Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
186971	6.5	警告	Esri	-	ArcGIS Server に SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4949	2012-11-30 13:41	2012-11-12	Show	GitHub Exploit DB Packet Storm

186972	2.1	注意	SGI	-	Performance Co-Pilot における任意のファイルを上書される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5530	2012-11-30 12:02	2012-11-29	Show	GitHub Exploit DB Packet Storm

186973	5	警告	IBM	-	Tivoli Endpoint Manager for Remote Control Broker におけるサービス運用妨害 (リソース消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-4841	2012-11-30 12:01	2012-11-29	Show	GitHub Exploit DB Packet Storm

186974	9.3	危険	ヒューレット・パッカード	-	HP Integrated Lights-Out 3 および Integrated Lights-Out 4 における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-3271	2012-11-30 12:01	2012-11-19	Show	GitHub Exploit DB Packet Storm

186975	7.8	危険	京セラ株式会社	-	複数の京セラ製携帯端末におけるメール受信時に再起動する問題	CWE-noinfo 情報不足	CVE-2012-5174	2012-11-30 12:01	2012-11-30	Show	GitHub Exploit DB Packet Storm

186976	9.3	危険	シマンテック	-	複数の Symantec 製品に脆弱性	CWE-119 バッファエラー	CVE-2012-4953	2012-11-30 11:52	2012-11-6	Show	GitHub Exploit DB Packet Storm

186977	5	警告	Google	-	Google CityHash におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-310 暗号の問題	CVE-2012-6051	2012-11-29 16:16	2012-11-28	Show	GitHub Exploit DB Packet Storm

186978	5	警告	オラクル	-	Oracle Java SE および OpenJDK におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-310 暗号の問題	CVE-2012-5373	2012-11-29 16:12	2012-11-28	Show	GitHub Exploit DB Packet Storm

186979	5	警告	Rubinius	-	Rubinius におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-310 暗号の問題	CVE-2012-5372	2012-11-29 16:10	2011-11-28	Show	GitHub Exploit DB Packet Storm

186980	5	警告	Ruby-lang.org	-	Ruby におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-310 暗号の問題	CVE-2012-5371	2012-11-29 16:08	2011-11-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
331	4.3	MEDIUM Network	-	-	The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.8 v…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-13873	2025-02-22 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

332	7.2	HIGH Network	-	-	The Mambo Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0 via deserialization of untrusted input via the $data parameter in the fImportMe…	CWE-502 Deserialization of Untrusted Data	CVE-2024-13899	2025-02-22 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

333	-		-	-	Rejected reason: This CVE ID is Rejected because the issue was not a vulnerability. The data field reported is not attacker controlled.	-	CVE-2023-4261	2025-02-22 12:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

334	5.3	MEDIUM Network	-	-	IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 4.5.0 through 4.5.3, 4.6.0 through 4.6.6, 4.7.0 through 4.7.4, and 4.8.0 through 4.8.7 could allow unauthorized data access from a remote d…	CWE-269 Improper Privilege Management	CVE-2024-22341	2025-02-22 10:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

335	-		-	-	Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection.	-	CVE-2025-26794	2025-02-22 10:15	2025-02-21	Show	GitHub Exploit DB Packet Storm

336	3.3	LOW Local	-	-	IBM Security Verify Bridge Directory Sync 1.0.1 through 1.0.12, IBM Security Verify Gateway for Windows Login 1.0.1 through 1.0.10, and IBM Security Verify Gateway for Radius 1.0.1 through 1.0.11 s…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-45674	2025-02-22 09:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

337	-		-	-	dom-expressions is a Fine-Grained Runtime for Performant DOM Rendering. In affected versions the use of javascript's `.replace()` opens up to potential Cross-site Scripting (XSS) vulnerabilities with…	CWE-79 CWE-116 Cross-site Scripting Improper Encoding or Escaping of Output	CVE-2025-27108	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

338	-		-	-	A Cross-Site Request Forgery (CSRF) in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request.	-	CVE-2025-25772	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

339	-		-	-	A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data.	-	CVE-2025-25878	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

340	-		-	-	A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain sensitive data.	-	CVE-2025-25877	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm