Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 11, 2025, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189221 6.8 警告 日本電気 - SocksCap におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0378 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
189222 10 危険 news - MicroNews における管理権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-0377 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
189223 10 危険 oki printing solutions - OKI C5510MFP Printer CU などにおける管理者アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0375 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
189224 10 危険 oki printing solutions - OKI C5510MFP Printer CU などにおける管理者のパスワードを取得される脆弱性 CWE-310
暗号の問題 		CVE-2008-0374 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
189225 7.5 危険 The PHP Group - PHP F1 Max's File Uploader における PHP ファイルを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0373 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
189226 6.9 警告 IBM - IBM IDS における任意のファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2008-0369 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
189227 7.2 危険 IBM - IBM IDS における任意のファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2008-0368 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
189228 4.3 警告 instituto politicnico nacional - GradMan の agregar_info.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0361 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
189229 4.3 警告 IBM - IBM Lotus Sametime のチャットクライアントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0354 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
189230 5 警告 miniweb http server - MiniWeb HTTP Server の http.c におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0338 2012-09-25 16:59 2008-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
361 - - - WeGIA is a web manager for charitable institutions. A SQL Injection vulnerability was identified in the /html/funcionario/dependente_listar_um.php endpoint, specifically in the id_dependente paramete… New - CVE-2025-22140 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
362 - - - WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the configuracao_geral.php endpoint of the WeGIA application. This vulnerabi… New - CVE-2025-22139 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
363 - - - Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-843
Type Confusion 		CVE-2025-0291 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
364 - - - SourceCodester Computer Laboratory Management System 1.0 is vulnerable to Incorrect Access Control. via /php-lms/admin/?page=user/list. New - CVE-2024-54818 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
365 - - - Command Injection in Minidlna version v1.3.3 and before allows an attacker to execute arbitrary OS commands via a specially crafted minidlna.conf configuration file. New - CVE-2024-51442 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
366 - - - An issue in the snxpcamd.sys component of SUNIX Multi I/O Card v10.1.0.0 allows attackers to perform arbitrary read and write actions via supplying crafted IOCTL requests. New - CVE-2024-55411 2025-01-9 05:15 2025-01-8 Show GitHub Exploit DB Packet Storm
367 - - - A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the APP_KEY to achieve remote command execution on the server by manipulating the laravel_session cookie, exploi… Update - CVE-2024-55556 2025-01-9 05:15 2025-01-8 Show GitHub Exploit DB Packet Storm
368 - - - JATOS 3.9.4 contains a denial-of-service (DoS) vulnerability in the authentication system, where an attacker can prevent legitimate users from accessing their accounts by repeatedly sending multiple … Update - CVE-2024-55008 2025-01-9 05:15 2025-01-8 Show GitHub Exploit DB Packet Storm
369 - - - composio >=0.5.40 is vulnerable to Command Execution in composio_openai, composio_claude, and composio_julep via the handle_tool_calls function. New - CVE-2024-53526 2025-01-9 04:15 2025-01-9 Show GitHub Exploit DB Packet Storm
370 - - - A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been rated as critical. Affected by this issue is some unknown functionality of the file /opt/MicroWorld/var/ of the co… New CWE-266
CWE-276
 Incorrect Privilege Assignment
Incorrect Default Permissions  		CVE-2024-13188 2025-01-9 04:15 2025-01-9 Show GitHub Exploit DB Packet Storm