Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187551 4.3 警告 Claws Mail - Claws Mail の procmime.c の strchr 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2012-4507 2012-10-24 11:29 2012-10-22 Show GitHub Exploit DB Packet Storm
187552 4.6 警告 Sitaram Chamarty - gitolite におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-4506 2012-10-24 11:28 2012-10-10 Show GitHub Exploit DB Packet Storm
187553 4.4 警告 Michael Rash. - fwknop の client/fwknop.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4436 2012-10-24 11:07 2012-09-4 Show GitHub Exploit DB Packet Storm
187554 4 警告 Michael Rash. - fwknop におけるサービス運用妨害 (サーバクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4435 2012-10-24 11:07 2012-09-4 Show GitHub Exploit DB Packet Storm
187555 7.5 危険 OpenStack - OpenStack Object Storage (swift) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-4406 2012-10-24 11:07 2012-09-13 Show GitHub Exploit DB Packet Storm
187556 7.5 危険 jCore - jCore の admin/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-4232 2012-10-24 11:07 2012-08-12 Show GitHub Exploit DB Packet Storm
187557 4.3 警告 jCore - jCore の admin/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4231 2012-10-24 11:07 2012-08-12 Show GitHub Exploit DB Packet Storm
187558 5 警告 Django Software Foundation - Django におけるサービス運用妨害 (プロセスまたはスレッド消費) の脆弱性 CWE-119
バッファエラー 		CVE-2012-3444 2012-10-24 10:44 2012-07-30 Show GitHub Exploit DB Packet Storm
187559 4.3 警告 OTRS プロジェクト - OTRS にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4751 2012-10-23 16:09 2012-10-18 Show GitHub Exploit DB Packet Storm
187560 6.4 警告 サン・マイクロシステムズ - Oracle Java SE の Java Runtime Environment (JRE) におけるライブラリの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1726 2012-10-23 15:58 2012-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 14, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
691 8.8 HIGH
Network 		- - The Zox News - Professional WordPress News & Magazine Theme plugin for WordPress is vulnerable to unauthorized data modification. This vulnerability can lead to privilege escalation and denial of ser… New CWE-862
 Missing Authorization 		CVE-2024-13643 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
692 - - - rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a l… Update - CVE-2025-24898 2025-02-11 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
693 9.8 CRITICAL
Network 		- - The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.7. This is due to the plugin not properly validating a user's… New CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2025-0181 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
694 9.8 CRITICAL
Network 		- - The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be update… New CWE-269
 Improper Privilege Management 		CVE-2025-0180 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
695 5.0 MEDIUM
Network 		- - A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the file bfd/libbfd.c of the component ld. The manipulation leads t… New CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-1179 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
696 6.3 MEDIUM
Network 		- - A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected is the function import_add of the file dayrui/Fcms/Control/Admin/Linkage.php. The manipulation leads … New CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2025-1177 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
697 5.0 MEDIUM
Network 		- - A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to h… New CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2025-1176 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
698 - - - A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. Affected by this issue is some unknown functionality of the file addtocart.php. The… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1172 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
699 - - - A vulnerability classified as problematic was found in code-projects Real Estate Property Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /Admin/Customer… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-1171 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
700 - - - NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phish… New CWE-79
Cross-site Scripting 		CVE-2025-1145 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm