Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
186831 2.6 注意 コルネ株式会社 - Welcart におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5178 2012-12-14 12:02 2012-12-14 Show GitHub Exploit DB Packet Storm
186832 5 警告 コルネ株式会社 - Welcart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5177 2012-12-14 12:02 2012-12-14 Show GitHub Exploit DB Packet Storm
186833 4.3 警告 Zoho Corporation - ManageEngine AssetExplorer にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5956 2012-12-13 18:21 2012-12-7 Show GitHub Exploit DB Packet Storm
186834 5 警告 Layton Technology - Layton Helpbox におけるログインページの平文の認証情報を漏えいする脆弱性 CWE-310
暗号の問題 		CVE-2012-4977 2012-12-13 15:30 2012-12-12 Show GitHub Exploit DB Packet Storm
186835 5 警告 Layton Technology - Layton Helpbox における ODBC データベースの認証情報を漏えいする脆弱性 CWE-200
情報漏えい 		CVE-2012-4976 2012-12-13 15:29 2012-12-12 Show GitHub Exploit DB Packet Storm
186836 4 警告 Layton Technology - Layton Helpbox における任意のサポートチケットのデータを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4975 2012-12-13 15:26 2012-12-12 Show GitHub Exploit DB Packet Storm
186837 6.5 警告 Layton Technology - Layton Helpbox における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4974 2012-12-13 15:25 2012-12-12 Show GitHub Exploit DB Packet Storm
186838 4.3 警告 Layton Technology - Layton Helpbox におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4972 2012-12-13 15:25 2012-12-12 Show GitHub Exploit DB Packet Storm
186839 9.4 危険 Layton Technology - Layton Helpbox における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-4971 2012-12-13 15:23 2012-12-12 Show GitHub Exploit DB Packet Storm
186840 10 危険 Google - Google Chrome におけるサービス運用妨害 (スタックメモリ破損) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5144 2012-12-13 15:21 2012-12-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191 - - - Nagios XI 2024R1.2.2 is susceptible to a stored Cross-Site Scripting (XSS) vulnerability in the Tools page. This flaw allows an attacker to inject malicious scripts into the Tools interface, which ar… - CVE-2024-54958 2025-02-22 07:15 2025-02-21 Show GitHub Exploit DB Packet Storm
192 - - - PHPJabbers Cinema Booking System v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on La… - CVE-2023-51333 2025-02-22 07:15 2025-02-21 Show GitHub Exploit DB Packet Storm
193 - - - Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the apcli_wps_gen_pincode function in mtkwifi.lua. - CVE-2025-25605 2025-02-22 06:15 2025-02-22 Show GitHub Exploit DB Packet Storm
194 - - - Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable function in mtkwifi.lua. - CVE-2025-25604 2025-02-22 06:15 2025-02-22 Show GitHub Exploit DB Packet Storm
195 - - - SQL Injection vulnerability in PbootCMS 1.4.1 in parsing if statements in templates, resulting in a malicious user's ability to contaminate template content by searching for page contamination URLs, … - CVE-2020-19248 2025-02-22 06:15 2025-02-22 Show GitHub Exploit DB Packet Storm
196 - - - Tenda AC8 V16.03.34.06 is vulnerable to Buffer Overflow in the get_parentControl_list_Info function. - CVE-2025-25510 2025-02-22 06:15 2025-02-22 Show GitHub Exploit DB Packet Storm
197 - - - There is a RCE vulnerability in Tenda AC6 15.03.05.16_multi. In the formexeCommand function, the parameter cmdinput will cause remote command execution. - CVE-2025-25507 2025-02-22 06:15 2025-02-22 Show GitHub Exploit DB Packet Storm
198 - - - Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the sub_452A4 function. - CVE-2025-25505 2025-02-22 06:15 2025-02-22 Show GitHub Exploit DB Packet Storm
199 - - - A memory leak has been identified in the parseSWF_SOUNDINFO function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. - CVE-2025-26305 2025-02-22 06:15 2025-02-21 Show GitHub Exploit DB Packet Storm
200 - - - A memory leak has been identified in the parseSWF_EXPORTASSETS function in util/parser.c of libming v0.4.8. - CVE-2025-26304 2025-02-22 06:15 2025-02-21 Show GitHub Exploit DB Packet Storm