Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
1581 6.8 警告
Physics
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows 11
Microsoft Windows Server 2019
Windows モバイル ブロードバンド ドライバーのリモート コード実行に対する脆弱性 CWE-190
CWE-noinfo
CVE-2024-30021 2025-01-17 15:00 2024-05-14 Show GitHub Exploit DB Packet Storm
1582 6.5 警告
Network
マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microso…
DHCP Server サービスのサービス拒否の脆弱性 CWE-400
CWE-noinfo
CVE-2024-30019 2025-01-17 14:51 2024-05-14 Show GitHub Exploit DB Packet Storm
1583 7.5 重要
Network
マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Window…
Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 CWE-197
CWE-noinfo
CVE-2024-30014 2025-01-17 14:49 2024-05-14 Show GitHub Exploit DB Packet Storm
1584 8.1 重要
Network
マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Window…
Lightweight Directory Access Protocol (LDAP) クライアントのリモートでコードが実行される脆弱性 CWE-362
競合状態
CVE-2024-49124 2025-01-17 14:41 2024-12-10 Show GitHub Exploit DB Packet Storm
1585 8.1 重要
Network
マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Window…
Microsoft Message Queuing (MSMQ) のリモートでコードが実行される脆弱性 CWE-362
CWE-416
CVE-2024-49122 2025-01-17 14:37 2024-12-10 Show GitHub Exploit DB Packet Storm
1586 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows Server 2025
Microso…
Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-49125 2025-01-17 14:32 2024-12-10 Show GitHub Exploit DB Packet Storm
1587 9.8 緊急
Network
72crm Wukong CRM 72crm の Wukong CRM における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
CWE-502
CVE-2024-23052 2025-01-17 14:28 2024-02-29 Show GitHub Exploit DB Packet Storm
1588 6.1 警告
Network
Meow Apps ai engine Meow Apps の WordPress 用 ai engine におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-0378 2025-01-17 14:03 2024-03-2 Show GitHub Exploit DB Packet Storm
1589 3.3
Local
IBM IBM TXSeries for Multiplatforms IBM の IBM TXSeries for Multiplatforms における脆弱性 CWE-525
CWE-Other
CVE-2024-22343 2025-01-17 13:53 2024-05-9 Show GitHub Exploit DB Packet Storm
1590 6.5 警告
Network
IBM IBM Aspera Faspex IBM の IBM Aspera Faspex におけるエンコードおよびエスケープに関する脆弱性 CWE-116
CWE-644
CVE-2022-22399 2025-01-17 13:52 2022-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277011 - menalto gallery_webcam_module Unspecified vulnerability in the WebCam module in Menalto Gallery before 2.2.4 has unknown impact and attack vectors related to a "proxied request." NVD-CWE-noinfo
CVE-2007-6693 2008-11-15 16:06 2008-01-17 Show GitHub Exploit DB Packet Storm
277012 - webcalendar webcalendar Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar 1.1.6 allow remote attackers to inject arbitrary web script or HTML via (1) an event description, (2) the query string to pref.php, … CWE-79
Cross-site Scripting
CVE-2007-6696 2008-11-15 16:06 2008-02-2 Show GitHub Exploit DB Packet Storm
277013 - aol ygp_piceditor_activex_control Multiple buffer overflows in the AIM PicEditor 9.5.1.8 ActiveX control in YGPPicEdit.dll in AOL You've Got Pictures (YGP) Picture Editor allow remote attackers to cause a denial of service (browser c… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2007-6699 2008-11-15 16:06 2008-02-5 Show GitHub Exploit DB Packet Storm
277014 - ibm websphere_mq The WebSphere MQ XA 5.3 before FP13 and 6.0.x before 6.0.2.1 client for Windows, when running in an MTS or a COM+ environment, grants the PROCESS_DUP_HANDLE privilege to the Everyone group upon conne… CWE-264
Permissions, Privileges, and Access Controls
CVE-2007-6705 2008-11-15 16:06 2008-03-9 Show GitHub Exploit DB Packet Storm
277015 - mozilla firefox Mozilla Firefox allows remote attackers to cause a denial of service (crash) via crafted image, as demonstrated by the zzuf lol-firefox.gif test case. NVD-CWE-noinfo
CVE-2007-6715 2008-11-15 16:06 2008-04-18 Show GitHub Exploit DB Packet Storm
277016 - mantis mantis Cross-site scripting (XSS) vulnerability in view.php in Mantis before 1.1.0 allows remote attackers to inject arbitrary web script or HTML via a filename, related to bug_report.php. CWE-79
Cross-site Scripting
CVE-2007-6611 2008-11-15 16:05 2008-01-4 Show GitHub Exploit DB Packet Storm
277017 - atlassian jira Cross-site scripting (XSS) vulnerability in 500page.jsp in JIRA Enterprise Edition before 3.12.1 allows remote attackers to inject arbitrary web script or HTML, which is not properly handled when gen… CWE-79
Cross-site Scripting
CVE-2007-6617 2008-11-15 16:05 2008-01-4 Show GitHub Exploit DB Packet Storm
277018 - atlassian jira JIRA Enterprise Edition before 3.12.1 allows remote attackers to delete another user's shared filter via a modified filter ID. NVD-CWE-Other
CVE-2007-6618 2008-11-15 16:05 2008-01-4 Show GitHub Exploit DB Packet Storm
277019 - atlassian jira The Setup Wizard in Atlassian JIRA Enterprise Edition before 3.12.1 does not properly restrict setup attempts after setup is complete, which allows remote attackers to change the default language. CWE-264
Permissions, Privileges, and Access Controls
CVE-2007-6619 2008-11-15 16:05 2008-01-4 Show GitHub Exploit DB Packet Storm
277020 - joomla joomla Cross-site scripting (XSS) vulnerability in the com_poll component in Joomla! before 1.5 RC4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2007-6643 2008-11-15 16:05 2008-01-4 Show GitHub Exploit DB Packet Storm