Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 29, 2025, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
101 4.3 警告
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server 2012
Microsoft Windows Server 2022
Microsoft Window… 		MapUrlToZone セキュリティ機能のバイパスの脆弱性 New CWE-41
CWE-noinfo
CVE-2025-21268 2025-01-28 16:16 2025-01-14 Show GitHub Exploit DB Packet Storm
102 4.3 警告
Network 		moveaddons move addons for elementor moveaddons の WordPress 用 move addons for elementor における脆弱性 New CWE-200
CWE-noinfo
CVE-2024-10360 2025-01-28 16:14 2024-10-29 Show GitHub Exploit DB Packet Storm
103 5.3 警告
Network 		Cozmoslabs Membership & Content Restriction - Paid Member Subscriptions Cozmoslabs の WordPress 用 Membership & Content Restriction - Paid Member Subscriptions における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-1389 2025-01-28 16:14 2024-02-29 Show GitHub Exploit DB Packet Storm
104 8.8 重要
Local 		クアルコム QCA6574AU ファームウェア
fastconnect 6700 ファームウェア
qcn9012 ファームウェア
QCA8337 ファームウェア
flight rb5 5g ファームウェア
AR8035 ファームウェア
qcm5430 ファームウェア
 複数のクアルコム製品における古典的バッファオーバーフローの脆弱性 New CWE-120
CWE-120
CVE-2023-43556 2025-01-28 16:14 2023-09-19 Show GitHub Exploit DB Packet Storm
105 6.5 警告
Adjacent 		Linux Foundation Magma Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
CWE-476
CVE-2023-37034 2025-01-28 16:13 2023-06-28 Show GitHub Exploit DB Packet Storm
106 7.5 重要
Network 		クアルコム mdm9205s ファームウェア
APQ8017 ファームウェア
fastconnect 6700 ファームウェア
CSRA6640 ファームウェア
9207 lte modem ファームウェア
APQ8037 ファームウェア
AR8035 ファームウェア 		複数のクアルコム製品における認証に関する脆弱性 New CWE-287
CWE-287
CVE-2023-43551 2025-01-28 16:13 2023-09-19 Show GitHub Exploit DB Packet Storm
107 7.5 重要
Network 		ZyXEL NR7102 ファームウェア
LTE3301-PLUS ファームウェア
EE6510-10 ファームウェア
DX3301-T0 ファームウェア
DX3300-T0 ファームウェア
DX4510-B1 ファームウェア
Nebula NR5101 ファームウェア
LTE5388-… 		複数の ZyXEL 製品における古典的バッファオーバーフローの脆弱性 New CWE-120
古典的バッファオーバーフロー 		CVE-2024-8748 2025-01-28 16:12 2024-12-3 Show GitHub Exploit DB Packet Storm
108 6.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server 2012
Microsoft Windows Server 2022
Microsoft Window… 		Windows デジタル メディアの特権昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2025-21255 2025-01-28 16:12 2025-01-14 Show GitHub Exploit DB Packet Storm
109 6.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server 2012
Microsoft Windows Server 2022
Microsoft Window… 		Windows デジタル メディアの特権昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2025-21229 2025-01-28 16:06 2025-01-14 Show GitHub Exploit DB Packet Storm
110 6.5 警告
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server 2012
Microsoft Windows Server 2022
Microsoft Window… 		Windows NTLM のなりすましの脆弱性 New CWE-693
CWE-noinfo
CVE-2025-21217 2025-01-28 16:04 2025-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274741 - arwscripts fonts_script Directory traversal vulnerability in viewfile.php in ARWScripts Fonts Script allows remote attackers to read arbitrary local files via directory traversal sequences in a base64-encoded f parameter. … CWE-22
Path Traversal 		CVE-2010-0613 2010-03-26 14:37 2010-02-12 Show GitHub Exploit DB Packet Storm
274742 - openttd openttd Unspecified vulnerability in the NormaliseTrainConsist function in src/train_cmd.cpp in OpenTTD before 0.7.5-RC1 allows remote attackers to cause a denial of service (daemon crash) via certain game a… NVD-CWE-noinfo
CVE-2009-4007 2010-03-26 14:34 2009-12-29 Show GitHub Exploit DB Packet Storm
274743 - linux.thai libthai Multiple integer overflows in LibThai before 0.1.13 might allow context-dependent attackers to execute arbitrary code via long strings that trigger heap-based buffer overflows, related to (1) thbrk/t… CWE-189
Numeric Errors 		CVE-2009-4012 2010-03-26 14:34 2010-01-20 Show GitHub Exploit DB Packet Storm
274744 - 68k audiofile Heap-based buffer overflow in msadpcm.c in libaudiofile in audiofile 0.2.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-5824 2010-03-26 14:24 2009-01-3 Show GitHub Exploit DB Packet Storm
274745 - tristan_barczyk klonews Cross-site scripting (XSS) vulnerability in cat.php in KloNews 2.0 allows remote attackers to inject arbitrary web script or HTML via the cat parameter. CWE-79
Cross-site Scripting 		CVE-2010-1112 2010-03-26 13:00 2010-03-26 Show GitHub Exploit DB Packet Storm
274746 - phptroubleticket php_trouble_ticket SQL injection vulnerability in vedi_faq.php in PHP Trouble Ticket 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-1089 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
274747 - scriptsfeed dating_software Multiple SQL injection vulnerabilities in searchmatch.php in ScriptsFeed Dating Software allow remote attackers to execute arbitrary SQL commands via the (1) txtgender and (2) txtlookgender parameter… CWE-89
SQL Injection 		CVE-2010-1096 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
274748 - springsource application_management_suite
hyperic_hq
tc_server 		Multiple cross-site scripting (XSS) vulnerabilities in SpringSource tc Server 6.0.20.B and earlier, Application Management Suite (AMS) before 2.0.0.SR4, Hyperic HQ Open Source before 4.2.x, Hyperic H… CWE-79
Cross-site Scripting 		CVE-2009-2907 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
274749 - springsource application_management_suite
hyperic_hq
tc_server 		Per: http://www.springsource.com/security/cve-2009-2907 'Mitigation: * Hyperic HQ Open Source users should upgrade to Hyperic HQ 4.2.x * Hyperic HQ 4.0 Enterprise users should upgra… CWE-79
Cross-site Scripting 		CVE-2009-2907 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
274750 - openinferno oi.blogs Multiple directory traversal vulnerabilities in OI.Blogs 1.0.0, when magic_quotes_gpc is disabled, allow remote attackers to read arbitrary files via directory traversal sequences in the (1) theme pa… CWE-22
Path Traversal 		CVE-2010-1082 2010-03-25 04:52 2010-03-24 Show GitHub Exploit DB Packet Storm