Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 1, 2025, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193701	7.5	危険	blogtrafficexchange WordPress.org	-	WordPress 用の Related Sites プラグインの BTE_RW_Webajax.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2383	2012-06-26 16:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

193702	5	警告	gizmo5	-	Linux 上の Gizmo における任意のユーザの資格情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2381	2012-06-26 16:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

193703	4.3	警告	4homepages	-	4images の includes/functions.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2380	2012-06-26 16:10	2009-06-15	Show	GitHub Exploit DB Packet Storm

193704	6.8	警告	BIGACE	-	BIGACE Web CMS の public/index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2379	2012-06-26 16:10	2009-07-1	Show	GitHub Exploit DB Packet Storm

193705	4.3	警告	avax-software	-	AVAX-software Avax Vector ActiveX の Avax Vector ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2377	2012-06-26 16:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

193706	7.5	危険	datachecknh	-	DataCheck Solutions ForumPal FE および ForumPal の login.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2366	2012-06-26 16:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

193707	7.5	危険	datachecknh	-	DataCheck Solutions GalleryPal FE の login.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2365	2012-06-26 16:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

193708	9.3	危険	dan cahill	-	NullLogic Groupware の pgsqlQuery 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2356	2012-06-26 16:10	2009-07-7	Show	GitHub Exploit DB Packet Storm

193709	6.8	警告	eaccelerator	-	eAccelerator の encoder.php における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2353	2012-06-26 16:10	2009-07-7	Show	GitHub Exploit DB Packet Storm

193710	7.8	危険	Digium	-	Asterisk Open Source の IAX2 プロトコル実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-2346	2012-06-26 16:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 1, 2025, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
91	-	-	-	Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellu… New	CWE-843 Type Confusion	CVE-2024-13047	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

92	-	-	-	Ashlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-… New	CWE-787 Out-of-bounds Write	CVE-2024-13046	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

93	-	-	-	Ashlar-Vellum Cobalt AR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of… New	CWE-121 Stack-based Buffer Overflow	CVE-2024-13045	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

94	-	-	-	Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-… New	CWE-787 Out-of-bounds Write	CVE-2024-13044	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

95	-	-	-	Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An atta… New	CWE-59 Link Following	CVE-2024-13043	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

96	-	-	-	A vulnerability was found in Tsinghua Unigroup Electronic Archives Management System 3.2.210802(62532). It has been classified as problematic. Affected is the function download of the file SubjectCon… New	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2024-13042	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

97	-	-	-	Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker m… New	CWE-59 Link Following	CVE-2024-12753	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

98	-	-	-	Foxit PDF Reader AcroForm Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. Us… New	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2024-12752	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

99	-	-	-	Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. U… New	CWE-125 Out-of-bounds Read	CVE-2024-12751	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm

100	-	-	-	iXsystems TrueNAS CORE fetch_plugin_packagesites tar Cleartext Transmission of Sensitive Information Vulnerability. This vulnerability allows network-adjacent attackers to tamper with firmware update… New	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2024-11946	2024-12-31 06:15	2024-12-31	Show	GitHub Exploit DB Packet Storm