Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188401	7.5	危険	imagetraders	-	Iceberg CMS の details.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2016	2012-09-25 17:38	2010-05-24	Show	GitHub Exploit DB Packet Storm

188402	4	警告	マイクロソフト	-	Microsoft Dynamics GP における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-2011	2012-09-25 17:38	2010-05-21	Show	GitHub Exploit DB Packet Storm

188403	3.5	注意	MySQL AB	-	MySQL におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2008	2012-09-25 17:38	2010-06-2	Show	GitHub Exploit DB Packet Storm

188404	6.8	警告	LetoDMS project	-	LetoDMS (前 MyDMS) におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2007	2012-09-25 17:38	2010-05-20	Show	GitHub Exploit DB Packet Storm

188405	6.5	警告	LetoDMS project	-	LetoDMS (前 MyDMS) の op/op.Login.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2006	2012-09-25 17:38	2010-05-20	Show	GitHub Exploit DB Packet Storm

188406	2.6	注意	ninjitsuweb	-	Drupal 用の CiviRegister モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2001	2012-09-25 17:38	2010-05-12	Show	GitHub Exploit DB Packet Storm

188407	6.8	警告	openmairie	-	OpenMairie Opencatalogue の scr/soustab.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1999	2012-09-25 17:38	2010-05-20	Show	GitHub Exploit DB Packet Storm

188408	2.1	注意	kevinhankens	-	Drupal 用の CCK TableField モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1998	2012-09-25 17:38	2010-05-5	Show	GitHub Exploit DB Packet Storm

188409	5	警告	マイクロソフト	-	Microsoft Internet Explorer 6 などにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1991	2012-09-25 17:38	2010-05-20	Show	GitHub Exploit DB Packet Storm

188410	5	警告	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1990	2012-09-25 17:38	2010-05-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
301	9.8	CRITICAL Network	tenda	ac6_firmware	Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function. Update	CWE-120 Classic Buffer Overflow	CVE-2025-25343	2025-02-20 01:41	2025-02-13	Show	GitHub Exploit DB Packet Storm

302	5.8	MEDIUM Network	-	-	A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to bypass the configured rules and allow emails that should have been de… New	CWE-284 Improper Access Control	CVE-2025-20153	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

303	4.1	MEDIUM Network	-	-	A vulnerability, which was classified as problematic, was found in lmxcms 1.41. Affected is an unknown function of the file db.inc.php of the component Maintenance. The manipulation leads to code inj… New	CWE-94 CWE-74 Code Injection Injection	CVE-2025-1465	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

304	8.0	HIGH Network	-	-	IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated attacker to conduct formula injection. An attacker could execute arbitrary commands on the sys… New	CWE-502 Deserialization of Untrusted Data	CVE-2024-45084	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

305	6.5	MEDIUM Network	-	-	IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated user to modify restricted content due to incorrect authorization checks. New	CWE-863 Incorrect Authorization	CVE-2024-45081	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

306	6.1	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack agains… New	CWE-79 Cross-site Scripting	CVE-2025-20211	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

307	4.4	MEDIUM Local	-	-	A vulnerability in the debug shell of Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series could allow an authenticated, local attacker to access sensitive information on an affected device. To ex… New	CWE-200 Information Exposure	CVE-2025-20158	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

308	5.9	MEDIUM Network	-	-	IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 Rich Client uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive… New	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2024-28780	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

309	8.8	HIGH Network	-	-	IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to unrestricted deserialization. This vulnerability allows users to execute arbitrary code, escalate privil… New	CWE-502 Deserialization of Untrusted Data	CVE-2024-28777	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

310	5.4	MEDIUM Network	-	-	IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thu… New	CWE-79 Cross-site Scripting	CVE-2024-28776	2025-02-20 01:15	2025-02-20	Show	GitHub Exploit DB Packet Storm