Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 26, 2025, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199411 7.5 危険 devellion - CubeCart における SQL インジェクションの脆弱性 - CVE-2007-2862 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
199412 6.5 警告 boastmachine - BoastMachine の user.php における権限を取得される脆弱性 - CVE-2007-2860 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
199413 6.8 警告 Dart Communications - DartZip.dll の Dart Communications PowerTCP ZIP Compression ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2856 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
199414 6.8 警告 Dart Communications - ActiveX 用の Dart ZipLite Compression の特定の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2855 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
199415 7.5 危険 bti-tracker - BtiTracker の account_change.php における SQL インジェクションの脆弱性 - CVE-2007-2854 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
199416 9.3 危険 ESET - ESET NOD32 Antivirus におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2852 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
199417 10 危険 シトリックス・システムズ - Citrix MetaFrame Presentation Server などの製品で使用される XTE におけるネットワークセキュリティポリシーを回避される脆弱性 - CVE-2007-2850 2012-06-26 15:46 2007-05-23 Show GitHub Exploit DB Packet Storm
199418 9.3 危険 AVAST Software s.r.o. - avast! Anti-Virus Managed Client の SIS アンパッカーにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2846 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
199419 9.3 危険 AVAST Software s.r.o. - avast! Anti-Virus Managed Client の CAB 解凍プログラムにおけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-2845 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
199420 10 危険 アップル - Apple Safari における他のドメインから制限された情報にアクセスされる脆弱性 - CVE-2007-2843 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
901 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows SQL Injection. This issue affec… CWE-89
SQL Injection 		CVE-2024-49333 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
902 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows SQL Injection. This issue affec… CWE-89
SQL Injection 		CVE-2024-49303 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
903 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows Reflected XSS. This issue affec… CWE-79
Cross-site Scripting 		CVE-2024-49300 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
904 - - - Incorrect Privilege Assignment vulnerability in NotFound Easy Real Estate allows Privilege Escalation. This issue affects Easy Real Estate: from n/a through 2.2.6. CWE-266
 Incorrect Privilege Assignment 		CVE-2024-32555 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
905 - - - In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix variable not being completed when function returns When cmd_alloc_index(), fails cmd_work_handler() needs to comple… - CVE-2025-21662 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
906 - - - In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix missing lookup table cleanups When a virtuser device is created via configfs and the probe fails due to an in… - CVE-2025-21661 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
907 - - - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix unexpectedly changed path in ksmbd_vfs_kern_path_locked When `ksmbd_vfs_kern_path_locked` met an error and it is not t… - CVE-2025-21660 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
908 - - - In the Linux kernel, the following vulnerability has been resolved: netdev: prevent accessing NAPI instances from another namespace The NAPI IDs were not fully exposed to user space prior to the ne… - CVE-2025-21659 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
909 - - - In the Linux kernel, the following vulnerability has been resolved: hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur scsi_execute_cmd() function can return both negative … - CVE-2025-21656 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
910 - - - In the Linux kernel, the following vulnerability has been resolved: exfat: fix the new buffer was not zeroed before writing Before writing, if a buffer_head marked as new, its data must be zeroed, … - CVE-2024-57943 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm