Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 12:05 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199751 4.9 警告 Fabrice Bellard - QEMU における仮想マシンがクラッシュされる脆弱性 - CVE-2007-1366 2012-06-26 15:46 2007-05-2 Show GitHub Exploit DB Packet Storm
199752 6.4 警告 dropafew - DropAFew における任意のユーザを作成される脆弱性 - CVE-2007-1364 2012-06-26 15:46 2007-04-11 Show GitHub Exploit DB Packet Storm
199753 7.5 危険 dropafew - DropAFew における SQL インジェクションの脆弱性 - CVE-2007-1363 2012-06-26 15:46 2007-04-11 Show GitHub Exploit DB Packet Storm
199754 6 警告 Drupal - Drupal 用の Nodefamily モジュールにおける他のユーザのプロファイルを変更する脆弱性 - CVE-2007-1360 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
199755 4.1 警告 CA Technologies - CA eTrust Admin 用の GINA コンポーネントの cube.exe における認証を回避される脆弱性 - CVE-2007-1345 2012-06-26 15:46 2007-03-8 Show GitHub Exploit DB Packet Storm
199756 7.5 危険 アップル - Apple AirPort Extreme の AirPort ユーティリティのデフォルト設定におけるアクセス制限を回避される脆弱性 - CVE-2007-1338 2012-06-26 15:46 2007-03-8 Show GitHub Exploit DB Packet Storm
199757 4.4 警告 Comodo - CFP における HKLM\SYSTEM\Software\Comodo\Personal Firewall レジストリキーに対するドライバ保護を回避される脆弱性 - CVE-2007-1330 2012-06-26 15:46 2007-03-7 Show GitHub Exploit DB Packet Storm
199758 4.3 警告 bernard joly - Bernard JOLY BJ Webring の formulaire.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1328 2012-06-26 15:46 2007-03-7 Show GitHub Exploit DB Packet Storm
199759 4.9 警告 Fabrice Bellard - QEMU における仮想マシンを停止される脆弱性 - CVE-2007-1322 2012-06-26 15:46 2007-05-2 Show GitHub Exploit DB Packet Storm
199760 7.8 危険 Digium - Asterisk におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2007-1306 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
741 6.4 MEDIUM
Network 		- - The Utilities for MTG plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mtglink' shortcode in all versions up to, and including, 1.4.1 due to insufficient input sani… CWE-79
Cross-site Scripting 		CVE-2024-13433 2025-01-18 16:15 2025-01-18 Show GitHub Exploit DB Packet Storm
742 6.1 MEDIUM
Network 		- - The Webcamconsult plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.0. This is due to missing or incorrect nonce validation on a function. Thi… CWE-352
 Origin Validation Error 		CVE-2024-13432 2025-01-18 16:15 2025-01-18 Show GitHub Exploit DB Packet Storm
743 6.4 MEDIUM
Network 		- - The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisper_videos' shortcode in all versions up to, and i… CWE-79
Cross-site Scripting 		CVE-2024-13393 2025-01-18 16:15 2025-01-18 Show GitHub Exploit DB Packet Storm
744 6.4 MEDIUM
Network 		- - The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisper_content_up… CWE-79
Cross-site Scripting 		CVE-2024-13391 2025-01-18 16:15 2025-01-18 Show GitHub Exploit DB Packet Storm
745 6.4 MEDIUM
Network 		- - The JSM Screenshot Machine Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ssm' shortcode in all versions up to, and including, 2.3.0 due to insufficient… CWE-79
Cross-site Scripting 		CVE-2024-13385 2025-01-18 16:15 2025-01-18 Show GitHub Exploit DB Packet Storm
746 4.3 MEDIUM
Network 		- - The ShipWorks Connector for Woocommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.2.5. This is due to missing or incorrect nonce validat… CWE-352
 Origin Validation Error 		CVE-2024-13317 2025-01-18 16:15 2025-01-18 Show GitHub Exploit DB Packet Storm
747 6.4 MEDIUM
Network 		- - The Picture Gallery – Frontend Image Uploads, AJAX Photo List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's videowhisper_picture_upload_guest shortcode in all ver… CWE-79
Cross-site Scripting 		CVE-2024-12696 2025-01-18 16:15 2025-01-18 Show GitHub Exploit DB Packet Storm
748 6.1 MEDIUM
Network 		- - The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.2. This is due to missing nonce validation on the wpabstracts_load_status()… CWE-352
 Origin Validation Error 		CVE-2024-12385 2025-01-18 16:15 2025-01-18 Show GitHub Exploit DB Packet Storm
749 4.4 MEDIUM
Network 		- - The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Feed Name value in version <= 4.1.25 due to insufficient input sanitization and output escaping… CWE-79
Cross-site Scripting 		CVE-2025-0554 2025-01-18 15:15 2025-01-18 Show GitHub Exploit DB Packet Storm
750 5.3 MEDIUM
Network 		- - The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Information Exposure in all versions up to, an… CWE-200
Information Exposure 		CVE-2025-0318 2025-01-18 15:15 2025-01-18 Show GitHub Exploit DB Packet Storm