Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 19, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194881 9.3 危険 マイクロソフト
アドビシステムズ		 - Microsoft Windows XP に同梱されている Adobe Flash Player の Macromedia Flash ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0379 2012-06-26 16:19 2010-01-12 Show GitHub Exploit DB Packet Storm
194882 4.3 警告 codingfish
Joomla!		 - Joomla! の marketplace コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0374 2012-06-26 16:19 2010-01-21 Show GitHub Exploit DB Packet Storm
194883 7.5 危険 bitscripts - BitScripts Bits Video Script における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0367 2012-06-26 16:19 2010-01-21 Show GitHub Exploit DB Packet Storm
194884 6.8 警告 bitscripts - BitScripts Bits Video Script の register.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0366 2012-06-26 16:19 2010-01-21 Show GitHub Exploit DB Packet Storm
194885 4.3 警告 bitscripts - BitScripts Bits Video Script の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0365 2012-06-26 16:19 2010-01-21 Show GitHub Exploit DB Packet Storm
194886 7.5 危険 TYPO3 Association
arco van geest		 - TYPO3 の Photo Book 拡張におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0350 2012-06-26 16:19 2010-01-15 Show GitHub Exploit DB Packet Storm
194887 7.5 危険 Alex Kellner
TYPO3 Association		 - TYPO3 の powermail extension における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0329 2012-06-26 16:19 2010-01-15 Show GitHub Exploit DB Packet Storm
194888 4.3 警告 francois suter
TYPO3 Association		 - TYPO3 の evlog 拡張におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0326 2012-06-26 16:19 2010-01-15 Show GitHub Exploit DB Packet Storm
194889 7.8 危険 TYPO3 Association
arco van geest		 - TYPO3 の Photo Book 拡張における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0323 2012-06-26 16:19 2010-01-15 Show GitHub Exploit DB Packet Storm
194890 4.3 警告 docmint - Docmint の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0319 2012-06-26 16:19 2010-01-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
151 7.3 HIGH
Network 		- - A vulnerability classified as critical was found in code-projects Admission Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /signupconfirm.php. The manip… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0527 2025-01-17 23:15 2025-01-17 Show GitHub Exploit DB Packet Storm
152 - - - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Newtec NTC2218, NTC2250, NTC2299 on Linux, PowerPC, ARM (Updating signaling process in the swdownload binary mo… New - CVE-2024-13503 2025-01-17 23:15 2025-01-17 Show GitHub Exploit DB Packet Storm
153 - - - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Newtec/iDirect NTC2218, NTC2250, NTC2299 on Linux, PowerPC, ARM allows Local Code Inclusion… New - CVE-2024-13502 2025-01-17 23:15 2025-01-17 Show GitHub Exploit DB Packet Storm
154 - - - In the Linux kernel, the following vulnerability has been resolved: drm: adv7511: Fix use-after-free in adv7533_attach_dsi() The host_node pointer was assigned and freed in adv7533_parse_dt(), and … Update - CVE-2024-57887 2025-01-17 23:15 2025-01-15 Show GitHub Exploit DB Packet Storm
155 - - - In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv When mounting ocfs2 and then remounting it as read-only, a slab-u… Update - CVE-2024-57892 2025-01-17 23:15 2025-01-15 Show GitHub Exploit DB Packet Storm
156 - - - In the Linux kernel, the following vulnerability has been resolved: workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker After commit 746ae46c1113 ("drm/sched: Mar… Update - CVE-2024-57888 2025-01-17 23:15 2025-01-15 Show GitHub Exploit DB Packet Storm
157 - - - In the Linux kernel, the following vulnerability has been resolved: mm: hugetlb: independent PMD page table shared count The folio refcount may be increased unexpectly through try_get_folio() by ca… Update - CVE-2024-57883 2025-01-17 23:15 2025-01-15 Show GitHub Exploit DB Packet Storm
158 - - - In the Linux kernel, the following vulnerability has been resolved: ceph: give up on paths longer than PATH_MAX If the full path to be built by ceph_mdsc_build_path() happens to be longer than PATH… Update - CVE-2024-53685 2025-01-17 23:15 2025-01-11 Show GitHub Exploit DB Packet Storm
159 - - - CWE-502: Deserialization of untrusted data vulnerability exists that could lead to loss of confidentiality, integrity and potential remote code execution on workstation when a non-admin authenticated… New CWE-502
 Deserialization of Untrusted Data 		CVE-2024-12703 2025-01-17 20:15 2025-01-17 Show GitHub Exploit DB Packet Storm
160 - - - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of restricted web page, modification of web page and denial of service… New CWE-200
Information Exposure 		CVE-2024-12142 2025-01-17 20:15 2025-01-17 Show GitHub Exploit DB Packet Storm