Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1511	9.8	緊急 Network	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Window…	Windows Lightweight Directory Access Protocol (LDAP) のリモートでコードが実行される脆弱性	CWE-190 CWE-noinfo	CVE-2024-49112	2025-01-17 16:55	2024-12-10	Show	GitHub Exploit DB Packet Storm

1512	8.1	重要 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows Server 2016 Microsoft Windows Server 2025 Microsoft Windows Server 2022	Windows リモートデスクトップサービスのリモートでコードが実行される脆弱性	CWE-362 CWE-416 CWE-591	CVE-2024-49115	2025-01-17 16:49	2024-12-10	Show	GitHub Exploit DB Packet Storm

1513	6.4	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server&…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-190 CWE-noinfo	CVE-2024-28923	2025-01-17 16:46	2024-04-9	Show	GitHub Exploit DB Packet Storm

1514	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2022-49035	2025-01-17 16:43	2022-09-24	Show	GitHub Exploit DB Packet Storm

1515	6.7	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server&…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-121 CWE-noinfo	CVE-2024-28924	2025-01-17 16:41	2024-04-9	Show	GitHub Exploit DB Packet Storm

1516	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-47072	2025-01-17 16:40	2021-05-14	Show	GitHub Exploit DB Packet Storm

1517	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-46974	2025-01-17 16:39	2021-05-3	Show	GitHub Exploit DB Packet Storm

1518	8.8	重要 Network	マイクロソフト	Microsoft Visual Studio Microsoft ODBC Driver Microsoft SQL Server	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-190 CWE-noinfo	CVE-2024-28929	2025-01-17 16:36	2024-04-9	Show	GitHub Exploit DB Packet Storm

1519	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2024-56622	2025-01-17 16:34	2024-12-4	Show	GitHub Exploit DB Packet Storm

1520	5.3	警告 Network	三菱電機	（複数の製品）	複数の三菱電機製 FA 製品の Ethernet 機能におけるサービス運用妨害（DoS）の脆弱性	CWE-410 不十分なリソースプール	CVE-2023-7033	2025-01-17 16:32	2024-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
279041	-	punbb	punbb	Cross-site scripting (XSS) vulnerability in PunBB before 1.2.8 allows remote attackers to inject arbitrary web script or HTML via the "forgotten e-mail" feature.	NVD-CWE-Other	CVE-2005-3078	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

279042	-	punbb	punbb	PunBB before 1.2.8 allows remote attackers to perform "code inclusion" via the user language selection.	NVD-CWE-Other	CVE-2005-3079	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

279043	-	geshi	geshi	contrib/example.php in GeSHi before 1.0.7.3 allows remote attackers to read arbitrary files via the language field without a source field set.	NVD-CWE-Other	CVE-2005-3080	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

279044	-	wzdftpd	wzdftpd	wzdftpd 0.5.4 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the SITE command.	NVD-CWE-Other	CVE-2005-3081	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

279045	-	sony	playstation_portable	Buffer overflow in the TIFF library in the Photo Viewer for Sony PSP 2.0 firmware allows remote attackers to cause a denial of service via a crafted TIFF image.	NVD-CWE-Other	CVE-2005-3084	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

279046	-	riverdark_studios	rss_syndicator_module	Multiple cross-site scripting (XSS) vulnerabilities in rss.php in Riverdark Studios RSS Syndicator module 2.1.7 allow remote attackers to inject arbitrary web script or HTML via the (1) forum or (2) …	NVD-CWE-Other	CVE-2005-3085	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

279047	-	contentserv	contentserv	Directory traversal vulnerability in admin/about.php in contentServ 3.1 allows remote attackers to read or include arbitrary files via ".." sequences in the ctsWebsite parameter.	NVD-CWE-Other	CVE-2005-3086	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

279048	-	securew2	securew2	The SecureW2 3.0 TLS implementation uses weak random number generators (rand and srand from system time) during generation of the pre-master secret (PMS), which makes it easier for attackers to guess…	NVD-CWE-Other	CVE-2005-3087	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

279049	-	mantis	mantis	Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 "thraxisp".	NVD-CWE-Other	CVE-2005-3091	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

279050	-	nokia	3210 7610	Nokia 7610 and 3210 phones allows attackers to cause a denial of service via certain characters in the filename of a Bluetooth OBEX transfer.	NVD-CWE-Other	CVE-2005-3093	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm