Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192461 9.3 危険 LEAD Technologies, Inc. - LEAD Technologies の LEADTOOLS におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2981 2012-09-25 16:47 2007-05-31 Show GitHub Exploit DB Packet Storm
192462 6.8 警告 LEAD Technologies, Inc. - LEADTOOLS LEAD Raster ISIS Object におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2980 2012-09-25 16:47 2007-05-31 Show GitHub Exploit DB Packet Storm
192463 7.5 危険 Ignite Realtime - Ignite Realtime Openfire の admin コンソールにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2975 2012-09-25 16:47 2007-05-3 Show GitHub Exploit DB Packet Storm
192464 4.3 警告 Invision Power Services, Inc - IP.Board におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2963 2012-09-25 16:47 2007-05-30 Show GitHub Exploit DB Packet Storm
192465 4.3 警告 particle soft - Particle Gallery の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2962 2012-09-25 16:47 2007-05-31 Show GitHub Exploit DB Packet Storm
192466 9.3 危険 マカフィー - Solaris 用などの McAfee E-Business Server における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-2957 2012-09-25 16:47 2007-10-31 Show GitHub Exploit DB Packet Storm
192467 6.8 警告 pfstools
qtpfsgui		 - Qtpfsgui の readRadianceHeader 関数におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2956 2012-09-25 16:47 2007-08-13 Show GitHub Exploit DB Packet Storm
192468 10 危険 Novell - Novell Client の Spooler サービスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2954 2012-09-25 16:47 2007-08-28 Show GitHub Exploit DB Packet Storm
192469 9.3 危険 kvirc - KVIrc の src/kvirc/kernel/kvi_ircurl.cpp における任意のコマンドを実行される脆弱性 - CVE-2007-2951 2012-09-25 16:47 2007-06-26 Show GitHub Exploit DB Packet Storm
192470 9.3 危険 MPlayer project - MPlayer の stream/stream_cddb.c におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2948 2012-09-25 16:47 2007-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1911 - - - Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An attacker with an account on an affected CVAT instance is able to run arbitrary code in… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-23045 2025-01-29 01:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1912 - - - A path traversal vulnerability exists in the Rockwell Automation DataEdge Platform DataMosaix Private Cloud. By specifying the character sequence in the body of the vulnerable endpoint, it is possibl… - CVE-2025-0659 2025-01-29 01:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1913 - - - EWON Flexy 202 transmits user credentials in clear text with no encryption when a user is added, or user credentials are changed via its webpage. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2025-0432 2025-01-29 01:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1914 - - - The Social Share Buttons for WordPress plugin through 2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scriptin… - CVE-2024-12807 2025-01-29 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1915 - - - The Infility Global WordPress plugin through 2.9.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used agai… - CVE-2024-12723 2025-01-29 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1916 - - - A vulnerability has been identified in Node.js, specifically affecting the handling of drive names in the Windows environment. Certain Node.js functions do not treat drive names as special on Windows… - CVE-2025-23084 2025-01-29 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1917 - - - Using ParsePKCS1PrivateKey to parse a RSA key that is missing the CRT values would panic when verifying that the key is well formed. - CVE-2025-22865 2025-01-29 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1918 - - - A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in… - CVE-2024-45341 2025-01-29 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1919 - - - Credentials provided via the new GOAUTH feature were not being properly segmented by domain, allowing a malicious server to request credentials they should not have access to. By default, unless othe… - CVE-2024-45340 2025-01-29 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1920 - - - When logs are written to a widely-writable directory (the default), an unprivileged attacker may predict a privileged process's log file path and pre-create a symbolic link to a sensitive file in its… - CVE-2024-45339 2025-01-29 01:15 2025-01-28 Show GitHub Exploit DB Packet Storm