Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188331 5 警告 LiteSpeed Technologies - LiteSpeed Technologies LiteSpeed Web Server におけるスクリプトのソースコードを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2010-2333 2012-09-25 17:38 2010-06-18 Show GitHub Exploit DB Packet Storm
188332 5 警告 Impact Financials, Inc. - iPhone などの Impact PDF Reader におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2332 2012-09-25 17:38 2010-06-18 Show GitHub Exploit DB Packet Storm
188333 4.3 警告 IBM - z/OS 用の IBM WAS の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2325 2012-09-25 17:38 2010-06-18 Show GitHub Exploit DB Packet Storm
188334 7.5 危険 idevSpot - IDevSpot TextAds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2319 2012-09-25 17:38 2010-06-17 Show GitHub Exploit DB Packet Storm
188335 7.5 危険 hauntmax - Haunted House Directory Listing CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2312 2012-09-25 17:38 2010-06-16 Show GitHub Exploit DB Packet Storm
188336 5 警告 Motorola Solutions, Inc - Motorola SURFBoard cable modem SBV6120E の Web サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2307 2012-09-25 17:38 2010-06-16 Show GitHub Exploit DB Packet Storm
188337 4.3 警告 IBM - IBM Lotus Connections の Mobile コンポーネントにおけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2010-2280 2012-09-25 17:38 2010-06-15 Show GitHub Exploit DB Packet Storm
188338 7.6 危険 IBM - IBM Lotus Connections の Homepage コンポーネントにおける脆弱性 CWE-DesignError
CVE-2010-2279 2012-09-25 17:38 2010-06-15 Show GitHub Exploit DB Packet Storm
188339 4 警告 IBM - IBM Lotus Connections におけるネットワーク通信の平文を取得される脆弱性 CWE-DesignError
CVE-2010-2278 2012-09-25 17:38 2010-06-15 Show GitHub Exploit DB Packet Storm
188340 4.3 警告 IBM - IBM Lotus Connections におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2277 2012-09-25 17:38 2010-06-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
521 5.4 MEDIUM
Network 		- - IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thu… CWE-79
Cross-site Scripting 		CVE-2024-28776 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
522 - - - A buffer overflow vulnerability was discovered in D-Link DSL-3782 v1.01 via the destination, netmask, and gateway parameters. This vulnerability allows attackers to cause a Denial of Service (DoS) vi… - CVE-2025-25896 2025-02-20 01:15 2025-02-19 Show GitHub Exploit DB Packet Storm
523 - - - An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the public_type parameter. This vulnerability allows attackers to execute arbitrary operating system (OS) commands vi… - CVE-2025-25895 2025-02-20 01:15 2025-02-19 Show GitHub Exploit DB Packet Storm
524 - - - An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the samba_wg and samba_nbn parameters. This vulnerability allows attackers to execute arbitrary operating system (OS)… - CVE-2025-25894 2025-02-20 01:15 2025-02-19 Show GitHub Exploit DB Packet Storm
525 - - - An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the inIP, insPort, inePort, exsPort, exePort, and protocol parameters. This vulnerability allows attackers to execute… - CVE-2025-25893 2025-02-20 01:15 2025-02-19 Show GitHub Exploit DB Packet Storm
526 - - - A buffer overflow vulnerability was discovered in D-Link DSL-3782 v1.01 via the sstartip, sendip, dstartip, and dendip parameters. This vulnerability allows attackers to cause a Denial of Service (Do… - CVE-2025-25892 2025-02-20 01:15 2025-02-19 Show GitHub Exploit DB Packet Storm
527 - - - A buffer overflow vulnerability was discovered in D-Link DSL-3782 v1.01, triggered by the destination, netmask and gateway parameters. This vulnerability allows attackers to cause a Denial of Service… - CVE-2025-25891 2025-02-20 01:15 2025-02-19 Show GitHub Exploit DB Packet Storm
528 - - - A vulnerability in the D-Link DIR-859 router with firmware version A3 1.05 and earlier permits unauthorized individuals to bypass the authentication. An attacker can obtain a user name and password b… - CVE-2024-57045 2025-02-20 01:15 2025-02-19 Show GitHub Exploit DB Packet Storm
529 7.8 HIGH
Local 		tungstenautomation power_pdf Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations o… CWE-125
Out-of-bounds Read 		CVE-2024-12549 2025-02-20 00:24 2025-02-12 Show GitHub Exploit DB Packet Storm
530 3.3 LOW
Local 		tungstenautomation power_pdf Tungsten Automation Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installati… CWE-416
 Use After Free 		CVE-2024-12548 2025-02-20 00:24 2025-02-12 Show GitHub Exploit DB Packet Storm