Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189001 9.3 危険 Matroska.org - xine-lib の Matroska demuxer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1161 2012-09-25 16:59 2008-02-4 Show GitHub Exploit DB Packet Storm
189002 6.3 警告 ネットギア
marvell		 - Netgear WN802T Wi-Fi アクセスポイントの Marvell ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1144 2012-09-25 16:59 2008-09-5 Show GitHub Exploit DB Packet Storm
189003 7.5 危険 Mambo Foundation
Joomla!		 - Mambo および Joomla! 用の Garys Cookbook における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1137 2012-09-25 16:59 2008-03-4 Show GitHub Exploit DB Packet Storm
189004 5 警告 omegasoft - OMEGA INSEL における有効なユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2008-1135 2012-09-25 16:59 2008-03-4 Show GitHub Exploit DB Packet Storm
189005 6.4 警告 omegasoft - OMEGA INSEL における任意のユーザとしてログインされる脆弱性 CWE-287
不適切な認証 		CVE-2008-1134 2012-09-25 16:59 2008-03-4 Show GitHub Exploit DB Packet Storm
189006 4.7 警告 net activity viewer - Net Activity Viewer の src/mainwindow.c における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1132 2012-09-25 16:59 2008-03-3 Show GitHub Exploit DB Packet Storm
189007 6.6 警告 IBM - IBM WebSphere MQ におけるキューマネージャへのアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-1130 2012-09-25 16:59 2008-03-3 Show GitHub Exploit DB Packet Storm
189008 9.3 危険 ICQ - Mirabilis ICQ 用の埋め込み型 Internet Explorer におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-1120 2012-09-25 16:59 2008-03-3 Show GitHub Exploit DB Packet Storm
189009 7.5 危険 Netopia - Windows および Mac OS X 用の Timbuktu Pro におけるログエントリを生成される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1118 2012-09-25 16:59 2008-03-14 Show GitHub Exploit DB Packet Storm
189010 10 危険 Netopia - Windows および Mac OS X 用の Timbuktu Pro におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1117 2012-09-25 16:59 2008-03-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
361 - - - WeGIA is a web manager for charitable institutions. A SQL Injection vulnerability was identified in the /html/funcionario/dependente_listar_um.php endpoint, specifically in the id_dependente paramete… New - CVE-2025-22140 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
362 - - - WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the configuracao_geral.php endpoint of the WeGIA application. This vulnerabi… New - CVE-2025-22139 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
363 - - - Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-843
Type Confusion 		CVE-2025-0291 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
364 - - - SourceCodester Computer Laboratory Management System 1.0 is vulnerable to Incorrect Access Control. via /php-lms/admin/?page=user/list. New - CVE-2024-54818 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
365 - - - Command Injection in Minidlna version v1.3.3 and before allows an attacker to execute arbitrary OS commands via a specially crafted minidlna.conf configuration file. New - CVE-2024-51442 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
366 - - - An issue in the snxpcamd.sys component of SUNIX Multi I/O Card v10.1.0.0 allows attackers to perform arbitrary read and write actions via supplying crafted IOCTL requests. New - CVE-2024-55411 2025-01-9 05:15 2025-01-8 Show GitHub Exploit DB Packet Storm
367 - - - A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the APP_KEY to achieve remote command execution on the server by manipulating the laravel_session cookie, exploi… Update - CVE-2024-55556 2025-01-9 05:15 2025-01-8 Show GitHub Exploit DB Packet Storm
368 - - - JATOS 3.9.4 contains a denial-of-service (DoS) vulnerability in the authentication system, where an attacker can prevent legitimate users from accessing their accounts by repeatedly sending multiple … Update - CVE-2024-55008 2025-01-9 05:15 2025-01-8 Show GitHub Exploit DB Packet Storm
369 - - - composio >=0.5.40 is vulnerable to Command Execution in composio_openai, composio_claude, and composio_julep via the handle_tool_calls function. New - CVE-2024-53526 2025-01-9 04:15 2025-01-9 Show GitHub Exploit DB Packet Storm
370 - - - A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been rated as critical. Affected by this issue is some unknown functionality of the file /opt/MicroWorld/var/ of the co… New CWE-266
CWE-276
 Incorrect Privilege Assignment
Incorrect Default Permissions  		CVE-2024-13188 2025-01-9 04:15 2025-01-9 Show GitHub Exploit DB Packet Storm