Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Jan. 19, 2025, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 198471 | 7.5 | 危険 | eva-web | - | EVA-Web の index.php3 における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-3460 | 2012-06-26 15:46 | 2007-06-27 | Show | GitHub Exploit DB Packet Storm |
| 198472 | 6.4 | 警告 | civiltech | - | Civitech Avax Vector の特定の ActiveX コントロールにおける任意のファイルを作成または上書きされる脆弱性 | - | CVE-2007-3459 | 2012-06-26 15:46 | 2007-06-27 | Show | GitHub Exploit DB Packet Storm |
| 198473 | 7.5 | 危険 | edocstore | - | eDocStore の essentials/minutes/doc.php における SQL インジェクションの脆弱性 | - | CVE-2007-3452 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198474 | 6.5 | 警告 | gorani network | - | 6ALBlog の admin/index.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-3451 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198475 | 6.8 | 警告 | gorani network | - | 6ALBlog の member.php における SQL インジェクションの脆弱性 | - | CVE-2007-3450 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198476 | 6.8 | 警告 | gorani network | - | 6ALBlog の member.php における SQL インジェクションの脆弱性 | - | CVE-2007-3449 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198477 | 4.3 | 警告 | bugmall | - | BugMall Shopping Cart の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-3448 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198478 | 6.8 | 警告 | bugmall | - | BugMall Shopping Cart における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-3447 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198479 | 7.5 | 危険 | bugmall | - | BugMall Shopping Cart におけるログインアクセス権を取得される脆弱性 | - | CVE-2007-3446 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198480 | 5 | 警告 | aastra telecom | - | Aastra 9112i SIP Phone におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2007-3441 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Jan. 19, 2025, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 951 | 7.5 |
HIGH
Network
-
|
-
|
Windows Kerberos Denial of Service Vulnerability
|
CWE-400
|
Uncontrolled Resource Consumption
CVE-2025-21218
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 952 | 6.5 |
MEDIUM
Network |
- | - | Windows NTLM Spoofing Vulnerability |
CWE-693
Protection Mechanism Failure |
CVE-2025-21217 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 953 | 4.6 |
MEDIUM
Physics |
- | - | Secure Boot Security Feature Bypass Vulnerability |
CWE-125
Out-of-bounds Read |
CVE-2025-21215 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 954 | 4.2 |
MEDIUM
Physics |
- | - | Windows BitLocker Information Disclosure Vulnerability |
CWE-200
Information Exposure |
CVE-2025-21214 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 955 | 4.6 |
MEDIUM
Physics |
- | - | Secure Boot Security Feature Bypass Vulnerability |
CWE-284
Improper Access Control |
CVE-2025-21213 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 956 | 6.8 |
MEDIUM
Physics |
- | - | Secure Boot Security Feature Bypass Vulnerability |
CWE-693
Protection Mechanism Failure |
CVE-2025-21211 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 957 | 4.2 |
MEDIUM
Physics |
- | - | Windows BitLocker Information Disclosure Vulnerability |
CWE-636
Not Failing Securely ('Failing Open') |
CVE-2025-21210 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 958 | 7.5 |
HIGH
Network
-
|
-
|
Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability
|
CWE-400
|
Uncontrolled Resource Consumption
CVE-2025-21207
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 959 | 6.1 |
MEDIUM
Physics |
- | - | Windows Recovery Environment Agent Elevation of Privilege Vulnerability |
CWE-284
Improper Access Control |
CVE-2025-21202 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 960 | 6.5 |
MEDIUM
Network |
- | - | Active Directory Federation Server Spoofing Vulnerability |
CWE-352
Origin Validation Error |
CVE-2025-21193 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |