Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189011 5 警告 LIGHTTPD - lighttpd の mod_cgi における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-1111 2012-09-25 16:59 2008-03-4 Show GitHub Exploit DB Packet Storm
189012 7.5 危険 mamboportal.com - Mambo 用の simpleboard Stable コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1077 2012-09-25 16:59 2008-02-28 Show GitHub Exploit DB Packet Storm
189013 4.3 警告 interspire - Interspire Shopping Cart の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1076 2012-09-25 16:59 2008-02-28 Show GitHub Exploit DB Packet Storm
189014 4.3 警告 David Ian Bennett - Maian Cart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1075 2012-09-25 16:59 2008-02-28 Show GitHub Exploit DB Packet Storm
189015 5 警告 intervideo - InterVideo WinDVD Media Center などにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1062 2012-09-25 16:59 2008-02-28 Show GitHub Exploit DB Packet Storm
189016 7.8 危険 OpenBSD - OpenBSD の netinet/tcp_subr.c の tcp_respond 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2008-1058 2012-09-25 16:59 2008-02-22 Show GitHub Exploit DB Packet Storm
189017 7.8 危険 OpenBSD - OpenBSD の netinet6/ip6_input.c の ip6_check_rh0hdr 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2008-1057 2012-09-25 16:59 2008-02-25 Show GitHub Exploit DB Packet Storm
189018 7.5 危険 Netwin Ltd - NetWin SurgeMail および WebMail の webmail.exe におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-1055 2012-09-25 16:59 2008-02-27 Show GitHub Exploit DB Packet Storm
189019 6.4 警告 Netwin Ltd - NetWin SurgeMail の _lib_spawn_user_getpid 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1054 2012-09-25 16:59 2008-02-27 Show GitHub Exploit DB Packet Storm
189020 6.4 警告 Netwin Ltd - NetWin SurgeFTP の管理 Web インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2008-1052 2012-09-25 16:59 2008-02-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 12, 2025, 4:59 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
421 - - - The <redacted>.so library, which is used by <redacted>, is vulnerable to a buffer overflow in the code that handles the deletion of certificates. This buffer overflow can be triggered by providing a … New - CVE-2024-43661 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
422 - - - The CGI script <redacted>.sh can be used to download any file on the filesystem. This issue affects Iocharger firmware for AC model chargers beforeversion 24120701. Likelihood: High, but credential… New - CVE-2024-43660 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
423 - - - After gaining access to the firmware of a charging station, a file at <redacted> can be accessed to obtain default credentials that are the same across all Iocharger AC model EV chargers. This issue… New - CVE-2024-43659 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
424 - - - Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability allows OS Command Injection as root This issue affects Iocharger firmware for AC model chargers befo… New - CVE-2024-43657 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
425 - - - A Server-Side Request Forgery vulnerability in the SonicOS SSH management interface allows a remote attacker to establish a TCP connection to an IP address on any port when the user is logged in to t… New - CVE-2024-53705 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
426 - - - An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication. New - CVE-2024-53704 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
427 - - - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in the SonicOS SSLVPN authentication token generator that, in certain cases, can be predicted by an attacker potentially resulting … New - CVE-2024-40762 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
428 - - - Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability allows OS Command Injection as root This issue affects Iocharger firmware for AC model chargers befo… New - CVE-2024-43656 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
429 - - - Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Iocharger firmware for AC models allows OS Command Injection as root This issue affects all Iocha… New - CVE-2024-43654 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm
430 - - - Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability  allows OS Command Injection as root This issue affects Iocharger firmware for AC model chargers befo… New - CVE-2024-43653 2025-01-10 00:15 2025-01-9 Show GitHub Exploit DB Packet Storm