Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188211	7.1	危険	Novell	-	Novell iPrint Client の ienipp.ocx におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3107	2012-09-25 17:38	2010-07-23	Show	GitHub Exploit DB Packet Storm

188212	9.3	危険	Novell	-	Novell iPrint Client の ienipp.ocx ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3106	2012-09-25 17:38	2010-07-23	Show	GitHub Exploit DB Packet Storm

188213	9.3	危険	Novell	-	Novell iPrint Client の PluginGetDriverFile 関数における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3105	2012-09-25 17:38	2010-08-23	Show	GitHub Exploit DB Packet Storm

188214	6.8	警告	The PHP Group	-	PHP の Mysqlnd エクステンションにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3064	2012-09-25 17:38	2010-05-31	Show	GitHub Exploit DB Packet Storm

188215	5	警告	The PHP Group	-	PHP の Mysqlnd エクステンションにおけるヒープベースバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3063	2012-09-25 17:38	2010-05-31	Show	GitHub Exploit DB Packet Storm

188216	5	警告	The PHP Group	-	PHP の Mysqlnd エクステンションにおける重要なメモリを読まれる脆弱性	CWE-200 情報漏えい	CVE-2010-3062	2012-09-25 17:38	2010-05-31	Show	GitHub Exploit DB Packet Storm

188217	5	警告	IBM	-	IBM TSM FastBack のメッセージプロトコル実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-3061	2012-09-25 17:38	2010-08-20	Show	GitHub Exploit DB Packet Storm

188218	5	警告	IBM	-	IBM TSM FastBack のメッセージプロトコル実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-3060	2012-09-25 17:38	2010-08-20	Show	GitHub Exploit DB Packet Storm

188219	7.5	危険	IBM	-	IBM TSM FastBack のメッセージプロトコル実装におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3059	2012-09-25 17:38	2010-08-20	Show	GitHub Exploit DB Packet Storm

188220	7.5	危険	IBM	-	IBM TSM FastBack の Mount サービスにおけるメモリ領域を上書きされる脆弱性	CWE-399 リソース管理の問題	CVE-2010-3058	2012-09-25 17:38	2010-08-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 19, 2025, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
501	8.3	HIGH Network	-	-	A flaw was found in Quarkus REST that allows request parameters to leak between concurrent requests if endpoints use field injection without a CDI scope. This vulnerability allows attackers to manipu…	CWE-488 Exposure of Data Element to Wrong Session	CVE-2025-1247	2025-02-13 23:16	2025-02-13	Show	GitHub Exploit DB Packet Storm

502	-		-	-	In the Linux kernel, the following vulnerability has been resolved: net: sched: Disallow replacing of child qdisc from one parent to another Lion Ackermann was able to create a UAF which can be abu…	-	CVE-2025-21700	2025-02-13 23:16	2025-02-13	Show	GitHub Exploit DB Packet Storm

503	-		-	-	Reflected Cross-Site Scripting (XSS) in Anapi Group's h6web. This security flaw could allow an attacker to inject malicious JavaScript code into a URL. When a user accesses that URL, the injected cod…	CWE-79 Cross-site Scripting	CVE-2025-1271	2025-02-13 22:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

504	-		-	-	Insecure direct object reference (IDOR) vulnerability in Anapi Group's h6web, allows an authenticated attacker to access other users' information by making a POST request and modifying the “pkrelated…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2025-1270	2025-02-13 22:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

505	9.8	CRITICAL Network	-	-	The WP Directorybox Manager plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 2.5. This is due to incorrect authentication in the 'wp_dp_parse_request'…	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2024-13182	2025-02-13 22:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

506	6.1	MEDIUM Network	-	-	The Listivo - Classified Ads WordPress Theme theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the 's' parameter in all versions up to, and including, 2.3.67 due to insufficient…	CWE-79 Cross-site Scripting	CVE-2024-13867	2025-02-13 19:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

507	7.5	HIGH Network	-	-	The JS Help Desk – The Ultimate Help Desk & Support Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.8.8 via the 'jssupportticketdat…	CWE-200 Information Exposure	CVE-2024-13606	2025-02-13 19:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

508	-		-	-	An authenticated user can perform XSS and potentially impersonate another user. This issue affects Apache Atlas versions 2.3.0 and earlier. Users are recommended to upgrade to version 2.4.0, which …	CWE-80 Basic XSS	CVE-2024-46910	2025-02-13 18:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

509	-		-	-	An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.6.5, starting from 17.7 prior to 17.7.4, and starting from 17.8 prior to 17.8.2, which allows an attacker to…	-	CVE-2024-3303	2025-02-13 18:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

510	4.3	MEDIUM Network	-	-	The Read More & Accordion plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the expmDeleteData() function in all versions up to, an…	CWE-862 Missing Authorization	CVE-2024-13639	2025-02-13 18:15	2025-02-13	Show	GitHub Exploit DB Packet Storm