Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 27, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200181 7.5 危険 CMS Made Simple - CMSimple の cmsimple/cms.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0551 2012-06-26 15:46 2007-01-29 Show GitHub Exploit DB Packet Storm
200182 6.8 警告 212cafe - 212cafeBoard の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0550 2012-06-26 15:46 2007-01-29 Show GitHub Exploit DB Packet Storm
200183 6.8 警告 212cafe - 212cafeBoard の list3.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0549 2012-06-26 15:46 2007-01-29 Show GitHub Exploit DB Packet Storm
200184 6.8 警告 212cafe - 212cafeBoard の show.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0542 2012-06-26 15:46 2007-01-29 Show GitHub Exploit DB Packet Storm
200185 4.3 警告 Drupal - Drupal 用の Project issue tracking におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0534 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
200186 5 警告 atozed software - Borland Delphi および Kylix の AToZed IntraWeb コンポーネントおよび IntraWeb におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0533 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
200187 7.5 危険 FreeWebshop - FreeWebShop の includes/login.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0531 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
200188 9 危険 centrality communications - Centrality Communications A168 チップセットが実装する admin Web コンソールにおける重要な情報 (パスワードおよび設定データ) を取得される脆弱性 - CVE-2007-0528 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
200189 4.3 警告 Bitweaver - Bitweaver におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0526 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
200190 7.5 危険 grigoriadis - Nickolas Grigoriadis MiniWebsvr におけるバッファオーバーフローの脆弱性 - CVE-2007-0525 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
921 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows SQL Injection. This issue affec… CWE-89
SQL Injection 		CVE-2024-49303 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
922 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows Reflected XSS. This issue affec… CWE-79
Cross-site Scripting 		CVE-2024-49300 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
923 - - - Incorrect Privilege Assignment vulnerability in NotFound Easy Real Estate allows Privilege Escalation. This issue affects Easy Real Estate: from n/a through 2.2.6. CWE-266
 Incorrect Privilege Assignment 		CVE-2024-32555 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
924 - - - In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix variable not being completed when function returns When cmd_alloc_index(), fails cmd_work_handler() needs to comple… - CVE-2025-21662 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
925 - - - In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix missing lookup table cleanups When a virtuser device is created via configfs and the probe fails due to an in… - CVE-2025-21661 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
926 - - - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix unexpectedly changed path in ksmbd_vfs_kern_path_locked When `ksmbd_vfs_kern_path_locked` met an error and it is not t… - CVE-2025-21660 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
927 - - - In the Linux kernel, the following vulnerability has been resolved: netdev: prevent accessing NAPI instances from another namespace The NAPI IDs were not fully exposed to user space prior to the ne… - CVE-2025-21659 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
928 - - - In the Linux kernel, the following vulnerability has been resolved: hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur scsi_execute_cmd() function can return both negative … - CVE-2025-21656 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
929 - - - In the Linux kernel, the following vulnerability has been resolved: exfat: fix the new buffer was not zeroed before writing Before writing, if a buffer_head marked as new, its data must be zeroed, … - CVE-2024-57943 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
930 - - - In the Linux kernel, the following vulnerability has been resolved: net: stmmac: dwmac-tegra: Read iommu stream id from device tree Nvidia's Tegra MGBE controllers require the IOMMU "Stream ID" (SI… - CVE-2025-21663 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm