2024-57227 2025-01-11 03:15 2025-01-11 Show GitHub Exploit DB Packet Storm