Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188331	5	警告	LiteSpeed Technologies	-	LiteSpeed Technologies LiteSpeed Web Server におけるスクリプトのソースコードを読まれる脆弱性	CWE-200 情報漏えい	CVE-2010-2333	2012-09-25 17:38	2010-06-18	Show	GitHub Exploit DB Packet Storm

188332	5	警告	Impact Financials, Inc.	-	iPhone などの Impact PDF Reader におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2332	2012-09-25 17:38	2010-06-18	Show	GitHub Exploit DB Packet Storm

188333	4.3	警告	IBM	-	z/OS 用の IBM WAS の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2325	2012-09-25 17:38	2010-06-18	Show	GitHub Exploit DB Packet Storm

188334	7.5	危険	idevSpot	-	IDevSpot TextAds の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2319	2012-09-25 17:38	2010-06-17	Show	GitHub Exploit DB Packet Storm

188335	7.5	危険	hauntmax	-	Haunted House Directory Listing CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2312	2012-09-25 17:38	2010-06-16	Show	GitHub Exploit DB Packet Storm

188336	5	警告	Motorola Solutions, Inc	-	Motorola SURFBoard cable modem SBV6120E の Web サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2307	2012-09-25 17:38	2010-06-16	Show	GitHub Exploit DB Packet Storm

188337	4.3	警告	IBM	-	IBM Lotus Connections の Mobile コンポーネントにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2010-2280	2012-09-25 17:38	2010-06-15	Show	GitHub Exploit DB Packet Storm

188338	7.6	危険	IBM	-	IBM Lotus Connections の Homepage コンポーネントにおける脆弱性	CWE-DesignError	CVE-2010-2279	2012-09-25 17:38	2010-06-15	Show	GitHub Exploit DB Packet Storm

188339	4	警告	IBM	-	IBM Lotus Connections におけるネットワーク通信の平文を取得される脆弱性	CWE-DesignError	CVE-2010-2278	2012-09-25 17:38	2010-06-15	Show	GitHub Exploit DB Packet Storm

188340	4.3	警告	IBM	-	IBM Lotus Connections におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2277	2012-09-25 17:38	2010-06-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1041	-		-	-	Docker daemon in Brocade SANnav before SANnav 2.3.1b runs without auditing. The vulnerability could allow a remote authenticated attacker to execute various attacks.	-	CVE-2024-2240	2025-02-14 14:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1042	-		-	-	musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8.	-	CVE-2025-26519	2025-02-14 13:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1043	-		-	-	Under certain error conditions at time of SANnav installation or upgrade, the encryption key can be written into and obtained from a Brocade SANnav supportsave. An attacker with privileged access to…	-	CVE-2025-1053	2025-02-14 13:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1044	7.2	HIGH Network	-	-	IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 / IBM UrbanCode Deploy 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.9 could allow a remote privil…	CWE-78 OS Command	CVE-2024-55904	2025-02-14 13:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1045	-		-	-	CalInvocationHandler in Brocade SANnav before 2.3.1b logs sensitive information in clear text. The vulnerability could allow an authenticated, local attacker to view Brocade Fabric OS switch sensi…	-	CVE-2024-10404	2025-02-14 13:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1046	-		-	-	Systems running the Instaclustr fork of Stratio's Cassandra-Lucene-Index plugin versions 4.0-rc1-1.0.0 through 4.0.16-1.0.0 and 4.1.2-1.0.0 through 4.1.8-1.0.0, installed into Apache Cassandra ver…	-	CVE-2025-26511	2025-02-14 09:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1047	-		-	-	A critical information disclosure vulnerability exists in the web-based management interface of GatesAir Maxiva UAXT, VAXT transmitters due to Incorrect Access Control (CWE-284). Unauthenticated atta…	-	CVE-2025-22961	2025-02-14 08:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1048	-		-	-	A session hijacking vulnerability exists in the web-based management interface of GatesAir Maxiva UAXT, VAXT transmitters. Unauthenticated attackers can access exposed log files (/logs/debug/xteLog*)…	-	CVE-2025-22960	2025-02-14 08:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1049	-		-	-	An issue in Docker-proxy v18.09.0 allows attackers to cause a denial of service.	-	CVE-2024-57782	2025-02-14 08:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1050	-		-	-	In Perfex Crm < 3.2.1, an authenticated attacker can send a crafted HTTP POST request to the affected upload_sales_file endpoint. By providing malicious input in the rel_id parameter, combined with i…	-	CVE-2024-56908	2025-02-14 08:15	2025-02-14	Show	GitHub Exploit DB Packet Storm