Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190301 4.3 警告 IBM - IBM Rational ClearQuest の CQ Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5324 2012-09-25 17:17 2008-12-1 Show GitHub Exploit DB Packet Storm
190302 6.9 警告 MailScanner - mailscanner における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5313 2012-09-25 17:17 2008-12-3 Show GitHub Exploit DB Packet Storm
190303 6.9 警告 MailScanner - mailscanner における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5312 2012-09-25 17:17 2008-12-3 Show GitHub Exploit DB Packet Storm
190304 7.5 危険 NetArt Media - NetArt Media Blog System の image.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5311 2012-09-25 17:17 2008-12-2 Show GitHub Exploit DB Packet Storm
190305 7.5 危険 NetArt Media - NetArt Media Car Portal の image.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5310 2012-09-25 17:17 2008-12-2 Show GitHub Exploit DB Packet Storm
190306 7.5 危険 NetArt Media - NetArt Media Real Estate Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5309 2012-09-25 17:17 2008-12-2 Show GitHub Exploit DB Packet Storm
190307 7.5 危険 lovecms - LoveCMS の Simple Forum モジュールにおける管理者パスワードを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5308 2012-09-25 17:17 2008-12-2 Show GitHub Exploit DB Packet Storm
190308 6.9 警告 karakas-online - chm2pdf におけるファイルを削除される脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5299 2012-09-25 17:17 2008-10-11 Show GitHub Exploit DB Packet Storm
190309 2.1 注意 karakas-online - chm2pdf におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2008-5298 2012-09-25 17:17 2008-10-11 Show GitHub Exploit DB Packet Storm
190310 7.5 危険 jamit software - Jamit Job Board の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5295 2012-09-25 17:17 2008-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1901 - - - Incorrect Authorization vulnerability in Apache Cassandra allowing users to access a datacenter or IP/CIDR groups they should not be able to when using CassandraNetworkAuthorizer or CassandraCIDRAuth… - CVE-2025-24860 2025-02-7 05:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1902 4.3 MEDIUM
Network 		mozilla firefox
thunderbird 		The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2025-1019 2025-02-7 04:40 2025-02-4 Show GitHub Exploit DB Packet Storm
1903 5.3 MEDIUM
Network 		mozilla firefox
thunderbird 		The fullscreen notification is prematurely hidden when fullscreen is re-requested quickly by the user. This could have been leveraged to perform a potential spoofing attack. This vulnerability affect… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2025-1018 2025-02-7 04:40 2025-02-4 Show GitHub Exploit DB Packet Storm
1904 7.5 HIGH
Network 		mozilla firefox
thunderbird 		A race during concurrent delazification could have led to a use-after-free. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird <… CWE-416
 Use After Free 		CVE-2025-1012 2025-02-7 04:33 2025-02-4 Show GitHub Exploit DB Packet Storm
1905 8.8 HIGH
Network 		mozilla firefox
thunderbird 		A bug in WebAssembly code generation could have lead to a crash. It may have been possible for an attacker to leverage this to achieve code execution. This vulnerability affects Firefox < 135, Firefo… NVD-CWE-noinfo
CVE-2025-1011 2025-02-7 04:31 2025-02-4 Show GitHub Exploit DB Packet Storm
1906 8.8 HIGH
Network 		mozilla firefox
thunderbird 		An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < … CWE-416
 Use After Free 		CVE-2025-1010 2025-02-7 04:30 2025-02-4 Show GitHub Exploit DB Packet Storm
1907 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, … CWE-416
 Use After Free 		CVE-2025-1009 2025-02-7 04:28 2025-02-4 Show GitHub Exploit DB Packet Storm
1908 - - - Using API in the 2N OS device, authorized user can enable logging, which discloses valid authentication tokens in system log. - CVE-2024-13416 2025-02-7 04:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1909 - - - An information disclosure vulnerability exists in the Vault API functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to reading vaults that have been prev… - CVE-2024-43779 2025-02-7 04:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1910 - - - A cross-site scripting (xss) vulnerability exists in the dataset upload functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to an arbitrary html code. An… - CVE-2024-39272 2025-02-7 04:15 2025-02-7 Show GitHub Exploit DB Packet Storm