Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200031 4.3 警告 シスコシステムズ - Cisco CallManager の Web アプリケーションファイアウォールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2832 2012-06-26 15:46 2007-05-23 Show GitHub Exploit DB Packet Storm
200032 4.3 警告 atmail pty ltd - Atmail の ReadMsg.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2825 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
200033 10 危険 AlstraSoft - AlstraSoft E-Friends の paypal.php における SQL インジェクションの脆弱性 - CVE-2007-2824 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
200034 4.3 警告 Cactusoft International FZ-LLC & Cactusoft Ltd. - CactuSoft Parodia の cand_login.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2818 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
200035 10 危険 gazi download portal - Gazi Download Portal の down_indir.asp における SQL インジェクションの脆弱性 - CVE-2007-2810 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
200036 4.3 警告 GNU Project
yngve svendsen		 - Gnatsweb および Gnats の Gnatsweb におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2808 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
200037 6.8 警告 eggheads - Eggdrop の mod/server.mod/servrmsg.c におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2807 2012-06-26 15:46 2007-04-19 Show GitHub Exploit DB Packet Storm
200038 5.8 警告 galix - GaliX の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2806 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
200039 4.3 警告 clientexec - CE の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2805 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
200040 4.3 警告 candypress - CandyPress Store の scripts/prodList.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2804 2012-06-26 15:46 2007-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1551 - - - Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Cross Site Scripting (XSS) in : /bin/goahead via /goform/setStaticRoute, /goform/fromSetFilterUrlFilter, and /goform/fromSetFilt… - CVE-2024-48417 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1552 - - - Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Buffer Overflow via /goform/fromSetLanDhcpsClientbinding. - CVE-2024-48416 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1553 - - - TRENDnet TEW-632BRP v1.010B31 devices have an OS command injection vulnerability in the CGl interface "ntp_sync.cgi",which allows remote attackers to execute arbitrary commands via parameter "ntp_ser… - CVE-2024-57590 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1554 - - - A Remote Code Execution Vulnerability exists in the product and version listed above. The vulnerability is due to lack of input sanitation and could allow a remote attacker to run commands or code as… - CVE-2025-24480 2025-01-29 04:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1555 - - - A Local Code Execution Vulnerability exists in the product and version listed above. The vulnerability is due to a default setting in Windows and allows access to the Command Prompt as a higher privi… - CVE-2025-24479 2025-01-29 04:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1556 - - - A denial-of-service vulnerability exists in the affected products. The vulnerability could allow a remote, non-privileged user to send malicious requests resulting in a major nonrecoverable fault cau… - CVE-2025-24478 2025-01-29 04:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1557 - - - Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was privately reported to VMware. Patches are available to remediate this vulnerability in affected VMware produc… - CVE-2025-22217 2025-01-29 04:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1558 6.3 MEDIUM
Network 		- - A vulnerability, which was classified as problematic, was found in pankajindevops scale up to 20241113. This affects an unknown part of the component API Endpoint. The manipulation leads to improper … CWE-284
CWE-266
Improper Access Control
 Incorrect Privilege Assignment 		CVE-2025-0783 2025-01-29 04:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1559 - - - A Credential Exposure Vulnerability exists in the above-mentioned product and version. The vulnerability is due to using HTTP resulting in credentials being sent in clear text. - CVE-2025-0631 2025-01-29 04:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1560 - - - A flaw was found in ArgoCD. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This iss… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2024-13484 2025-01-29 04:15 2025-01-29 Show GitHub Exploit DB Packet Storm