Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 17, 2025, 2:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198401 7.5 危険 calimero.cms - Calimero.CMS における Web セッションハイジャックの脆弱性 - CVE-2007-3053 2012-06-26 15:46 2007-06-5 Show GitHub Exploit DB Packet Storm
198402 7.5 危険 chameleon cms - chameleon cms におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-3050 2012-06-26 15:46 2007-06-5 Show GitHub Exploit DB Packet Storm
198403 4.3 警告 buttercup wfm - BWFM May 2007 の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3049 2012-06-26 15:46 2007-06-5 Show GitHub Exploit DB Packet Storm
198404 5 警告 Advanced Software Production Line - Advanced Software Production Line Vortex Library におけるバッファオーバーフローの脆弱性 - CVE-2007-3046 2012-06-26 15:46 2007-06-5 Show GitHub Exploit DB Packet Storm
198405 5 警告 サン・マイクロシステムズ
ClamAV		 - ClamAV の libclamav/phishcheck.c におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3025 2012-06-26 15:46 2007-05-31 Show GitHub Exploit DB Packet Storm
198406 2.1 注意 ClamAV - ClamAV の libclamav/others.c における重要な情報を読み取られる脆弱性 - CVE-2007-3024 2012-06-26 15:46 2007-05-31 Show GitHub Exploit DB Packet Storm
198407 10 危険 ClamAV - ClamAV の unsp.c における詳細不明な脆弱性 - CVE-2007-3023 2012-06-26 15:46 2007-05-31 Show GitHub Exploit DB Packet Storm
198408 4 警告 activeWeb - activeWeb contentserver CMS における任意のディレクトリのファイルを作成される脆弱性 - CVE-2007-3018 2012-06-26 15:46 2007-07-16 Show GitHub Exploit DB Packet Storm
198409 4 警告 activeWeb - activeWeb contentserver CMS の WYSIWYG エディタアプレットにおける任意の JavaScript を挿入される脆弱性 - CVE-2007-3017 2012-06-26 15:46 2007-07-16 Show GitHub Exploit DB Packet Storm
198410 4.3 警告 activeWeb - activeWeb contentserver におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3014 2012-06-26 15:46 2007-07-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 17, 2025, 5:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
791 - - - OpenFGA is an authorization/permission engine. IN OpenFGA v1.3.8 to v1.8.2 (Helm chart openfga-0.1.38 to openfga-0.2.19, docker v1.3.8 to v.1.8.2) are vulnerable to authorization bypass under the fo… CWE-285
Improper Authorization 		CVE-2024-56323 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
792 - - - A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection (DYLD injection) without being blocked by AppleMobileFileInte… CWE-269
 Improper Privilege Management 		CVE-2024-11128 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
793 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vam_Sql.php". - CVE-2023-42248 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
794 - - - notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. This issue was identified during Quarkslab's audit of the timestamp featur… CWE-299
 Improper Check for Certificate Revocation 		CVE-2024-56138 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
795 - - - In Selesta Visual Access Manager < 4.42.2, an authenticated user can access the administrative page /common/vam_Sql.php, which allows for arbitrary SQL queries. - CVE-2023-42243 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
796 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /monitor/s_terminal.php. - CVE-2023-42242 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
797 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_anagraphic.php. - CVE-2023-42241 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
798 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /monitor/s_scheduledfile.php. - CVE-2023-42240 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
799 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php. - CVE-2023-42239 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
800 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php. - CVE-2023-42238 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm