Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189091 9.3 危険 IBM - IBM TSM などで使用される CAD スケジューラにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3853 2012-09-25 17:38 2009-11-4 Show GitHub Exploit DB Packet Storm
189092 7.5 危険 IBM - Java Technology の IBM Runtimes の XML コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3852 2012-09-25 17:38 2009-11-3 Show GitHub Exploit DB Packet Storm
189093 10 危険 ヒューレット・パッカード - HP OV NNM におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3849 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
189094 10 危険 ヒューレット・パッカード - HP OV NNM の nnmRptConfig.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3848 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
189095 10 危険 ヒューレット・パッカード - HP OV NNM における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3847 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
189096 10 危険 ヒューレット・パッカード - HP OV NNM の ovlogin.exe におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3846 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
189097 10 危険 ヒューレット・パッカード - HP OV NNM の port-3443 HTTP サーバにおける任意のコマンドを実行される脆弱性 CWE-DesignError
CVE-2009-3845 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
189098 9.3 危険 kramware - MixSense DJ Studio におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3808 2012-09-25 17:38 2009-10-27 Show GitHub Exploit DB Packet Storm
189099 9.3 危険 mixvibes - MixVibes におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3807 2012-09-25 17:38 2009-10-27 Show GitHub Exploit DB Packet Storm
189100 7.5 危険 Free Document Management Software - OpenDocMan の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3801 2012-09-25 17:38 2009-10-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1271 7.2 HIGH
Network 		aipower aipower The "AI Power: Complete AI Pack" plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.8.96 via deserialization of untrusted input from the $form['post_conten… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-0429 2025-01-25 05:51 2025-01-22 Show GitHub Exploit DB Packet Storm
1272 7.3 HIGH
Network 		gamipress gamipress The The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to arbitrary shortcode execution via the gamipress_ajax_get_logs… CWE-94
Code Injection 		CVE-2024-13495 2025-01-25 05:46 2025-01-22 Show GitHub Exploit DB Packet Storm
1273 7.5 HIGH
Network 		gamipress gamipress The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versi… CWE-89
SQL Injection 		CVE-2024-13496 2025-01-25 05:45 2025-01-22 Show GitHub Exploit DB Packet Storm
1274 7.3 HIGH
Network 		gamipress gamipress The The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to arbitrary shortcode execution via gamipress_do_shortcode() fu… CWE-94
Code Injection 		CVE-2024-13499 2025-01-25 05:37 2025-01-22 Show GitHub Exploit DB Packet Storm
1275 3.5 LOW
Network 		- - A vulnerability was found in fumiao opencms 2.2. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/model/addOrUpdate of the component Add Model Managemen… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-0708 2025-01-25 05:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1276 7.8 HIGH
Local 		- - A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. It has been classified as critical. This affects an unknown part in the library CRYPTBASE.dll of the component Startup. The manipulatio… CWE-426
 Untrusted Search Path 		CVE-2025-0707 2025-01-25 05:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1277 2.4 LOW
Network 		- - A vulnerability was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/s… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-0706 2025-01-25 05:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1278 - - - InnoShop V.0.3.8 and below is vulnerable to Cross Site Scripting (XSS) via SVG file upload. - CVE-2024-57277 2025-01-25 05:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1279 - - - SQL injection vulnerability in Go-CMS v.1.1.10 allows a remote attacker to execute arbitrary code via a crafted payload. - CVE-2024-57095 2025-01-25 05:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1280 - - - A persistent cross-site scripting (XSS) vulnerability in NodeBB v3.11.0 allows remote attackers to store arbitrary code in the 'about me' section of their profile. - CVE-2024-57041 2025-01-25 05:15 2025-01-25 Show GitHub Exploit DB Packet Storm