Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows 11
Microsoft Windows Server 2019 		Windows カーネルの特権の昇格の脆弱性 New CWE-59
CWE-noinfo
CVE-2024-30018 2025-01-10 12:13 2024-05-14 Show GitHub Exploit DB Packet Storm
132 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server 2016
Microsoft Window… 		リモート プロシージャ コール ランタイムのリモートでコードが実行される脆弱性 New CWE-843
CWE-noinfo
CVE-2024-20678 2025-01-10 12:13 2024-04-9 Show GitHub Exploit DB Packet Storm
133 6.5 警告
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows Server 2016
Microsoft Windows Server 2012 		Windows Hyper-V のサービス拒否の脆弱性 New CWE-191
CWE-noinfo
CVE-2024-30011 2025-01-10 12:10 2024-05-14 Show GitHub Exploit DB Packet Storm
134 7.5 重要
Network 		マイクロソフト Microsoft .NET Framework .NET Framework の情報漏えいの脆弱性 New CWE-209
CWE-209
CVE-2024-29059 2025-01-10 11:55 2024-03-22 Show GitHub Exploit DB Packet Storm
135 9.9 緊急
Network 		FIT2CLOUD jumpserver FIT2CLOUD の jumpserver におけるコードインジェクションの脆弱性 New CWE-94
CWE-94
CVE-2024-29201 2025-01-10 11:51 2024-03-29 Show GitHub Exploit DB Packet Storm
136 9.6 緊急
Network 		Traccar Ltd Traccar Traccar Ltd の Traccar における危険なタイプのファイルの無制限アップロードに関する脆弱性 New CWE-434
CWE-434
CVE-2024-31214 2025-01-10 11:51 2024-04-10 Show GitHub Exploit DB Packet Storm
137 8.8 重要
Network 		XWiki xwiki XWiki の xwiki におけるコードインジェクションの脆弱性 New CWE-94
CWE-95
CVE-2024-31465 2025-01-10 11:51 2024-04-10 Show GitHub Exploit DB Packet Storm
138 6.3 警告
Network 		argoproj argo cd argoproj の argo cd における不正な認証に関する脆弱性 New CWE-863
CWE-863
CVE-2024-31990 2025-01-10 11:51 2024-04-15 Show GitHub Exploit DB Packet Storm
139 7.8 重要
Local 		デル OpenManage Server Administrator デルの OpenManage Server Administrator における制御されていない検索パスの要素に関する脆弱性 New CWE-427
制御されていない検索パスの要素 		CVE-2024-37130 2025-01-10 11:51 2024-06-11 Show GitHub Exploit DB Packet Storm
140 8.8 重要
Network 		Cohesive Networks VNS3 Cohesive Networks の VNS3 における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2024-8809 2025-01-10 11:51 2024-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275571 - lpanel lpanel Cross-site scripting (XSS) vulnerability in view_ticket.php in Lpanel 1.59 and earlier allows remote attackers to inject arbitrary web script or HTML and obtain sensitive information via the pid para… NVD-CWE-Other
CVE-2005-1877 2008-09-6 05:50 2005-06-6 Show GitHub Exploit DB Packet Storm
275572 - giptables giptables_firewall GIPTables Firewall 1.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the temp.ip.addresses temporary file. NVD-CWE-Other
CVE-2005-1878 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
275573 - yapig yapig PHP remote file inclusion vulnerability in last_gallery.php in YaPiG 0.93u and 0.94u allows remote attackers to execute arbitrary PHP code via the YAPIG_PATH parameter. NVD-CWE-Other
CVE-2005-1882 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
275574 - yapig yapig global.php in YaPiG 0.92b allows remote attackers to include arbitrary local files via the BASE_DIR parameter. NVD-CWE-Other
CVE-2005-1883 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
275575 - yapig yapig Directory traversal vulnerability in the (1) rmdir or (2) mkdir commands in upload.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to create or delete arbitrary directories via a .. (dot … NVD-CWE-Other
CVE-2005-1884 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
275576 - yapig yapig view.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to obtain sensitive information via a phid parameter that is not an integer, which reveals the path in an error message. NVD-CWE-Other
CVE-2005-1885 2008-09-6 05:50 2005-06-6 Show GitHub Exploit DB Packet Storm
275577 - yapig yapig Cross-site scripting (XSS) vulnerability in view.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to inject arbitrary web script or HTML via (1) the phid parameter or (2) unknown parameter… NVD-CWE-Other
CVE-2005-1886 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
275578 - mediawiki mediawiki Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.5 allows remote attackers to inject arbitrary web script via HTML attributes in page templates. NVD-CWE-Other
CVE-2005-1888 2008-09-6 05:50 2005-06-6 Show GitHub Exploit DB Packet Storm
275579 - mortiforo mortiforo Unknown vulnerability in Mortiforo before 0.9.1 allows users to access private forums via unknown attack vectors. NVD-CWE-Other
CVE-2005-1890 2008-09-6 05:50 2005-06-7 Show GitHub Exploit DB Packet Storm
275580 - flexcast flexcast_audio_video_streaming_server Unknown vulnerability in FlexCast Audio Video Streaming Server before 2.0 has unknown impact and attack vectors. NVD-CWE-Other
CVE-2005-1897 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm