Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194741 6.8 警告 Google - Google Chrome の texSubImage2D におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2819 2012-07-26 17:26 2012-06-26 Show GitHub Exploit DB Packet Storm
194742 7.8 危険 Google - Windows 上で稼働する Google Chrome におけるサービス運用妨害 (プロセス干渉) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-2816 2012-07-26 17:25 2012-06-26 Show GitHub Exploit DB Packet Storm
194743 10 危険 ヒューレット・パッカード - HP Business Service Management に任意のコードが実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2561 2012-07-26 17:19 2012-05-17 Show GitHub Exploit DB Packet Storm
194744 4.3 警告 Dwayne C. Litzenberger - PyCrypto における秘密鍵を取得される脆弱性 CWE-310
暗号の問題 		CVE-2012-2417 2012-07-26 17:17 2012-04-18 Show GitHub Exploit DB Packet Storm
194745 7.5 危険 Cobbler project - Cobbler の action_power.py における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2012-2395 2012-07-26 17:15 2012-06-16 Show GitHub Exploit DB Packet Storm
194746 5 警告 The PHP Group - PHP の sapi/cgi/cgi_main.c におけるサービス運用妨害 (リソース消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2336 2012-07-26 17:09 2012-05-11 Show GitHub Exploit DB Packet Storm
194747 7.5 危険 The PHP Group - PHP の php-wrapper.fcgi における保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2335 2012-07-26 17:07 2012-05-11 Show GitHub Exploit DB Packet Storm
194748 7.5 危険 OpenOffice.org Project
libwpd project		 - OpenOffice.org で使用される libwpd における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2012-2149 2012-07-26 16:59 2012-06-21 Show GitHub Exploit DB Packet Storm
194749 4.3 警告 ISC, Inc. - ISC BIND の ns_client データ構造におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2012-3868 2012-07-26 16:27 2012-07-24 Show GitHub Exploit DB Packet Storm
194750 7.1 危険 IBM - IBM DB2 の Java ストアドプロシージャのインフラストラクチャにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2197 2012-07-26 15:38 2012-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
371 - - - In multiple locations, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges… New - CVE-2024-49735 2025-01-23 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
372 8.2 HIGH
Local 		howyar
signalcomputer
wasay
sanfong
greenware
cs-grp
radix 		sysreturn
hdd_king
erecoveryrx
ez-back_system
greenguard
neo_impact
smart_recovery 		Howyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned software in a hardcoded path. Update CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-7344 2025-01-23 00:41 2025-01-14 Show GitHub Exploit DB Packet Storm
373 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AlaFalaki a Gateway for Pasargad Bank on WooCommerce allows Reflected XSS. This issue affects a G… New CWE-79
Cross-site Scripting 		CVE-2025-23966 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
374 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Linus Lundahl Good Old Gallery allows Reflected XSS. This issue affects Good Old Gallery: from n/… New CWE-79
Cross-site Scripting 		CVE-2025-23959 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
375 - - - Unrestricted Upload of File with Dangerous Type vulnerability in Innovative Solutions user files allows Upload a Web Shell to a Web Server. This issue affects user files: from n/a through 2.4.2. New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-23953 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
376 - - - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Mihajlovic Nenad Improved Sale Badges – Free Version allows PHP Local File Inc… New CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2025-23949 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
377 - - - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WebArea Background animation blocks allows PHP Local File Inclusion. This issu… New CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2025-23948 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
378 - - - ps_contactinfo, a PrestaShop module for displaying store contact information, has a cross-site scripting (XSS) vulnerability in versions up to and including 3.3.2. This can not be exploited in a fres… New CWE-79
Cross-site Scripting 		CVE-2025-24027 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
379 - - - Deserialization of Untrusted Data vulnerability in WOOEXIM.COM WOOEXIM allows Object Injection. This issue affects WOOEXIM: from n/a through 5.0.0. New CWE-502
 Deserialization of Untrusted Data 		CVE-2025-23944 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
380 - - - Unrestricted Upload of File with Dangerous Type vulnerability in NgocCode WP Load Gallery allows Upload a Web Shell to a Web Server. This issue affects WP Load Gallery: from n/a through 2.1.6. New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-23942 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm