Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192131	4.3	警告	マイクロソフト	-	Microsoft Windows Media Player 11 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4288	2012-09-25 16:59	2007-08-9	Show	GitHub Exploit DB Packet Storm

192132	4.3	警告	KnowledgeTree	-	KnowledgeTree Open Source におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4281	2012-09-25 16:59	2007-08-9	Show	GitHub Exploit DB Packet Storm

192133	6.9	警告	IBM	-	IBM DB2 UDB におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4276	2012-09-25 16:59	2007-08-18	Show	GitHub Exploit DB Packet Storm

192134	6.9	警告	IBM	-	IBM DB2 UDB における権限を取得される脆弱性	-	CVE-2007-4275	2012-09-25 16:59	2007-08-18	Show	GitHub Exploit DB Packet Storm

192135	4.6	警告	IBM	-	IBM DB2 UDB における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2007-4273	2012-09-25 16:59	2007-08-18	Show	GitHub Exploit DB Packet Storm

192136	1.9	注意	IBM	-	IBM DB2 UDB における任意のファイルを作成される脆弱性	-	CVE-2007-4272	2012-09-25 16:59	2007-08-18	Show	GitHub Exploit DB Packet Storm

192137	2.1	注意	IBM	-	IBM DB2 UDB におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4271	2012-09-25 16:59	2007-08-16	Show	GitHub Exploit DB Packet Storm

192138	6.9	警告	IBM	-	IBM DB2 UDB における root 権限を取得される脆弱性	-	CVE-2007-4270	2012-09-25 16:59	2007-08-18	Show	GitHub Exploit DB Packet Storm

192139	4.3	警告	kai blankenhorn bitfolge	-	Kai Blankenhorn Bitfolge simple and nice index file におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4264	2012-09-25 16:59	2007-08-9	Show	GitHub Exploit DB Packet Storm

192140	6.8	警告	lfs	-	LFS におけるバッファオーバーフローの脆弱性	-	CVE-2007-4257	2012-09-25 16:59	2007-08-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
951	-		-	-	Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was privately reported to VMware. Patches are available to remediate this vulnerability in affected VMware produc…	-	CVE-2025-22217	2025-01-29 04:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

952	6.3	MEDIUM Network	-	-	A vulnerability, which was classified as problematic, was found in pankajindevops scale up to 20241113. This affects an unknown part of the component API Endpoint. The manipulation leads to improper …	CWE-284 CWE-266 Improper Access Control Incorrect Privilege Assignment	CVE-2025-0783	2025-01-29 04:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

953	-		-	-	A Credential Exposure Vulnerability exists in the above-mentioned product and version. The vulnerability is due to using HTTP resulting in credentials being sent in clear text.	-	CVE-2025-0631	2025-01-29 04:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

954	-		-	-	A flaw was found in ArgoCD. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This iss…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2024-13484	2025-01-29 04:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

955	-		-	-	A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. If successf…	-	CVE-2025-23057	2025-01-29 03:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

956	-		-	-	A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. If successf…	-	CVE-2025-23056	2025-01-29 03:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

957	-		-	-	A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. If successf…	-	CVE-2025-23055	2025-01-29 03:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

958	-		-	-	A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could allow an authenticated low privilege operator user to perform operations not allowed by their privi…	-	CVE-2025-23054	2025-01-29 03:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

959	-		-	-	A privilege escalation vulnerability exists in the web-based management interface of HPE Aruba Networking Fabric Composer. Successful exploitation could allow an authenticated low privilege operator …	-	CVE-2025-23053	2025-01-29 03:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

960	-		-	-	CWE-79: Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability exists when an authenticated attacker modifies folder names within the context of the produc…	CWE-79 Cross-site Scripting	CVE-2024-8401	2025-01-29 02:15	2025-01-29	Show	GitHub Exploit DB Packet Storm