Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189761 6.4 警告 mzbservices - Max.Blog の delete.php における任意のブログ投稿を削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0383 2012-09-25 17:27 2009-02-2 Show GitHub Exploit DB Packet Storm
189762 6.5 警告 Miltenovikj Manojlo - Miltenovik Manojlo MemHT Portal の index.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0372 2012-09-25 17:27 2009-01-30 Show GitHub Exploit DB Packet Storm
189763 2.1 注意 OpenSC team - OpenSC におけるプライベートデータオブジェクトを読まれる脆弱性 CWE-310
暗号の問題 		CVE-2009-0368 2012-09-25 17:27 2009-03-2 Show GitHub Exploit DB Packet Storm
189764 3.5 注意 nongnu - Samizdat におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0359 2012-09-25 17:27 2009-02-12 Show GitHub Exploit DB Packet Storm
189765 4.3 警告 Ignite Realtime - Ignite Realtime Openfire におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0496 2012-09-25 17:27 2008-12-7 Show GitHub Exploit DB Packet Storm
189766 9.3 危険 merak - Merak Media Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0350 2012-09-25 17:27 2009-01-29 Show GitHub Exploit DB Packet Storm
189767 7.2 危険 Niels Provos - x86_64 Linux プラットフォーム用の Niels Provos Systrace におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0343 2012-09-25 17:27 2009-01-29 Show GitHub Exploit DB Packet Storm
189768 7.5 危険 katywhitton - Katy Whitton BlogIt! の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0337 2012-09-25 17:27 2009-01-29 Show GitHub Exploit DB Packet Storm
189769 5 警告 katywhitton - Katy Whitton BlogIt! におけるデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0336 2012-09-25 17:27 2009-01-29 Show GitHub Exploit DB Packet Storm
189770 4.3 警告 katywhitton - Katy Whitton の BlogIt! の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0335 2012-09-25 17:27 2009-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 9, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1341 - - - An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.4, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sonoma 14.7.2, … - CVE-2024-54478 2025-01-29 00:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1342 6.3 MEDIUM
Network 		- - A vulnerability was found in Itechscripts School Management Software 2.75. It has been classified as critical. This affects an unknown part of the file /notice-edit.php. The manipulation of the argum… - CVE-2017-20196 2025-01-29 00:15 2025-01-27 Show GitHub Exploit DB Packet Storm
1343 - - - An allocation-size-too-big bug in the component /imagebuf.cpp of OpenImageIO v3.1.0.0dev may cause a Denial of Service (DoS) when the program to requests to allocate too much space. - CVE-2024-55195 2025-01-29 00:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1344 - - - A malformed packet can cause a buffer overflow in the NWK/APS layer of the Ember ZNet stack and lead to an assert - CVE-2024-6351 2025-01-28 23:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1345 4.7 MEDIUM
Network 		- - A vulnerability, which was classified as critical, has been found in Pimcore customer-data-framework up to 4.2.0. Affected by this issue is some unknown functionality of the file /admin/customermanag… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-11956 2025-01-28 23:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1346 - - - Improper Neutralization of Argument Delimiters in the TeamViewer_service.exe component of TeamViewer Clients prior version 15.62 for Windows allows an attacker with local unprivileged access on a Win… - CVE-2025-0065 2025-01-28 20:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1347 4.3 MEDIUM
Network 		- - The vulnerability was found in OpenShift Service Mesh 2.6.3 and 2.5.6. This issue occurs due to improper sanitization of HTTP headers by Envoy, particularly the x-forwarded-for header. This lack of s… CWE-117
 Improper Output Neutralization for Logs 		CVE-2025-0754 2025-01-28 19:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1348 6.3 MEDIUM
Network 		- - A flaw was found in OpenShift Service Mesh 2.6.3 and 2.5.6. Rate-limiter avoidance, access-control bypass, CPU and memory exhaustion, and replay attacks may be possible due to improper HTTP header sa… CWE-444
HTTP Request Smuggling 		CVE-2025-0752 2025-01-28 19:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1349 6.6 MEDIUM
Local 		- - A vulnerability was found in CRI-O. A path traversal issue in the log management functions (UnMountPodLogs and LinkContainerLogs) may allow an attacker with permissions to create and delete Pods to u… CWE-22
Path Traversal 		CVE-2025-0750 2025-01-28 19:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1350 5.5 MEDIUM
Local 		- - A flaw was found in Infinispan, when using JGroups with JDBC_PING. This issue occurs when an application inadvertently exposes sensitive information, such as configuration details or credentials, thr… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2025-0736 2025-01-28 18:15 2025-01-28 Show GitHub Exploit DB Packet Storm