Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Jan. 19, 2025, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 198471 | 7.5 | 危険 | eva-web | - | EVA-Web の index.php3 における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-3460 | 2012-06-26 15:46 | 2007-06-27 | Show | GitHub Exploit DB Packet Storm |
| 198472 | 6.4 | 警告 | civiltech | - | Civitech Avax Vector の特定の ActiveX コントロールにおける任意のファイルを作成または上書きされる脆弱性 | - | CVE-2007-3459 | 2012-06-26 15:46 | 2007-06-27 | Show | GitHub Exploit DB Packet Storm |
| 198473 | 7.5 | 危険 | edocstore | - | eDocStore の essentials/minutes/doc.php における SQL インジェクションの脆弱性 | - | CVE-2007-3452 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198474 | 6.5 | 警告 | gorani network | - | 6ALBlog の admin/index.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-3451 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198475 | 6.8 | 警告 | gorani network | - | 6ALBlog の member.php における SQL インジェクションの脆弱性 | - | CVE-2007-3450 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198476 | 6.8 | 警告 | gorani network | - | 6ALBlog の member.php における SQL インジェクションの脆弱性 | - | CVE-2007-3449 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198477 | 4.3 | 警告 | bugmall | - | BugMall Shopping Cart の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-3448 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198478 | 6.8 | 警告 | bugmall | - | BugMall Shopping Cart における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-3447 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198479 | 7.5 | 危険 | bugmall | - | BugMall Shopping Cart におけるログインアクセス権を取得される脆弱性 | - | CVE-2007-3446 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 198480 | 5 | 警告 | aastra telecom | - | Aastra 9112i SIP Phone におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2007-3441 | 2012-06-26 15:46 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Jan. 19, 2025, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 961 | 4.3 |
MEDIUM
Network |
- | - | MapUrlToZone Security Feature Bypass Vulnerability |
CWE-41
Improper Resolution of Path Equivalence |
CVE-2025-21189 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 962 | 7.8 |
HIGH
Local |
- | - | Microsoft Power Automate Remote Code Execution Vulnerability |
CWE-94
Code Injection |
CVE-2025-21187 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 963 | 7.8 |
HIGH
Local |
- | - | Microsoft Access Remote Code Execution Vulnerability |
CWE-122
Heap-based Buffer Overflow |
CVE-2025-21186 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 964 | 8.8 |
HIGH
Network |
- | - | Visual Studio Remote Code Execution Vulnerability |
CWE-125 CWE-122 Out-of-bounds Read Heap-based Buffer Overflow |
CVE-2025-21178 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 965 | 8.8 |
HIGH
Network |
- | - | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability |
CWE-126
Buffer Over-read |
CVE-2025-21176 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 966 | 7.5 |
HIGH
Network |
- | - | .NET and Visual Studio Remote Code Execution Vulnerability |
CWE-190 CWE-122 Integer Overflow or Wraparound Heap-based Buffer Overflow |
CVE-2025-21172 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 967 | 7.5 |
HIGH
Network |
- | - | .NET Remote Code Execution Vulnerability |
CWE-122
Heap-based Buffer Overflow |
CVE-2025-21171 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 968 | - | - | - | A vulnerability was found in AquilaCMS 1.412.13. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/v2/categories. The manipulation of the argument P… |
CWE-20 CWE-502 Improper Input Validation Deserialization of Untrusted Data |
CVE-2025-0465 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm | |
| 969 | - | - | - | Rejected reason: Unused spare CVE | - | CVE-2024-53996 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm | |
| 970 | - | - | - | Improper signature verification in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to achieve remote code ex… |
CWE-347
Improper Verification of Cryptographic Signature |
CVE-2024-13172 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |