Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199771 6.8 警告 av scripts - avtutorial の changePW.php における SQL インジェクションの脆弱性 - CVE-2007-3691 2012-06-26 15:46 2007-07-11 Show GitHub Exploit DB Packet Storm
199772 7.8 危険 Drupal - Drupal 用の Forward モジュールにおける制限された投稿を読まれる脆弱性 - CVE-2007-3690 2012-06-26 15:46 2007-07-9 Show GitHub Exploit DB Packet Storm
199773 7.8 危険 Drupal - Drupal 用の Print モジュールにおけるノードアクセスモジュール内の制限された投稿を読まれる脆弱性 - CVE-2007-3689 2012-06-26 15:46 2007-07-9 Show GitHub Exploit DB Packet Storm
199774 2.6 注意 Dotclear - DotClear におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-3688 2012-06-26 15:46 2007-07-11 Show GitHub Exploit DB Packet Storm
199775 7.5 危険 aigaion - Aigaion の pagetopic.php における SQL インジェクションの脆弱性 - CVE-2007-3683 2012-06-26 15:46 2007-07-11 Show GitHub Exploit DB Packet Storm
199776 4.3 警告 シトリックス・システムズ - Citrix EPA ActiveX コントロールにおける任意のプログラムをクライアントシステム上にダウンロードされる脆弱性 - CVE-2007-3679 2012-06-26 15:46 2007-07-25 Show GitHub Exploit DB Packet Storm
199777 4.3 警告 Dotclear - DotClear の ecrire/tools.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3672 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
199778 5 警告 activereportsexcelreport - ActiveReportsExcelReport の EXCLEXPT.DLL におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3667 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
199779 5 警告 eltima software - Eltima Software RunService ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3664 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
199780 5 警告 eltima software - VSPort.DLL におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3661 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1041 - - - Updatecli is a tool used to apply file update strategies. Prior to version 0.93.0, private maven repository credentials may be leaked in application logs in case of unsuccessful retrieval operation. … CWE-359
 Exposure of Private Personal Information to an Unauthorized Actor 		CVE-2025-24355 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1042 - - - ASTEVAL is an evaluator of Python expressions and statements. Prior to version 1.0.6, if an attacker can control the input to the `asteval` library, they can bypass asteval's restrictions and execute… CWE-134
CWE-749
Use of Externally-Controlled Format String
 Exposed Dangerous Method or Function 		CVE-2025-24359 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1043 - - - An issue was discovered in Deepin dde-api-proxy through 1.0.19 in which unprivileged users can access D-Bus services as root. Specifically, dde-api-proxy runs as root and forwards messages from arbit… - CVE-2025-23222 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1044 - - - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.374, the missing authorization allows an authenticated user to retrieve… CWE-200
CWE-862
Information Exposure
 Missing Authorization 		CVE-2025-22612 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1045 - - - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to escalat… CWE-862
 Missing Authorization 		CVE-2025-22611 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1046 - - - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to fetch t… CWE-862
 Missing Authorization 		CVE-2025-22610 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1047 - - - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to attach … CWE-862
 Missing Authorization 		CVE-2025-22609 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1048 - - - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to revoke … CWE-639
CWE-862
 Authorization Bypass Through User-Controlled Key
 Missing Authorization 		CVE-2025-22608 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1049 6.3 MEDIUM
Network 		- - A vulnerability classified as critical has been found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d. This affects an unknown part of the file /admin/sys/user/list. The manipula… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0701 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1050 6.3 MEDIUM
Network 		- - A vulnerability was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0700 2025-01-25 02:15 2025-01-25 Show GitHub Exploit DB Packet Storm