Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187141 7.5 危険 Pico - PicoPublisher における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5912 2012-11-20 14:55 2012-11-17 Show GitHub Exploit DB Packet Storm
187142 4.3 警告 b2evolution - b2evolution の blogs/blog1.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5911 2012-11-20 14:55 2012-11-17 Show GitHub Exploit DB Packet Storm
187143 6.5 警告 b2evolution - b2evolution の blogs/htsrv/viewfile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5910 2012-11-20 14:53 2012-11-17 Show GitHub Exploit DB Packet Storm
187144 7.5 危険 MyBB Group - MyBB の admin/modules/user/users.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5909 2012-11-20 14:53 2012-11-17 Show GitHub Exploit DB Packet Storm
187145 4.3 警告 MyBB Group - MyBB の admin/modules/user/users.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5908 2012-11-20 14:52 2012-11-17 Show GitHub Exploit DB Packet Storm
187146 5 警告 TomatoCart - TomatoCart の json.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5907 2012-11-20 14:41 2012-11-17 Show GitHub Exploit DB Packet Storm
187147 4.3 警告 More Quick Tools - GreenBrowser におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5906 2012-11-20 14:24 2012-11-17 Show GitHub Exploit DB Packet Storm
187148 4 警告 Elif Keir - KnFTPd におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5905 2012-11-20 14:08 2012-11-17 Show GitHub Exploit DB Packet Storm
187149 6.8 警告 Irfan Skiljan - IrfanView におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5904 2012-11-20 13:56 2012-03-28 Show GitHub Exploit DB Packet Storm
187150 4.3 警告 Simple Machines - Simple Machines Forum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5903 2012-11-20 13:54 2012-11-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 10, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
31 - - - SFTPGo is an open source, event-driven file transfer solution. SFTPGo supports execution of a defined set of commands via SSH. Besides a set of default commands some optional commands can be activate… New CWE-78
OS Command  		CVE-2025-24366 2025-02-8 07:15 2025-02-8 Show GitHub Exploit DB Packet Storm
32 - - - pimcore/admin-ui-classic-bundle provides a Backend UI for Pimcore. In affected versions an error message discloses existing accounts and leads to user enumeration on the target via "Forgot password" … New - CVE-2025-24980 2025-02-8 07:15 2025-02-8 Show GitHub Exploit DB Packet Storm
33 - - - Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a cr… Update - CVE-2025-0451 2025-02-8 07:15 2025-02-5 Show GitHub Exploit DB Packet Storm
34 - - - Use after free in V8 in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Update - CVE-2025-0445 2025-02-8 07:15 2025-02-5 Show GitHub Exploit DB Packet Storm
35 - - - Use after free in Skia in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Update - CVE-2025-0444 2025-02-8 07:15 2025-02-5 Show GitHub Exploit DB Packet Storm
36 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or Directories Accessible to External Parties vulnerability in Apache Doris. Application administrators can rea… Update - CVE-2024-48019 2025-02-8 07:15 2025-02-5 Show GitHub Exploit DB Packet Storm
37 7.5 HIGH
Network 		dell data_domain_operating_system Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potential… Update CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2025-22475 2025-02-8 05:42 2025-02-4 Show GitHub Exploit DB Packet Storm
38 7.8 HIGH
Local 		dell data_domain_operating_system Dell PowerProtect DD versions prior to 8.3.0.0, 7.10.1.50, and 7.13.1.20 contain an improper access control vulnerability. A local malicious user with low privileges could potentially exploit this vu… Update NVD-CWE-Other
CVE-2024-53295 2025-02-8 05:29 2025-02-1 Show GitHub Exploit DB Packet Storm
39 - - - vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Maliciously constructed statements can lead to hash collisions, resulting in cache reuse, which can interfere wit… New CWE-354
 Improper Validation of Integrity Check Value 		CVE-2025-25183 2025-02-8 05:15 2025-02-8 Show GitHub Exploit DB Packet Storm
40 - - - An error when handling authorization related to the import / export interfaces on the RISC Platform prior to the saas-2021-12-29 release can potentially be exploited to access the import / export fun… New - CVE-2021-41528 2025-02-8 05:15 2025-02-8 Show GitHub Exploit DB Packet Storm