Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190671 7.5 危険 openimpro - OpenImpro の image.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3599 2012-09-25 17:17 2008-08-12 Show GitHub Exploit DB Packet Storm
190672 4.3 警告 harmoni - Harmoni におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3596 2012-09-25 17:17 2008-08-6 Show GitHub Exploit DB Packet Storm
190673 7.5 危険 magicscripts - MagicSctipts E-Store の viewdetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3594 2012-09-25 17:17 2008-08-11 Show GitHub Exploit DB Packet Storm
190674 4.3 警告 mozilo - moziloCMS の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3589 2012-09-25 17:17 2008-08-11 Show GitHub Exploit DB Packet Storm
190675 4.3 警告 needscripts - Chris Bunting Homes 4 Sale の result.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3587 2012-09-25 17:17 2008-08-11 Show GitHub Exploit DB Packet Storm
190676 7.5 危険 intellitamper - IntelliTamper の HTML パーサにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3583 2012-09-25 17:17 2008-08-10 Show GitHub Exploit DB Packet Storm
190677 6.8 警告 keld - Keld PHP-MySQL News Script の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3582 2012-09-25 17:17 2008-08-10 Show GitHub Exploit DB Packet Storm
190678 5 警告 hydrairc - HydralRC におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3578 2012-09-25 17:17 2008-08-10 Show GitHub Exploit DB Packet Storm
190679 4.6 警告 OpenTTD - OpenTTD の src/openttd.cpp におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3577 2012-09-25 17:17 2008-08-10 Show GitHub Exploit DB Packet Storm
190680 10 危険 OpenTTD - OpenTTD の src/gfx.cpp の TruncateString 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3576 2012-09-25 17:17 2008-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1521 - - - Cross Site Scripting vulnerability in AdGuard Application v.7.18.1 (4778) and before allows an attacker to execute arbitrary code via a crafted payload to the fontMatrix component. - CVE-2024-48662 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1522 - - - A type confusion issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18… - CVE-2025-24137 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1523 - - - An issue in Midea Group Co., Ltd Midea Home iOS 9.3.12 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56972 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1524 - - - An issue in Zhiyuan Yuedu (Guangzhou) Literature Information Technology Co., Ltd Shuqi Novel iOS 5.3.8 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56971 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1525 - - - An issue in Pixocial Technology (Singapore) Pte. Ltd BeautyPlus iOS 7.8.010 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56969 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1526 - - - An issue in Shenzhen Intellirocks Tech Co. Ltd Govee Home iOS 6.5.01 allows attackers to access sensitive user information via supplying a crafted payload. - CVE-2024-56968 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1527 - - - An issue in Cloud Whale Interactive Technology LLC. PolyBuzz iOS 2.0.20 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56967 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1528 - - - An issue in Shanghai Xuan Ting Entertainment Information & Technology Co., Ltd Qidian Reader iOS 5.9.384 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56966 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1529 - - - An issue in Shanghai Shizhi Information Technology Co., Ltd Shihuo iOS 8.16.0 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56965 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1530 - - - An issue in Che Hao Duo Used Automobile Agency (Beijing) Co., Ltd Guazi Used Car iOS 10.15.1 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56964 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm