Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
151 6.7 警告
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Window… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 New CWE-693
CWE-noinfo
CVE-2024-28921 2025-01-10 11:42 2024-04-9 Show GitHub Exploit DB Packet Storm
152 6.7 警告
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Window… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 New CWE-693
CWE-noinfo
CVE-2024-28919 2025-01-10 11:36 2024-04-9 Show GitHub Exploit DB Packet Storm
153 6.1 警告
Network 		oretnom23 Online Flight Booking Management System oretnom23 の Online Flight Booking Management System におけるクロスサイトスクリプティングの脆弱性 New CWE-79
CWE-79
CVE-2022-46088 2025-01-10 11:26 2022-11-28 Show GitHub Exploit DB Packet Storm
154 5.5 警告
Local 		クアルコム SD 835 ファームウェア
SD 845 ファームウェア
SD 820 ファームウェア
SD 820A ファームウェア
SD 850 ファームウェア
SD 450 ファームウェア
SD 625 ファームウェア 		複数のクアルコム製品における初期化されていないリソースの使用に関する脆弱性 New CWE-200
CWE-908
CVE-2017-18306 2025-01-10 11:19 2024-11-26 Show GitHub Exploit DB Packet Storm
155 8.8 重要
Adjacent 		ネットギア RAX38 ファームウェア
RAXE300 ファームウェア
RAX35 ファームウェア
RAX30 ファームウェア 		複数のネットギア製品における SQL インジェクションの脆弱性 New CWE-89
CWE-89
CVE-2023-27358 2025-01-10 11:19 2023-02-28 Show GitHub Exploit DB Packet Storm
156 5.4 警告
Network 		Jegtheme Jeg Elementor Kit Jegtheme の WordPress 用 Jeg Elementor Kit におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-10308 2025-01-10 11:19 2024-11-26 Show GitHub Exploit DB Packet Storm
157 6.4 警告
Network 		Helm Helm Helm におけるパストラバーサルの脆弱性 New CWE-22
CWE-22
CVE-2024-25620 2025-01-10 11:19 2024-02-15 Show GitHub Exploit DB Packet Storm
158 7.5 重要
Network 		デル EMC PowerScale OneFS デルの EMC PowerScale OneFS におけるセッション期限に関する脆弱性 New CWE-613
不適切なセッション期限 		CVE-2024-25954 2025-01-10 11:19 2024-03-28 Show GitHub Exploit DB Packet Storm
159 4.4 警告
Local 		デル EMC PowerScale OneFS デルの EMC PowerScale OneFS における脆弱性 New CWE-73
CWE-Other
CVE-2024-25965 2025-01-10 11:19 2024-05-14 Show GitHub Exploit DB Packet Storm
160 6.7 警告
Local 		デル EMC PowerScale OneFS デルの EMC PowerScale OneFS における脆弱性 New CWE-250
CWE-Other
CVE-2024-25967 2025-01-10 11:19 2024-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276691 - php_arena pafiledb Cross-site scripting (XSS) vulnerability in PHP Arena paFileDB 1.1.3 and 2.1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the search string. NVD-CWE-Other
CVE-2002-1931 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276692 - microsoft windows_2000_terminal_services The terminal services screensaver for Microsoft Windows 2000 does not automatically lock the terminal window if the window is minimized, which could allow local users to gain access to the terminal s… NVD-CWE-Other
CVE-2002-1933 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276693 - utstarcom bas_1000 UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to gain access via (1) field account with a password of "*field", (2) guru account… NVD-CWE-Other
CVE-2002-1936 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276694 - symantec firewall_vpn_appliance_100
firewall_vpn_appliance_200
firewall_vpn_appliance_200r 		Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address … NVD-CWE-Other
CVE-2002-1937 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276695 - virgil cgi_scanner Virgil CGI Scanner 0.9 allows remote attackers to execute arbitrary commands via the (1) tar (TARGET) or (2) zielport (ZIELPORT) parameters. NVD-CWE-Other
CVE-2002-1938 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276696 - flashfxp flashfxp FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties. NVD-CWE-Other
CVE-2002-1939 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276697 - jacob_navia lcc-win32 LCC-Win32 3.2 compiler, when running on Windows 95, 98, or ME, writes portions of previously used memory after the import table, which could allow attackers to gain sensitive information. NOTE: it h… NVD-CWE-Other
CVE-2002-1940 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276698 - radiobird_software web_server_4_everyone Buffer overflow in RadioBird WebServer 4 Everyone 1.28 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request with the Host header set. NVD-CWE-Other
CVE-2002-1941 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276699 - imatix xitami Imatix Xitami 2.5 b5 does not properly terminate certain Keep-Alive connections that have been broken or closed early, which allows remote attackers to cause a denial of service (crash) via a large n… NVD-CWE-Other
CVE-2002-1942 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276700 - safetp safetp_server SafeTP 1.46, when network address translation (NAT) is being used, leaks the internal IP address of the FTP server in a response to a passive mode (PASV) file transfer request. NVD-CWE-Other
CVE-2002-1943 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm