Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 5, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193901	7.5	危険	armorlogic	-	Armorlogic Profense Web Application Firewall における特定の保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1594	2012-06-26 16:10	2009-05-21	Show	GitHub Exploit DB Packet Storm

193902	4.3	警告	armorlogic	-	Armorlogic Profense Web Application Firewall におけるクロスサイトスクリプティング攻撃 (XSS) を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1593	2012-06-26 16:10	2009-05-21	Show	GitHub Exploit DB Packet Storm

193903	10	危険	electrasoft	-	ElectraSoft 32bit FTP におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1592	2012-06-26 16:10	2009-05-8	Show	GitHub Exploit DB Packet Storm

193904	4.3	警告	Drupal	-	vbDrupal で使用される Drupal における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-1576	2012-06-26 16:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

193905	4.6	警告	Debian Canonical branden robinson レッドハット	-	Debian GNU/Linux などの製品で使用される xvfb-run における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1573	2012-06-26 16:10	2009-05-6	Show	GitHub Exploit DB Packet Storm

193906	6.8	警告	シスコシステムズ	-	Cisco Linksys WRT54GC ルータの administration.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-1561	2012-06-26 16:10	2009-05-6	Show	GitHub Exploit DB Packet Storm

193907	7.8	危険	シスコシステムズ	-	Cisco Linksys WVC54GCA ワイアレスビデオカメラにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2009-1560	2012-06-26 16:10	2009-05-6	Show	GitHub Exploit DB Packet Storm

193908	7.8	危険	シスコシステムズ	-	Cisco Linksys WVC54GCA ワイアレスビデオカメラ上の adm/file.cgi における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1559	2012-06-26 16:10	2009-05-6	Show	GitHub Exploit DB Packet Storm

193909	7.8	危険	シスコシステムズ	-	Cisco Linksys WVC54GCA ワイアレスビデオカメラの adm/file.cgi におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1558	2012-06-26 16:10	2009-05-6	Show	GitHub Exploit DB Packet Storm

193910	4.3	警告	シスコシステムズ	-	Cisco Linksys WVC54GCA ワイアレスビデオカメラにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1557	2012-06-26 16:10	2009-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 6, 2025, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
71	7.8	HIGH Local	watchguard	panda_dome	Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An atta… Update	CWE-59 Link Following	CVE-2024-13043	2025-01-4 05:56	2024-12-31	Show	GitHub Exploit DB Packet Storm

72	-		-	-	A vulnerability classified as critical was found in code-projects Point of Sales and Inventory Management System 1.0. This vulnerability affects unknown code of the file /user/search.php. The manipul… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0197	2025-01-4 05:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

73	-		-	-	A vulnerability classified as critical has been found in code-projects Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file /user/plist.php. The manipulation o… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0196	2025-01-4 04:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

74	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to unauthorized reflected cross-site scripting in the `Curr… New	-	CVE-2024-56409	2025-01-4 04:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

75	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to unauthorized reflected cross-site scripting in the `Acco… New	-	CVE-2024-56366	2025-01-4 04:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

76	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to unauthorized reflected cross-site scripting in the const… New	-	CVE-2024-56365	2025-01-4 04:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

77	-		-	-	A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/de… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0195	2025-01-4 03:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

78	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to bypass of the cross-site scripting sanitizer using the j… New	CWE-79 Cross-site Scripting	CVE-2024-56412	2025-01-4 03:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

79	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 have a cross-site scripting (XSS) vulnerability of the hyperlink base in t… New	CWE-79 Cross-site Scripting	CVE-2024-56411	2025-01-4 03:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

80	7.8	HIGH Local	ashlar	graphite	Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations … Update	CWE-787 Out-of-bounds Write	CVE-2024-13051	2025-01-4 02:41	2024-12-31	Show	GitHub Exploit DB Packet Storm