Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 8, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
91 5.3 警告
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller における観測可能な不一致に関する脆弱性 New CWE-203
CWE-204
CVE-2021-20556 2025-01-8 10:50 2024-05-1 Show GitHub Exploit DB Packet Storm
92 5.3 警告
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller におけるスプーフィングによる認証回避に関する脆弱性 New CWE-290
CWE-350
CVE-2022-22364 2025-01-8 10:50 2022-01-3 Show GitHub Exploit DB Packet Storm
93 7.5 重要
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller における暗号アルゴリズムの使用に関する脆弱性 New CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2023-40696 2025-01-8 10:50 2023-08-18 Show GitHub Exploit DB Packet Storm
94 4.3 警告
Network 		IBM IBM App Connect Enterprise IBM の IBM App Connect Enterprise における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
CWE-770
CVE-2024-28760 2025-01-8 10:50 2024-05-10 Show GitHub Exploit DB Packet Storm
95 4.3 警告
Physics 		IBM IBM Cognos Command Center IBM の IBM Cognos Command Center における認証情報の不十分な保護に関する脆弱性 New CWE-256
CWE-522
CVE-2024-31899 2025-01-8 10:50 2024-09-25 Show GitHub Exploit DB Packet Storm
96 4.4 警告
Local 		IBM IBM Security Guardium Key Lifecycle Manager IBM の IBM Security Guardium Key Lifecycle Manager における認証情報の不十分な保護に関する脆弱性 New CWE-260
CWE-522
CVE-2024-49817 2025-01-8 10:50 2024-11-7 Show GitHub Exploit DB Packet Storm
97 6.5 警告
Network 		IBM IBM InfoSphere Information Server IBM の IBM InfoSphere Information Server における入力で指定された数量の不適切な検証に関する脆弱性 New CWE-1284
入力で指定された数量の不適切な検証 		CVE-2024-52901 2025-01-8 10:50 2024-12-5 Show GitHub Exploit DB Packet Storm
98 5.4 警告
Network 		averta Master Slider averta の WordPress 用 Master Slider におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-6382 2025-01-8 10:44 2023-11-29 Show GitHub Exploit DB Packet Storm
99 6.1 警告
Network 		emlog emlog emlog におけるクロスサイトスクリプティングの脆弱性 New CWE-79
CWE-79
CWE-94
CVE-2024-12844 2025-01-8 10:44 2024-12-20 Show GitHub Exploit DB Packet Storm
100 5.4 警告
Network 		leevio happy addons for elementor leevio の WordPress 用 happy addons for elementor におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1366 2025-01-8 10:44 2024-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 8, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276461 - sun sun_pci_ii_driver SunPCi II VNC uses a weak authentication scheme, which allows remote attackers to obtain the VNC password by sniffing the random byte challenge, which is used as the key for encrypted communications. NVD-CWE-Other
CVE-2002-0994 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276462 - gianluca_baldo phpauction login.php for PHPAuction allows remote attackers to gain privileges via a direct call to login.php with the action parameter set to "insert," which adds the provided username to the adminUsers table. NVD-CWE-Other
CVE-2002-0995 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276463 - novell netmail
netmail_xe 		Multiple buffer overflows in Novell NetMail (NIMS) 3.0.3 before 3.0.3C allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) WebAdmin or (2) ModWeb. NVD-CWE-Other
CVE-2002-0996 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276464 - novell netmail
netmail_xe 		Buffer overflows in IMAP Agent (imapd) for Novell NetMail (NIMS) 3.0.3 before 3.0.3A allows remote attackers to cause a denial of service. NVD-CWE-Other
CVE-2002-0997 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276465 - analogx simpleserver_shout Buffer overflow in AnalogX SimpleServer:Shout 1.0 allows remote attackers to cause a denial of service and execute arbitrary code via a long request to TCP port 8001. NVD-CWE-Other
CVE-2002-1000 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276466 - analogx proxy Buffer overflows in AnalogX Proxy before 4.12 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long HTTP request to TCP port 6588 or (2) a SOCKS 4A r… NVD-CWE-Other
CVE-2002-1001 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276467 - novell emframe Buffer overflow in Novell iManager (eMFrame 1.2.1) allows remote attackers to cause a denial of service (crash) via a long user name. NVD-CWE-Other
CVE-2002-1002 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276468 - mywebserver mywebserver Buffer overflow in MyWebServer 1.02 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request. NVD-CWE-Other
CVE-2002-1003 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276469 - argosoft argosoft_mail_server Directory traversal vulnerability in webmail feature of ArGoSoft Mail Server Plus or Pro 1.8.1.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in a URL. NVD-CWE-Other
CVE-2002-1004 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
276470 - bbc_education betsie Cross-site scripting (XSS) vulnerability in BBC Education Text to Speech Internet Enhancer (Betsie) 1.5.11 and earlier allows remote attackers to execute arbitrary web script via parserl.pl. NVD-CWE-Other
CVE-2002-1006 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm