Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
188081 6 警告 Fedora Project - 389 Directory Server における ACL の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4450 2012-10-2 16:19 2012-04-16 Show GitHub Exploit DB Packet Storm
188082 6.8 警告 WordPress.org - WordPress の wp-admin/index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-4448 2012-10-2 16:16 2012-09-28 Show GitHub Exploit DB Packet Storm
188083 5 警告 エマソン - Emerson DeltaV におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-3035 2012-10-2 16:06 2012-09-28 Show GitHub Exploit DB Packet Storm
188084 2.1 注意 IBM - IBM AIX および VIOS の fuser における任意のプロセスを停止される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4833 2012-10-2 16:05 2012-09-18 Show GitHub Exploit DB Packet Storm
188085 5 警告 IBM - IBM WebSphere Commerce におけるユーザの個人情報を取得される脆弱性 CWE-noinfo
情報不足
CVE-2012-4830 2012-10-2 16:00 2012-10-1 Show GitHub Exploit DB Packet Storm
188086 5 警告 IBM - IBM Rational Business Developer における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2012-3319 2012-10-2 15:59 2012-10-1 Show GitHub Exploit DB Packet Storm
188087 6.8 警告 IBM - IBM Rational Team Concert におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-0748 2012-10-2 15:56 2012-10-1 Show GitHub Exploit DB Packet Storm
188088 4.3 警告 Smarty - Smarty の SmartyException クラスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4437 2012-10-2 15:55 2012-10-1 Show GitHub Exploit DB Packet Storm
188089 7.5 危険 OptiPNG - OptiPNG の opngreduc.c における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2012-4432 2012-10-2 15:54 2012-09-16 Show GitHub Exploit DB Packet Storm
188090 6.8 警告 GNOME Project - GNOME の gnome-shell プラグインにおける任意の拡張機能のダウンロードを強制される脆弱性 CWE-94
コード・インジェクション
CVE-2012-4427 2012-10-2 15:42 2012-10-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311 - - - Improper handling of input variables lead to multiple path traversal vulnerabilities in the Admiror Gallery extension for Joomla in version branch 4.x. Update - CVE-2025-22205 2025-02-6 03:15 2025-02-4 Show GitHub Exploit DB Packet Storm
312 8.8 HIGH
Network
wp-royal-themes royal_core The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royal_restore_backup' function i… Update CWE-862
 Missing Authorization
CVE-2024-12129 2025-02-6 02:51 2025-01-30 Show GitHub Exploit DB Packet Storm
313 4.3 MEDIUM
Network
- - A vulnerability in Simple Network Management Protocol (SNMP) polling for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, r… New CWE-200
Information Exposure
CVE-2025-20207 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
314 4.8 MEDIUM
Network
- - A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use… New CWE-79
Cross-site Scripting
CVE-2025-20205 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
315 4.8 MEDIUM
Network
- - A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use… New CWE-79
Cross-site Scripting
CVE-2025-20204 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
316 3.4 LOW
Local
- - A vulnerability in the implementation of the remote access functionality of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance c… New CWE-250
 Execution with Unnecessary Privileges
CVE-2025-20185 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
317 6.5 MEDIUM
Network
- - A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Web Appliance could allow an authenticated, remote attacker to perform … New CWE-20
 Improper Input Validation 
CVE-2025-20184 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
318 5.8 MEDIUM
Network
- - A vulnerability in a policy-based Cisco Application Visibility and Control (AVC) implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacke… New CWE-20
 Improper Input Validation 
CVE-2025-20183 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
319 4.8 MEDIUM
Network
- - A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Email Gateway could allow an authenticated, remote attacker to conduc… New CWE-79
Cross-site Scripting
CVE-2025-20180 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
320 6.1 MEDIUM
Network
- - A vulnerability in the web-based management interface of Cisco Expressway Series could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the i… New CWE-79
Cross-site Scripting
CVE-2025-20179 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm