Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 16, 2025, 6:05 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198411 10 危険 gazi download portal - Gazi Download Portal の down_indir.asp における SQL インジェクションの脆弱性 - CVE-2007-2810 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
198412 4.3 警告 GNU Project
yngve svendsen		 - Gnatsweb および Gnats の Gnatsweb におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2808 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
198413 6.8 警告 eggheads - Eggdrop の mod/server.mod/servrmsg.c におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2807 2012-06-26 15:46 2007-04-19 Show GitHub Exploit DB Packet Storm
198414 5.8 警告 galix - GaliX の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2806 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
198415 4.3 警告 clientexec - CE の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2805 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
198416 4.3 警告 candypress - CandyPress Store の scripts/prodList.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2804 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
198417 4.3 警告 eticket - eTicket の open.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-2801 2012-06-26 15:46 2007-06-29 Show GitHub Exploit DB Packet Storm
198418 5 警告 eticket - eTicket の index.php における重要な情報が取得される脆弱性 - CVE-2007-2800 2012-06-26 15:46 2007-06-28 Show GitHub Exploit DB Packet Storm
198419 7.8 危険 ARRIS Group - Arris Cadant C3 CMTS におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2796 2012-06-26 15:46 2007-06-12 Show GitHub Exploit DB Packet Storm
198420 7.5 危険 Geeklog - Geeklog の ImageImageMagick.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2793 2012-06-26 15:46 2007-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 17, 2025, 5:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
791 - - - OpenFGA is an authorization/permission engine. IN OpenFGA v1.3.8 to v1.8.2 (Helm chart openfga-0.1.38 to openfga-0.2.19, docker v1.3.8 to v.1.8.2) are vulnerable to authorization bypass under the fo… New CWE-285
Improper Authorization 		CVE-2024-56323 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
792 - - - A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection (DYLD injection) without being blocked by AppleMobileFileInte… New CWE-269
 Improper Privilege Management 		CVE-2024-11128 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
793 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vam_Sql.php". New - CVE-2023-42248 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
794 - - - notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. This issue was identified during Quarkslab's audit of the timestamp featur… New CWE-299
 Improper Check for Certificate Revocation 		CVE-2024-56138 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
795 - - - In Selesta Visual Access Manager < 4.42.2, an authenticated user can access the administrative page /common/vam_Sql.php, which allows for arbitrary SQL queries. New - CVE-2023-42243 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
796 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /monitor/s_terminal.php. New - CVE-2023-42242 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
797 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_anagraphic.php. New - CVE-2023-42241 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
798 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /monitor/s_scheduledfile.php. New - CVE-2023-42240 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
799 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php. New - CVE-2023-42239 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
800 - - - An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php. New - CVE-2023-42238 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm