Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 6, 2025, 6:04 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
200771 3.5 注意 MyBB Group - MyBB における [img] MyCodes の数の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-4624 2012-03-27 18:42 2010-02-2 Show GitHub Exploit DB Packet Storm
200772 4 警告 IBM - IBM Tivoli Access Manager for e-business の WebSEAL におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-4623 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
200773 5 警告 IBM - IBM Tivoli Access Manager for e-business の WebSEAL におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-4622 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
200774 7.5 危険 webscripti - Mafya Oyun Scrpti の profil.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4619 2012-03-27 18:42 2010-12-29 Show GitHub Exploit DB Packet Storm
200775 4.3 警告 algisinfo - Joomla! の Algis Info aiContactSafe コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4618 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
200776 6.8 警告 Kanich - Joomla! の JotLoader (com_jotloader) コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-4617 2012-03-27 18:42 2010-12-29 Show GitHub Exploit DB Packet Storm
200777 9.3 危険 リアルネットワークス - RealNetworks Helix Server および Helix Mobile Server におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4596 2012-03-27 18:42 2011-03-31 Show GitHub Exploit DB Packet Storm
200778 4.3 警告 ImpressCMS - ImpressCMS の modules/content/admin/content.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4616 2012-03-27 18:42 2010-12-29 Show GitHub Exploit DB Packet Storm
200779 7.5 危険 iskenderaltuntas - Oto Galeri Sistemi における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4615 2012-03-27 18:42 2010-12-29 Show GitHub Exploit DB Packet Storm
200780 7.5 危険 MH Products - Ero Auktion の item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4614 2012-03-27 18:42 2010-12-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 7, 2025, 4:05 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 - - - A vulnerability was found in Campcodes Student Grading System 1.0. It has been classified as critical. This affects an unknown part of the file /view_students.php. The manipulation of the argument id… New CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0212 2025-01-5 01:15 2025-01-5 Show GitHub Exploit DB Packet Storm
102 - - - A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipula… New CWE-73
 External Control of File Name or Path
CVE-2025-0211 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
103 6.5 MEDIUM
Network
- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure sta… New CWE-544
 Missing Standardized Error Handling Mechanism
CVE-2024-41768 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
104 7.3 HIGH
Network
- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to vi… New CWE-89
SQL Injection
CVE-2024-41767 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
105 7.5 HIGH
Network
- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause a denial of service using a complex regular expression. New CWE-1333
 Inefficient Regular Expression Complexity
CVE-2024-41766 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
106 6.5 MEDIUM
Network
- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request contain… New CWE-22
Path Traversal
CVE-2024-41765 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
107 5.9 MEDIUM
Network
- - IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. New CWE-327
 Use of a Broken or Risky Cryptographic Algorithm
CVE-2024-41763 2025-01-5 00:15 2025-01-5 Show GitHub Exploit DB Packet Storm
108 - - - A vulnerability has been found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?act… New CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0210 2025-01-4 23:15 2025-01-4 Show GitHub Exploit DB Packet Storm
109 8.8 HIGH
Network
- - The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.24.11 via deserialization of untrusted input in the 'r… New CWE-502
 Deserialization of Untrusted Data
CVE-2024-10957 2025-01-4 23:15 2025-01-4 Show GitHub Exploit DB Packet Storm
110 - - - A vulnerability, which was classified as critical, was found in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /summary.php. The manipulation of the argument tid leads … New CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0208 2025-01-4 22:15 2025-01-4 Show GitHub Exploit DB Packet Storm