Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188421	4.3	警告	ヒューレット・パッカード	-	Windows 用の HP Virtual Connect Enterprise Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1969	2012-09-25 17:38	2010-07-12	Show	GitHub Exploit DB Packet Storm

188422	6.8	警告	ヒューレット・パッカード	-	Windows 用の HP Insight Software Installer におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-1968	2012-09-25 17:38	2010-07-12	Show	GitHub Exploit DB Packet Storm

188423	3.6	注意	ヒューレット・パッカード	-	Windows 用の HP Insight Software Installer におけるデータを変更される脆弱性	CWE-noinfo 情報不足	CVE-2010-1967	2012-09-25 17:38	2010-07-12	Show	GitHub Exploit DB Packet Storm

188424	4.6	警告	ヒューレット・パッカード	-	Windows 用の HP Insight Control パワーマネージメントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-1966	2012-09-25 17:38	2010-07-12	Show	GitHub Exploit DB Packet Storm

188425	7.5	危険	ヒューレット・パッカード	-	Windows 用の HP Insight Orchestration におけるデータを変更される脆弱性	CWE-noinfo 情報不足	CVE-2010-1965	2012-09-25 17:38	2010-07-1	Show	GitHub Exploit DB Packet Storm

188426	7.5	危険	ヒューレット・パッカード	-	HP OV NNM の ovwebsnmpsrv.exe におけるバッファオーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2010-1964	2012-09-25 17:38	2010-06-17	Show	GitHub Exploit DB Packet Storm

188427	4.3	警告	ヒューレット・パッカード	-	HP ServiceCenter におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1963	2012-09-25 17:38	2010-06-2	Show	GitHub Exploit DB Packet Storm

188428	10	危険	ヒューレット・パッカード	-	HP StorageWorks Storage Mirroring における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1962	2012-09-25 17:38	2010-06-2	Show	GitHub Exploit DB Packet Storm

188429	10	危険	ヒューレット・パッカード	-	HP OV NNM の ovwebsnmpsrv.exe の ovutil.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1961	2012-09-25 17:38	2010-06-8	Show	GitHub Exploit DB Packet Storm

188430	10	危険	ヒューレット・パッカード	-	HP OV NNM の ovwebsnmpsrv.exe のエラー処理機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1960	2012-09-25 17:38	2010-06-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
281	7.6	HIGH Adjacent	-	-	A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer usin… New	CWE-787 Out-of-bounds Write	CVE-2025-0624	2025-02-20 04:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

282	-		-	-	The OWL Carousel Slider WordPress plugin through 2.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used ag… Update	-	CVE-2024-13627	2025-02-20 04:15	2025-02-17	Show	GitHub Exploit DB Packet Storm

283	-		-	-	The Track Logins WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks Update	-	CVE-2024-13608	2025-02-20 04:15	2025-02-17	Show	GitHub Exploit DB Packet Storm

284	8.8	HIGH Network	-	-	A command injection flaw was found in the text editor Emacs. It could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by … Update	-	CVE-2025-1244	2025-02-20 04:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

285	6.5	MEDIUM Network	progress	telerik_document_processing_libraries	In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205), using .NET Standard 2.0, the contents of a file at an arbitrary path can be exported to RTF. Update	CWE-552 Files or Directories Accessible to External Parties	CVE-2024-11629	2025-02-20 04:09	2025-02-13	Show	GitHub Exploit DB Packet Storm

286	5.4	MEDIUM Network	anisha	wazifa_system	A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0. Affected is the function searchuser of the file /search_resualts.php. The manipulation of the argument fir… Update	CWE-79 Cross-site Scripting	CVE-2025-1209	2025-02-20 04:04	2025-02-13	Show	GitHub Exploit DB Packet Storm

287	8.8	HIGH Network	anisha	wazifa_system	A vulnerability classified as critical was found in code-projects Wazifa System 1.0. Affected by this vulnerability is an unknown functionality of the file /controllers/control.php. The manipulation … Update	CWE-89 SQL Injection	CVE-2025-1210	2025-02-20 04:03	2025-02-13	Show	GitHub Exploit DB Packet Storm

288	9.8	CRITICAL Network	dlink	dir-853_firmware	D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetDynamicDNSSettings module. Update	CWE-787 Out-of-bounds Write	CVE-2025-25744	2025-02-20 04:02	2025-02-13	Show	GitHub Exploit DB Packet Storm

289	7.2	HIGH Network	dlink	dir-853_firmware	D-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the SetVirtualServerSettings module. Update	CWE-77 Command Injection	CVE-2025-25743	2025-02-20 04:02	2025-02-13	Show	GitHub Exploit DB Packet Storm

290	9.8	CRITICAL Network	dlink	dir-853_firmware	D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the AccountPassword parameter in the SetSysEmailSettings module. Update	CWE-787 Out-of-bounds Write	CVE-2025-25742	2025-02-20 04:02	2025-02-13	Show	GitHub Exploit DB Packet Storm