Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
187961	7.5	危険	PostgreSQL.org	-	PostgreSQL JDBC ドライバにおける SQL インジェクション攻撃の脆弱性	CWE-DesignError	CVE-2012-1618	2012-10-9 16:47	2012-10-6	Show	GitHub Exploit DB Packet Storm

187962	5	警告	Cerberus, LLC	-	Cerberus FTP Server のデフォルト設定における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2012-5301	2012-10-9 16:40	2012-06-15	Show	GitHub Exploit DB Packet Storm

187963	4.3	警告	Hans Nilsson	-	Drupal 用 Video Filter モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1634	2012-10-9 16:25	2012-01-11	Show	GitHub Exploit DB Packet Storm

187964	3.5	注意	Lingotek	-	Drupal 用 Lingotek モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1624	2012-10-9 16:19	2012-01-4	Show	GitHub Exploit DB Packet Storm

187965	5	警告	Aidan Lister	-	Drupal 用 Registration Codes モジュールにおける登録制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1623	2012-10-9 16:16	2012-01-4	Show	GitHub Exploit DB Packet Storm

187966	7.5	危険	eZ	-	ez Publish における脆弱性	CWE-noinfo 情報不足	CVE-2012-1565	2012-10-9 16:10	2012-10-6	Show	GitHub Exploit DB Packet Storm

187967	4.3	警告	Yuriy V Semenikhin	-	YVS Image Gallery におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1564	2012-10-9 15:57	2012-10-6	Show	GitHub Exploit DB Packet Storm

187968	5	警告	VMware	-	VMware CapacityIQ におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-5051	2012-10-9 15:54	2012-10-4	Show	GitHub Exploit DB Packet Storm

187969	4.3	警告	VMware	-	VMware vCenter Operations のサーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5050	2012-10-9 15:47	2012-10-4	Show	GitHub Exploit DB Packet Storm

187970	6.9	警告	VMware	-	VMware Movie Decoder のインストーラにおける権限を取得される脆弱性	CWE-Other その他	CVE-2012-4897	2012-10-9 15:40	2012-10-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
891	-		-	-	For a brief summary of Xapi terminology, see: https://xapi-project.github.io/xen-api/overview.html#object-model-overview Xapi contains functionality to backup and restore metadata about Virtual…	-	CVE-2024-31144	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

892	-		-	-	Directory Traversal vulnerability in FeMiner wms v.1.0 allows a remote attacker to obtain sensitive information via the databak.php component.	-	CVE-2025-25997	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

893	-		-	-	SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive information via the parameters date1, date2, id.	-	CVE-2025-25994	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

894	-		-	-	Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component.	-	CVE-2025-25990	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

895	-		-	-	An issue in Orbe ONetView Roeador Onet-1200 Orbe 1680210096 allows a remote attacker to escalate privileges via the servers response from status code 500 to status code 200.	-	CVE-2024-57778	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

896	-		-	-	An issue in the Arcadyan Livebox Fibra PRV3399B_B_LT allows a remote or local attacker to modify the GPON link value without authentication, causing an internet service disruption via the /firstconne…	-	CVE-2024-57725	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

897	-		-	-	CWE-502 Deserialization of Untrusted Data at the eventmesh-meta-raft plugin module in Apache EventMesh master branch without release version on windows\linux\mac os e.g. platforms allows attackers to…	-	CVE-2024-56180	2025-02-19 00:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

898	-		-	-	Logic vulnerability in the mobile application (com.transsion.carlcare) may lead to the risk of account takeover.	-	CVE-2025-1298	2025-02-19 00:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

899	7.5	HIGH Network	tp-link	tl-wr841nd_firmware	A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the 'ip' parameter at /userRpm/WanStaticIpV6CfgRpm.htm. This vulnerability allows attackers to cause a Denial of Service (…	CWE-787 Out-of-bounds Write	CVE-2025-25897	2025-02-19 00:00	2025-02-14	Show	GitHub Exploit DB Packet Storm

900	7.5	HIGH Network	tp-link	tl-wr841nd_firmware	A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the pskSecret parameter at /userRpm/WlanSecurityRpm.htm. This vulnerability allows attackers to cause a Denial of Service …	CWE-787 Out-of-bounds Write	CVE-2025-25898	2025-02-18 23:59	2025-02-14	Show	GitHub Exploit DB Packet Storm