Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
186961	7.5	危険	Google	-	Android 用 QuIC Diagnostics カーネルモードドライバにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-4221	2012-12-3 15:21	2012-11-15	Show	GitHub Exploit DB Packet Storm

186962	7.5	危険	Google	-	Android 用 QuIC Diagnostics カーネルモードドライバにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-4220	2012-12-3 15:21	2012-11-15	Show	GitHub Exploit DB Packet Storm

186963	6.4	警告	Django Software Foundation	-	Django における任意の URL が表示される脆弱性	CWE-20 不適切な入力確認	CVE-2012-4520	2012-11-30 18:16	2012-10-17	Show	GitHub Exploit DB Packet Storm

186964	4.3	警告	ViewVC	-	ViewVC の lib/viewvc.py におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4533	2012-11-30 18:09	2012-10-24	Show	GitHub Exploit DB Packet Storm

186965	5.4	警告	（複数のベンダ）	-	Android OS を搭載した複数の端末におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	-	2012-11-30 17:59	2012-11-14	Show	GitHub Exploit DB Packet Storm

186966	10	危険	Autonomy	-	Autonomy Keyview IDOL ライブラリに複数の脆弱性	-	-	2012-11-30 17:52	2012-11-21	Show	GitHub Exploit DB Packet Storm

186967	1.2	注意	Munin	-	Munin 用 qmailscan プラグインにおける任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2012-2103	2012-11-30 17:50	2012-08-26	Show	GitHub Exploit DB Packet Storm

186968	5	警告	Apache Software Foundation	-	Apache POI におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0213	2012-11-30 15:09	2012-08-7	Show	GitHub Exploit DB Packet Storm

186969	5	警告	日本電気アップルサイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカード VMware 日立レッドハット	-	Sun JRE で使用している Apache Xerces2 Java におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2625	2012-11-30 14:55	2009-08-5	Show	GitHub Exploit DB Packet Storm

186970	4.3	警告	オラクル	-	Oracle OpenSSO における認証の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2012-0079	2012-11-30 14:51	2012-01-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
331	4.3	MEDIUM Network	-	-	The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.8 v…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-13873	2025-02-22 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

332	7.2	HIGH Network	-	-	The Mambo Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0 via deserialization of untrusted input via the $data parameter in the fImportMe…	CWE-502 Deserialization of Untrusted Data	CVE-2024-13899	2025-02-22 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

333	-		-	-	Rejected reason: This CVE ID is Rejected because the issue was not a vulnerability. The data field reported is not attacker controlled.	-	CVE-2023-4261	2025-02-22 12:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

334	5.3	MEDIUM Network	-	-	IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 4.5.0 through 4.5.3, 4.6.0 through 4.6.6, 4.7.0 through 4.7.4, and 4.8.0 through 4.8.7 could allow unauthorized data access from a remote d…	CWE-269 Improper Privilege Management	CVE-2024-22341	2025-02-22 10:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

335	-		-	-	Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection.	-	CVE-2025-26794	2025-02-22 10:15	2025-02-21	Show	GitHub Exploit DB Packet Storm

336	3.3	LOW Local	-	-	IBM Security Verify Bridge Directory Sync 1.0.1 through 1.0.12, IBM Security Verify Gateway for Windows Login 1.0.1 through 1.0.10, and IBM Security Verify Gateway for Radius 1.0.1 through 1.0.11 s…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-45674	2025-02-22 09:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

337	-		-	-	dom-expressions is a Fine-Grained Runtime for Performant DOM Rendering. In affected versions the use of javascript's `.replace()` opens up to potential Cross-site Scripting (XSS) vulnerabilities with…	CWE-79 CWE-116 Cross-site Scripting Improper Encoding or Escaping of Output	CVE-2025-27108	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

338	-		-	-	A Cross-Site Request Forgery (CSRF) in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request.	-	CVE-2025-25772	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

339	-		-	-	A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data.	-	CVE-2025-25878	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

340	-		-	-	A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain sensitive data.	-	CVE-2025-25877	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm