Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
186891 5 警告 シマンテック - Symantec Messaging Gateway におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-4347 2012-12-6 16:24 2012-12-5 Show GitHub Exploit DB Packet Storm
186892 2.1 注意 IBM - IBM Rational Developer for System z の Host Connect エミュレータにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-4862 2012-12-6 16:24 2012-11-26 Show GitHub Exploit DB Packet Storm
186893 6.9 警告 IBM - IBM WebSphere Message Broker における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3317 2012-12-6 16:23 2012-11-29 Show GitHub Exploit DB Packet Storm
186894 10 危険 freeFTPd - freeFTPd の freeFTPd.exe における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-6067 2012-12-6 15:45 2012-12-4 Show GitHub Exploit DB Packet Storm
186895 9.3 危険 freeSSHd - freeSSHd の freeSSHd.exe における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-6066 2012-12-6 15:44 2012-12-4 Show GitHub Exploit DB Packet Storm
186896 9.3 危険 SSH コミュニケーションズ・セキュリティ - SSH Tectia Server の SSH USERAUTH CHANGE REQUEST 機能における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-5975 2012-12-6 15:33 2012-12-4 Show GitHub Exploit DB Packet Storm
186897 4.3 警告 KENT-WEB - KENT-WEB 製 ACCESS REPORT におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5176 2012-12-6 12:00 2012-12-6 Show GitHub Exploit DB Packet Storm
186898 5 警告 KENT-WEB - KENT-WEB 製 ACCESS REPORT におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5175 2012-12-6 12:00 2012-12-6 Show GitHub Exploit DB Packet Storm
186899 4.6 警告 Daniel Honrade - Drupal 用 OM Maximenu モジュールにおける任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6065 2012-12-5 17:47 2012-11-7 Show GitHub Exploit DB Packet Storm
186900 3.5 注意 CMS Made Simple - CMS Made Simple の lib/filemanager/imagemanager/images.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-6064 2012-12-5 17:46 2012-10-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 8.8 HIGH
Network 		- - A vulnerability classified as critical was found in D-Link DAP-1320 1.00. Affected by this vulnerability is the function set_ws_action of the file /dws/api/. The manipulation leads to heap-based buff… New CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2025-1538 2025-02-22 00:15 2025-02-22 Show GitHub Exploit DB Packet Storm
172 6.3 MEDIUM
Network 		- - A vulnerability was found in Harpia DiagSystem 12. It has been rated as critical. This issue affects some unknown processing of the file /diagsystem/PACS/atualatendimento_jpeg.php. The manipulation o… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1537 2025-02-22 00:15 2025-02-22 Show GitHub Exploit DB Packet Storm
173 7.3 HIGH
Network 		- - A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208. It has been declared as critical. This vulnerability affects unknown code of the file /vpn/vpn_template_style.p… New CWE-78
CWE-77
OS Command 
Command Injection 		CVE-2025-1536 2025-02-22 00:15 2025-02-22 Show GitHub Exploit DB Packet Storm
174 - - - There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(), and rehash() methods of absl::{flat,node}hash{set,map} did not impose an upper bound on their size arg… New - CVE-2025-0838 2025-02-22 00:15 2025-02-22 Show GitHub Exploit DB Packet Storm
175 - - - Cross Site Scripting vulnerabilities in Xunruicms v.4.6.3 and before allows a remote attacker to escalate privileges via a crafted script. New - CVE-2025-25957 2025-02-22 00:15 2025-02-21 Show GitHub Exploit DB Packet Storm
176 - - - A memory leak has been identified in the parseSWF_IMPORTASSETS2 function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. New - CVE-2025-26307 2025-02-22 00:15 2025-02-21 Show GitHub Exploit DB Packet Storm
177 5.4 MEDIUM
Network 		undsgn uncode The Uncode theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘mle-description’ parameter in all versions up to, and including, 2.9.1.6 due to insufficient input sanitization an… CWE-79
Cross-site Scripting 		CVE-2024-13667 2025-02-21 23:23 2025-02-18 Show GitHub Exploit DB Packet Storm
178 6.5 MEDIUM
Network 		undsgn uncode The Uncode theme for WordPress is vulnerable to arbitrary file read due to insufficient input validation in the 'uncode_recordMedia' function in all versions up to, and including, 2.9.1.6. This makes… NVD-CWE-noinfo
CVE-2024-13691 2025-02-21 23:22 2025-02-18 Show GitHub Exploit DB Packet Storm
179 7.5 HIGH
Network 		undsgn uncode The Uncode theme for WordPress is vulnerable to arbitrary file read due to insufficient input validation in the 'uncode_admin_get_oembed' function in all versions up to, and including, 2.9.1.6. This … NVD-CWE-noinfo
CVE-2024-13681 2025-02-21 23:22 2025-02-18 Show GitHub Exploit DB Packet Storm
180 6.4 MEDIUM
Network 		- - The SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.5.10 due to insufficient input sanitization and output e… CWE-79
Cross-site Scripting 		CVE-2024-10222 2025-02-21 23:15 2025-02-21 Show GitHub Exploit DB Packet Storm