Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1701 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-4587 2025-01-16 17:12 2024-05-7 Show GitHub Exploit DB Packet Storm
1702 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2024-36935 2025-01-16 17:12 2024-04-25 Show GitHub Exploit DB Packet Storm
1703 9.8 緊急
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2023-38724 2025-01-16 17:12 2023-07-25 Show GitHub Exploit DB Packet Storm
1704 8.8 重要
Network 		IBM IBM Security Guardium IBM の IBM Security Guardium における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2023-47709 2025-01-16 17:12 2023-11-9 Show GitHub Exploit DB Packet Storm
1705 5.9 警告
Network 		Huawei HarmonyOS Huawei の HarmonyOS における競合状態に関する脆弱性 CWE-362
CWE-362
CVE-2024-54102 2025-01-16 17:12 2024-12-12 Show GitHub Exploit DB Packet Storm
1706 7.5 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-121
CWE-noinfo
CVE-2024-29045 2025-01-16 17:09 2024-04-9 Show GitHub Exploit DB Packet Storm
1707 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-190
CWE-noinfo
CVE-2024-28942 2025-01-16 17:05 2024-04-9 Show GitHub Exploit DB Packet Storm
1708 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-29048 2025-01-16 17:02 2024-04-9 Show GitHub Exploit DB Packet Storm
1709 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-29983 2025-01-16 17:00 2024-04-9 Show GitHub Exploit DB Packet Storm
1710 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-29985 2025-01-16 16:58 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 9, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279151 - eqdkp eqdkp Unknown vulnerability in session.php in EQdkp before 1.3.0 has unknown impact and attack vectors, possibly involving auto_login_id. NVD-CWE-Other
CVE-2005-2615 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
279152 - mutt mutt Buffer overflow in the mutt_decode_xbit function in Handler.c for Mutt 1.5.10 allows remote attackers to execute arbitrary code, possibly due to interactions with libiconv or gettext. NVD-CWE-Other
CVE-2005-2642 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
279153 - isemarket jaguarcontrol Buffer overflow in JaguarEditControl.dll in Isemarket JaguarControl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long Jtext field. NVD-CWE-Other
CVE-2005-2644 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
279154 - xerox document_centre_265
document_centre_332
document_centre_340
document_centre_420
document_centre_490
document_centre_535
document_centre_555 		Unknown vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to bypass authentication. NVD-CWE-Other
CVE-2005-2645 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
279155 - xerox document_centre_220
document_centre_230
document_centre_240
document_centre_255
document_centre_265
document_centre_332
document_centre_340
document_centre_420
document_centre… 		Unknown vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to cause a denial of service or rea… NVD-CWE-Other
CVE-2005-2646 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
279156 - xerox document_centre_265
document_centre_332
document_centre_340
document_centre_420
document_centre_490
document_centre_535
document_centre_555 		Cross-site scripting (XSS) vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to inject arbitr… NVD-CWE-Other
CVE-2005-2647 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
279157 - emefa emefa_guestbook Cross-site scripting (XSS) vulnerability in sign.asp in Emefa Guestbook 1.2 allows remote attackers to inject arbitrary web script or HTML via the (1) name, (2) location, and (3) email parameters. NVD-CWE-Other
CVE-2005-2650 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
279158 - maildrop maildrop lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments. NVD-CWE-Other
CVE-2005-2655 2008-09-6 05:52 2005-08-31 Show GitHub Exploit DB Packet Storm
279159 - polygen polygen Polygen before 1.0.6 generates precompiled grammar objects with world-writable permissions, which allows local users to cause a denial of service (disk consumption) and possibly perform other unautho… NVD-CWE-Other
CVE-2005-2656 2008-09-6 05:52 2005-09-7 Show GitHub Exploit DB Packet Storm
279160 - softwolves_software turquoise_superstat Buffer overflow in utility.cpp in Turquoise SuperStat (turqstat) 2.2.4 and earlier might allow remote NNTP servers to execute arbitrary code via a date with a long month. NVD-CWE-Other
CVE-2005-2658 2008-09-6 05:52 2005-09-16 Show GitHub Exploit DB Packet Storm