Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205251	4.3	警告	Zenphoto	-	Zenphoto の zp-core/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4907	2012-02-9 11:18	2011-10-8	Show	GitHub Exploit DB Packet Storm

205252	7.5	危険	Zenphoto	-	Zenphoto の zp-core/full-image.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4906	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

205253	7.5	危険	SoftbizScripts	-	Softbiz Article Directory Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4905	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

205254	7.5	危険	DrBenHur	-	DBHcms の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4869	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

205255	4.3	警告	W-Agora	-	W-Agora の search.php3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4868	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

205256	7.5	危険	W-Agora	-	W-Agora の search.php3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4867	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

205257	7.5	危険	Chipmunk Scripts	-	Chipmunk Board の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4866	2012-02-9 11:09	2011-10-5	Show	GitHub Exploit DB Packet Storm

205258	7.5	危険	Jextensions	-	Joomla! 用 JE Guestbook (com_jeguestbook) コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4865	2012-02-9 11:08	2011-10-5	Show	GitHub Exploit DB Packet Storm

205259	7.5	危険	Daniel James Scott	-	Joomla! 用 Club Manager (com_clubmanager) コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4864	2012-02-9 11:08	2011-10-5	Show	GitHub Exploit DB Packet Storm

205260	4.3	警告	The GetSimple Team	-	GetSimple CMS の admin/changedata.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4863	2012-02-9 11:07	2011-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2541	-		-	-	In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional…	-	CVE-2024-20142	2025-02-3 13:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

2542	-		-	-	In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional…	-	CVE-2024-20141	2025-02-3 13:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

2543	5.0	MEDIUM Network	-	-	A vulnerability, which was classified as critical, has been found in MaxD Lightning Module 4.43 on OpenCart. This issue affects some unknown processing. The manipulation of the argument li_op/md lead…	CWE-20 CWE-502 Improper Input Validation Deserialization of Untrusted Data	CVE-2025-0974	2025-02-3 11:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

2544	5.4	MEDIUM Network	-	-	A vulnerability classified as critical was found in CmsEasy 7.7.7.9. This vulnerability affects the function backAll_action in the library lib/admin/database_admin.php of the file /index.php?case=dat…	CWE-22 Path Traversal	CVE-2025-0973	2025-02-3 10:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

2545	3.5	LOW Network	-	-	A vulnerability classified as problematic has been found in Zenvia Movidesk up to 25.01.22. This affects an unknown part of the component New Ticket Handler. The manipulation of the argument subject …	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0972	2025-02-3 09:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

2546	3.5	LOW Network	-	-	A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /Account/EditProfile of the component P…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0971	2025-02-3 09:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

2547	4.3	MEDIUM Network	-	-	A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /Account/Login. The manipulati…	CWE-601 Open Redirect	CVE-2025-0970	2025-02-3 08:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

2548	6.3	MEDIUM Network	-	-	A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue affects some unknown processing of the file /user/add_chatroom.php. The manipulation of the argument …	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0967	2025-02-3 01:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

2549	-		-	-	In the Linux kernel, the following vulnerability has been resolved: gtp: Destroy device along with udp socket's netns dismantle. gtp_newlink() links the device to a list in dev_net(dev) instead of …	-	CVE-2025-21678	2025-02-2 20:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

2550	-		-	-	In the Linux kernel, the following vulnerability has been resolved: mac802154: check local interfaces before deleting sdata list syzkaller reported a corrupted list in ieee802154_if_remove. [1] Re…	-	CVE-2024-57948	2025-02-2 20:15	2025-01-31	Show	GitHub Exploit DB Packet Storm