Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
187541	7.5	危険	Intelliants	-	Subrion CMS の register/ における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4772	2012-10-24 16:37	2012-10-22	Show	GitHub Exploit DB Packet Storm

187542	4.3	警告	Intelliants	-	Subrion CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4771	2012-10-24 16:36	2012-10-22	Show	GitHub Exploit DB Packet Storm

187543	3.6	注意	OpenFabrics Alliance	-	ibacm における ib_acm デーモンログまたは ibacm.port ファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4518	2012-10-24 16:35	2012-10-22	Show	GitHub Exploit DB Packet Storm

187544	5	警告	OpenFabrics Alliance	-	ibacm におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-4517	2012-10-24 16:34	2012-10-22	Show	GitHub Exploit DB Packet Storm

187545	5.8	警告	OpenFabrics Alliance	-	librdmacm におけるアプリケーションのアドレス解決情報を設定される脆弱性	CWE-Other その他	CVE-2012-4516	2012-10-24 15:52	2012-10-22	Show	GitHub Exploit DB Packet Storm

187546	5.8	警告	libsocialweb	-	libsocialweb における重要な情報を取得される脆弱性	CWE-16 環境設定	CVE-2012-4511	2012-10-24 15:36	2012-10-22	Show	GitHub Exploit DB Packet Storm

187547	7.5	危険	Intelliants	-	Subrion CMS の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5212	2012-10-24 11:39	2012-10-22	Show	GitHub Exploit DB Packet Storm

187548	4.3	警告	Intelliants	-	Subrion CMS の poll モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5211	2012-10-24 11:38	2012-10-22	Show	GitHub Exploit DB Packet Storm

187549	5.8	警告	libsocialweb	-	libsocialweb における重要な情報を取得される脆弱性	CWE-16 環境設定	CVE-2011-4129	2012-10-24 11:37	2012-10-22	Show	GitHub Exploit DB Packet Storm

187550	4.3	警告	phpMyFAQ	-	phpMyFAQ におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4821	2012-10-24 11:34	2010-09-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 5, 2025, 4:56 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
181	-		-	-	JFinalCMS 1.0 is vulnerable to SQL Injection in rc/main/java/com/cms/entity/Content.java. The cause of the vulnerability is that the title parameter is controllable and is concatenated directly into … Update	-	CVE-2024-57665	2025-02-4 05:15	2025-01-30	Show	GitHub Exploit DB Packet Storm

182	5.3	MEDIUM Network	apple	macos	This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.3. Files downloaded from the internet may not have the quarantine flag applied. Update	NVD-CWE-noinfo	CVE-2025-24140	2025-02-4 05:15	2025-01-28	Show	GitHub Exploit DB Packet Storm

183	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: afs: Fix merge preference rule failure condition syzbot reported a lock held when returning to userspace[1]. This is because if … Update	CWE-667 Improper Locking	CVE-2025-21672	2025-02-4 05:04	2025-01-31	Show	GitHub Exploit DB Packet Storm

184	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix bpf_sk_select_reuseport() memory leak As pointed out in the original comment, lookup in sockmap can return a TCP ESTABLI… Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2025-21683	2025-02-4 05:01	2025-01-31	Show	GitHub Exploit DB Packet Storm

185	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: iomap: avoid avoid truncating 64-bit offset to 32 bits on 32-bit kernels, iomap_write_delalloc_scan() was inadvertently using a 3… Update	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2025-21667	2025-02-4 05:00	2025-01-31	Show	GitHub Exploit DB Packet Storm

186	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: vsock: prevent null-ptr-deref in vsock_[has_data\|has_space] Recent reports have shown how we sometimes call vsock__has_data() w… Update	CWE-476 NULL Pointer Dereference	CVE-2025-21666	2025-02-4 04:59	2025-01-31	Show	GitHub Exploit DB Packet Storm

187	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: filemap: avoid truncating 64-bit offset to 32 bits On 32-bit kernels, folio_seek_hole_data() was inadvertently truncating a 64-bi… Update	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2025-21665	2025-02-4 04:57	2025-01-31	Show	GitHub Exploit DB Packet Storm

188	-		-	-	Prolink 4G LTE Mobile Wi-Fi DL-7203E V4.0.0B05 is vulnerable to SQL Injection in in the /reqproc/proc_get endpoint. The vulnerability allows an attacker to manipulate SQL queries by injecting malicio… New	-	CVE-2024-57238	2025-02-4 04:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

189	-		-	-	Prolink 4G LTE Mobile Wi-Fi DL-7203E V4.0.0B05 is vulnerable to Cross Site Scripting (XSS) in the /reqproc/proc_get endpoint. The vulnerability arises because the cmd parameter does not properly sani… New	-	CVE-2024-57237	2025-02-4 04:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

190	-		-	-	Cross-Site Scripting (XSS) vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading to the triggering of the XSS by visiti… New	-	CVE-2024-57004	2025-02-4 04:15	2025-02-4	Show	GitHub Exploit DB Packet Storm