Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
186961 7.5 危険 Google - Android 用 QuIC Diagnostics カーネルモードドライバにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-4221 2012-12-3 15:21 2012-11-15 Show GitHub Exploit DB Packet Storm
186962 7.5 危険 Google - Android 用 QuIC Diagnostics カーネルモードドライバにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-4220 2012-12-3 15:21 2012-11-15 Show GitHub Exploit DB Packet Storm
186963 6.4 警告 Django Software Foundation - Django における任意の URL が表示される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4520 2012-11-30 18:16 2012-10-17 Show GitHub Exploit DB Packet Storm
186964 4.3 警告 ViewVC - ViewVC の lib/viewvc.py におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4533 2012-11-30 18:09 2012-10-24 Show GitHub Exploit DB Packet Storm
186965 5.4 警告 (複数のベンダ) - Android OS を搭載した複数の端末におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2012-11-30 17:59 2012-11-14 Show GitHub Exploit DB Packet Storm
186966 10 危険 Autonomy - Autonomy Keyview IDOL ライブラリに複数の脆弱性 - - 2012-11-30 17:52 2012-11-21 Show GitHub Exploit DB Packet Storm
186967 1.2 注意 Munin - Munin 用 qmailscan プラグインにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2012-2103 2012-11-30 17:50 2012-08-26 Show GitHub Exploit DB Packet Storm
186968 5 警告 Apache Software Foundation - Apache POI におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0213 2012-11-30 15:09 2012-08-7 Show GitHub Exploit DB Packet Storm
186969 5 警告 日本電気
アップル
サイバートラスト株式会社
サン・マイクロシステムズ
ヒューレット・パッカード
VMware
日立
レッドハット		 - Sun JRE で使用している Apache Xerces2 Java におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2625 2012-11-30 14:55 2009-08-5 Show GitHub Exploit DB Packet Storm
186970 4.3 警告 オラクル - Oracle OpenSSO における認証の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0079 2012-11-30 14:51 2012-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
31 - - - A vulnerability was found in dayrui XunRuiCMS up to 4.6.4. It has been declared as critical. This vulnerability affects unknown code of the file /Control/Api/Api.php. The manipulation of the argument… New CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2025-1186 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
32 - - - A vulnerability was found in pihome-shc PiHome 2.0. It has been classified as critical. This affects an unknown part of the file /ajax.php?Ajax=GetModal_Sensor_Graph. The manipulation leads to sql in… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1185 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
33 - - - The WP Booking Calendar plugin for WordPress is vulnerable to Unauthenticated Post-Confirmation Booking Manipulation in all versions up to, and including, 10.10. This is due to the plugin not properl… New CWE-285
Improper Authorization 		CVE-2024-13821 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
34 - - - The WP Ghost (Hide My WP Ghost) – Security & Firewall plugin for WordPress is vulnerable to Login Page Dislcosure in all versions up to, and including, 5.3.02. This is due to the plugin not properly … New CWE-693
 Protection Mechanism Failure 		CVE-2024-13794 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
35 - - - Cross-site scripting vulnerability exists in acmailer CGI ver.4.0.5 and earlier. An arbitrary script may be executed on the web browser of the user who accessed the management page of the affected pr… New CWE-79
Cross-site Scripting 		CVE-2023-49780 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
36 - - - A vulnerability was found in pihome-shc PiHome 1.77 and classified as critical. Affected by this issue is some unknown functionality of the file /ajax.php?Ajax=GetModal_MQTTEdit. The manipulation of … New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1184 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
37 - - - A vulnerability has been found in CodeZips Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /dashboard/admin/more-userprofi… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1183 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
38 - - - A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac OS could allow an authenticated, local attacker to corrupt the content of any file in the filesystem. … New CWE-59
Link Following 		CVE-2020-3432 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
39 - - - The WPGateway Plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.5. This allows unauthenticated attackers to create arbitrary malicious administrator accou… New CWE-290
 Authentication Bypass by Spoofing 		CVE-2022-3180 2025-02-13 00:15 2025-02-12 Show GitHub Exploit DB Packet Storm
40 - - - A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbit… Update - CVE-2024-54909 2025-02-13 00:15 2025-02-7 Show GitHub Exploit DB Packet Storm