Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 6, 2025, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193311	9.3	危険	awingsoft	-	AwingSoft Awakening Web3D Player などの WindsPlayerIE.View.1 ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4588	2012-06-26 16:19	2010-01-7	Show	GitHub Exploit DB Packet Storm

193312	5	警告	Cherokee Project	-	Cherokee Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4587	2012-06-26 16:19	2010-01-7	Show	GitHub Exploit DB Packet Storm

193313	5	警告	ASP indir	-	UranyumSoft Listing Service におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4585	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

193314	7.5	危険	dbmasters	-	dB Masters Multimedia Links Directory の admin.php における管理者アクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-4584	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

193315	4.3	警告	FacileForms Joomla! Mambo Foundation	-	Mambo および Joomla! 用の Facileforms コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4578	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

193316	4.3	警告	Drupal	-	Drupal 用の Randomizer モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4602	2012-06-26 16:19	2009-12-9	Show	GitHub Exploit DB Packet Storm

193317	7.5	危険	cmstactics Joomla!	-	Joomla! の beeheard コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4576	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

193318	7.5	危険	elkagroup	-	elkagroup Image Gallery における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4569	2012-06-26 16:19	2010-01-5	Show	GitHub Exploit DB Packet Storm

193319	4.3	警告	Snitz	-	Snitz Forums 2000 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4554	2012-06-26 16:19	2010-01-4	Show	GitHub Exploit DB Packet Storm

193320	9.3	危険	cdmi	-	A2 Media Player Pro におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4549	2012-06-26 16:19	2010-01-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 6, 2025, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
111	-	-	-	In Exynos_parsing_user_data_registered_itu_t_t35 of VendorVideoAPI.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with…	-	CVE-2024-53838	2025-01-3 13:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

112	-	-	-	In prepare_response of lwis_periodic_io.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges…	-	CVE-2024-53837	2025-01-3 13:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

113	-	-	-	In wbrc_bt_dev_write of wb_regon_coordinator.c, there is a possible out of bounds write due to a buffer overflow. This could lead to local escalation of privilege with System execution privileges nee…	-	CVE-2024-53836	2025-01-3 13:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

114	-	-	-	there is a possible biometric bypass due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for …	-	CVE-2024-53835	2025-01-3 13:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

115	-	-	-	In sms_DisplayHexDumpOfPrivacyBuffer of sms_Utilities.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional e…	-	CVE-2024-53834	2025-01-3 13:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

116	-	-	-	In prepare_response_locked of lwis_transaction.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execut…	-	CVE-2024-53833	2025-01-3 13:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

117	-	-	-	In construct_transaction_from_cmd of lwis_ioctl.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution…	-	CVE-2024-47032	2025-01-3 13:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

118	-	-	-	there is a possible to add apps to bypass VPN due to Undeclared Permission . This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not n…	-	CVE-2024-11624	2025-01-3 13:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

119	-	-	-	A vulnerability was found in code-projects Online Shop 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /view.php. The manipulation of the argument name/d…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-0175	2025-01-3 11:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

120	-	-	-	A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been classified as critical. This affects an unknown part of the file /user/search_result2.php of…	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0174	2025-01-3 11:15	2025-01-3	Show	GitHub Exploit DB Packet Storm