Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187061 6.9 警告 シトリックス・システムズ - Xen および Citrix XenServer の grant table hypercall におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3516 2012-11-27 16:09 2012-09-5 Show GitHub Exploit DB Packet Storm
187062 6.9 警告 シトリックス・システムズ - Xen の Transcendent Memory におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3497 2012-11-27 15:55 2012-09-5 Show GitHub Exploit DB Packet Storm
187063 4.3 警告 アップル - 複数の Apple 製品で使用される WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3695 2012-11-27 14:44 2012-07-25 Show GitHub Exploit DB Packet Storm
187064 4.3 警告 アップル - Apple Safari 6.0 未満におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0678 2012-11-27 14:41 2012-07-25 Show GitHub Exploit DB Packet Storm
187065 9.3 危険 Munin - Munin の munin-cgi-graph における任意のディレクトリにファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3513 2012-11-27 14:10 2012-08-31 Show GitHub Exploit DB Packet Storm
187066 7.2 危険 Munin - Munin における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3512 2012-11-27 14:09 2012-08-31 Show GitHub Exploit DB Packet Storm
187067 9 危険 日立 - 日立の JP1/File Transmission Server/FTP における複数の脆弱性 CWE-noinfo
情報不足 		- 2012-11-26 18:00 2012-11-1 Show GitHub Exploit DB Packet Storm
187068 4.3 警告 Joomla! - Joomla! におけるクリックジャッキング攻撃の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5827 2012-11-26 17:51 2012-11-8 Show GitHub Exploit DB Packet Storm
187069 6.8 警告 Exim Development - Exim の dkim.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5671 2012-11-26 17:49 2012-10-26 Show GitHub Exploit DB Packet Storm
187070 4.3 警告 Ipswitch, Inc. - Ipswitch WhatsUp Gold におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4344 2012-11-26 17:26 2012-08-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 14, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
241 3.5 LOW
Network 		- - A vulnerability was found in code-projects Wazifa System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /Profile.php. The manipulation of the argument p… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-1208 2025-02-13 01:15 2025-02-13 Show GitHub Exploit DB Packet Storm
242 3.1 LOW
Adjacent 		- - A vulnerability was found in phjounin TFTPD64 4.64. It has been declared as problematic. This vulnerability affects unknown code of the component DNS Handler. The manipulation leads to denial of serv… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2025-1207 2025-02-13 01:15 2025-02-13 Show GitHub Exploit DB Packet Storm
243 - - - In Progress® Telerik® Report Server, versions prior to 2025 Q1 (11.0.25.211) when using the older .NET Framework implementation, communication of non-sensitive information between the service agent p… New CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2025-0556 2025-02-13 01:15 2025-02-13 Show GitHub Exploit DB Packet Storm
244 - - - Improper Authorization in GitLab CE/EE affecting all versions from 17.7 prior to 17.7.4, 17.8 prior to 17.8.2 allow users with limited permissions to perform unauthorized actions on critical project … New CWE-863
 Incorrect Authorization 		CVE-2025-0516 2025-02-13 01:15 2025-02-13 Show GitHub Exploit DB Packet Storm
245 - - - In Progress® Telerik® UI for WinForms, versions prior to 2025 Q1 (2025.1.211), using the improper limitation of a target path can lead to decompressing an archive's content into a restricted director… New CWE-22
Path Traversal 		CVE-2025-0332 2025-02-13 01:15 2025-02-13 Show GitHub Exploit DB Packet Storm
246 - - - An external service interaction vulnerability in GitLab EE affecting all versions from 15.11 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2 allows an attacker to send requests from t… New CWE-441
Confused Deputy 		CVE-2024-9870 2025-02-13 01:15 2025-02-13 Show GitHub Exploit DB Packet Storm
247 - - - In Progress® Telerik® KendoReact versions v3.5.0 through v9.4.0, an attacker can introduce or modify properties within the global prototype chain which can result in denial of service or command inje… New CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2024-12629 2025-02-13 01:15 2025-02-13 Show GitHub Exploit DB Packet Storm
248 - - - In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205), unzipping an archive can lead to arbitrary file system access. New CWE-22
Path Traversal 		CVE-2024-11343 2025-02-13 01:15 2025-02-13 Show GitHub Exploit DB Packet Storm
249 - - - An issue in Anyscale Inc Ray between v.2.9.3 and v.2.40.0 allows a remote attacker to execute arbitrary code via a crafted script. New - CVE-2024-57000 2025-02-13 01:15 2025-02-12 Show GitHub Exploit DB Packet Storm
250 - - - An issue in the SharedConfig class of Telegram Android APK v.11.7.0 allows a physically proximate attacker to bypass authentication and escalate privileges by manipulating the return value of the che… New - CVE-2024-54916 2025-02-13 01:15 2025-02-12 Show GitHub Exploit DB Packet Storm