Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1821 6.5 警告
Network 		マイクロソフト Microsoft Defender for Endpoint Windows Defender Information Disclosure Vulnerability CWE-612
CWE-Other
CVE-2024-49071 2025-01-16 13:40 2024-12-12 Show GitHub Exploit DB Packet Storm
1822 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2021-47016 2025-01-16 13:39 2021-04-6 Show GitHub Exploit DB Packet Storm
1823 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-Other
その他 		CVE-2021-47043 2025-01-16 13:39 2021-03-22 Show GitHub Exploit DB Packet Storm
1824 7.1 重要
Adjacent 		マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 11 		Windows Hyper-V のセキュリティ機能のバイパスの脆弱性 CWE-20
CWE-noinfo
CVE-2024-20659 2025-01-16 13:31 2024-10-8 Show GitHub Exploit DB Packet Storm
1825 7.5 重要
Network 		oretnom23 lost and found information system Oretnom23 の lost and found information system における SQL インジェクションの脆弱性 CWE-89
CWE-89
CVE-2023-33677 2025-01-16 12:32 2023-05-22 Show GitHub Exploit DB Packet Storm
1826 4.3 警告
Network 		Basixonline NEX-Forms Basixonline の WordPress 用 NEX-Forms における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1130 2025-01-16 12:32 2024-02-29 Show GitHub Exploit DB Packet Storm
1827 5.4 警告
Network 		IdeaBox Creations PowerPack Addons for Elementor IdeaBox Creations の WordPress 用 PowerPack Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1411 2025-01-16 12:32 2024-02-29 Show GitHub Exploit DB Packet Storm
1828 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-3143 2025-01-16 12:32 2024-04-2 Show GitHub Exploit DB Packet Storm
1829 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. W15E ファームウェア Shenzhen Tenda Technology Co.,Ltd. の W15E ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4123 2025-01-16 12:32 2024-04-24 Show GitHub Exploit DB Packet Storm
1830 9.8 緊急
Network 		ThimPress LearnPress ThimPress の WordPress 用 LearnPress における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-4434 2025-01-16 12:32 2024-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276651 - web_development_house alibaba_clone Multiple SQL injection vulnerabilities in Web Development House Alibaba Clone allow remote attackers to execute arbitrary SQL commands via the (1) IndustryID parameter to category.php and the (2) Sel… CWE-89
SQL Injection 		CVE-2009-2439 2010-02-13 14:00 2009-07-13 Show GitHub Exploit DB Packet Storm
276652 - osticket osticket SQL injection vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users, with "Staff" permissions, to execute arbitrary SQL commands via the input parameter. CWE-89
SQL Injection 		CVE-2010-0605 2010-02-12 14:00 2010-02-12 Show GitHub Exploit DB Packet Storm
276653 - novaboard novaboard SQL injection vulnerability in index.php in NovaBoard 1.1.2 allows remote attackers to execute arbitrary SQL commands via the forums[] parameter in a search action. CWE-89
SQL Injection 		CVE-2010-0608 2010-02-12 14:00 2010-02-12 Show GitHub Exploit DB Packet Storm
276654 - netbsd netbsd Integer signedness error in NetBSD 4.0, 5.0, and NetBSD-current before 2010-01-21 allows local users to cause a denial of service (kernel panic) via a negative mixer index number being passed to (1) … CWE-189
Numeric Errors 		CVE-2010-0561 2010-02-9 14:00 2010-02-9 Show GitHub Exploit DB Packet Storm
276655 - sun one_web_server Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP a… CWE-189
Numeric Errors 		CVE-2003-1579 2010-02-8 23:55 2010-02-6 Show GitHub Exploit DB Packet Storm
276656 - ibm cognos_express IBM Cognos Express 9.0 allows attackers to obtain unspecified access to the Tomcat Manager component, and cause a denial of service, by leveraging hardcoded credentials. CWE-255
Credentials Management 		CVE-2010-0557 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
276657 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which al… CWE-189
Numeric Errors 		CVE-2003-1580 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
276658 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an HTTP request in conjunction with a crafte… CWE-79
Cross-site Scripting 		CVE-2003-1581 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
276659 - tor tor Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, uses deprecated identity keys for certain directory authorities, which makes it easier for man-in-the-middle attackers to compromise the anonymi… CWE-200
Information Exposure 		CVE-2010-0383 2010-02-5 16:13 2010-01-26 Show GitHub Exploit DB Packet Storm
276660 - ircd-ratbox ircd-ratbox cache.c in ircd-ratbox before 2.2.9 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a HELP command. NVD-CWE-Other
CVE-2010-0300 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm