Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187061 6.9 警告 シトリックス・システムズ - Xen および Citrix XenServer の grant table hypercall におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3516 2012-11-27 16:09 2012-09-5 Show GitHub Exploit DB Packet Storm
187062 6.9 警告 シトリックス・システムズ - Xen の Transcendent Memory におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3497 2012-11-27 15:55 2012-09-5 Show GitHub Exploit DB Packet Storm
187063 4.3 警告 アップル - 複数の Apple 製品で使用される WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3695 2012-11-27 14:44 2012-07-25 Show GitHub Exploit DB Packet Storm
187064 4.3 警告 アップル - Apple Safari 6.0 未満におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0678 2012-11-27 14:41 2012-07-25 Show GitHub Exploit DB Packet Storm
187065 9.3 危険 Munin - Munin の munin-cgi-graph における任意のディレクトリにファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3513 2012-11-27 14:10 2012-08-31 Show GitHub Exploit DB Packet Storm
187066 7.2 危険 Munin - Munin における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3512 2012-11-27 14:09 2012-08-31 Show GitHub Exploit DB Packet Storm
187067 9 危険 日立 - 日立の JP1/File Transmission Server/FTP における複数の脆弱性 CWE-noinfo
情報不足 		- 2012-11-26 18:00 2012-11-1 Show GitHub Exploit DB Packet Storm
187068 4.3 警告 Joomla! - Joomla! におけるクリックジャッキング攻撃の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5827 2012-11-26 17:51 2012-11-8 Show GitHub Exploit DB Packet Storm
187069 6.8 警告 Exim Development - Exim の dkim.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5671 2012-11-26 17:49 2012-10-26 Show GitHub Exploit DB Packet Storm
187070 4.3 警告 Ipswitch, Inc. - Ipswitch WhatsUp Gold におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4344 2012-11-26 17:26 2012-08-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
391 - - - Directus is a real-time API and App dashboard for managing SQL database content. In affected versions if there are two overlapping policies for the `update` action that allow access to different fiel… CWE-863
 Incorrect Authorization 		CVE-2025-27089 2025-02-20 02:15 2025-02-20 Show GitHub Exploit DB Packet Storm
392 - - - Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges. CWE-1390
 Weak Authentication 		CVE-2024-52541 2025-02-20 02:15 2025-02-20 Show GitHub Exploit DB Packet Storm
393 8.2 HIGH
Network 		- - IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploi… CWE-611
XXE 		CVE-2023-47160 2025-02-20 02:15 2025-02-20 Show GitHub Exploit DB Packet Storm
394 7.8 HIGH
Local 		microsoft 365_apps
excel
office
office_online_server 		Microsoft Excel Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2025-21387 2025-02-20 01:55 2025-02-12 Show GitHub Exploit DB Packet Storm
395 9.8 CRITICAL
Network 		tenda ac6_firmware Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function. CWE-120
Classic Buffer Overflow 		CVE-2025-25343 2025-02-20 01:41 2025-02-13 Show GitHub Exploit DB Packet Storm
396 5.8 MEDIUM
Network 		- - A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to bypass the configured rules and allow emails that should have been de… CWE-284
Improper Access Control 		CVE-2025-20153 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
397 4.1 MEDIUM
Network 		- - A vulnerability, which was classified as problematic, was found in lmxcms 1.41. Affected is an unknown function of the file db.inc.php of the component Maintenance. The manipulation leads to code inj… CWE-94
CWE-74
Code Injection
Injection 		CVE-2025-1465 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
398 8.0 HIGH
Network 		- - IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated attacker to conduct formula injection. An attacker could execute arbitrary commands on the sys… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-45084 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
399 6.1 MEDIUM
Network 		- - A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack agains… CWE-79
Cross-site Scripting 		CVE-2025-20211 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
400 4.4 MEDIUM
Local 		- - A vulnerability in the debug shell of Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series could allow an authenticated, local attacker to access sensitive information on an affected device. To ex… CWE-200
Information Exposure 		CVE-2025-20158 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm