Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 19, 2025, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194891	6.9	警告	FreeBSD	-	FreeBSD の ZIL の replay 機能における不正なファイルを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0318	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

194892	9.3	危険	Google	-	Google SketchUp におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0316	2012-06-26 16:19	2010-01-15	Show	GitHub Exploit DB Packet Storm

194893	5	警告	アップル	-	Apple Safari におけるリダイレクト先の URL を発見される脆弱性	CWE-Other その他	CVE-2010-0314	2012-06-26 16:19	2010-01-14	Show	GitHub Exploit DB Packet Storm

194894	4.3	警告	francisco cifuentes TYPO3 Association	-	TYPO3 の vote_for_tt_news 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0335	2012-06-26 16:19	2009-08-7	Show	GitHub Exploit DB Packet Storm

194895	7.5	危険	francisco cifuentes TYPO3 Association	-	TYPO3 の vote_for_tt_news 拡張の Vote rank における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0334	2012-06-26 16:19	2009-08-7	Show	GitHub Exploit DB Packet Storm

194896	7.8	危険	Linux シスコシステムズ	-	Cisco Security Agent におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-0148	2012-06-26 16:19	2010-02-17	Show	GitHub Exploit DB Packet Storm

194897	6.5	警告	シスコシステムズ	-	Management Center for Cisco Security Agents における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0147	2012-06-26 16:19	2010-02-17	Show	GitHub Exploit DB Packet Storm

194898	6.8	警告	シスコシステムズ	-	Management Center for Cisco Security Agents におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0146	2012-06-26 16:19	2010-02-17	Show	GitHub Exploit DB Packet Storm

194899	10	危険	シスコシステムズ	-	Cisco IronPort Encryption Appliance などに組み込まれている HTTPS サーバにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-0145	2012-06-26 16:19	2010-02-10	Show	GitHub Exploit DB Packet Storm

194900	7.8	危険	シスコシステムズ	-	Cisco IronPort Encryption Appliance などに組み込まれている WebSafe DistributorServlet における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2010-0144	2012-06-26 16:19	2010-02-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
101	-		-	-	WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the id_funcionario parameter. New	-	CVE-2024-57031	2025-01-18 05:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

102	-		-	-	A vulnerability exists in Algo Edge up to 2.1.1 - a previously used (legacy) component of navify® Algorithm Suite. The vulnerability impacts the authentication mechanism of this component and could … New	-	CVE-2024-13026	2025-01-18 05:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

103	6.3	MEDIUM Network	-	-	A vulnerability classified as critical has been found in Codezips Gym Management System 1.0. This affects an unknown part of the file /dashboard/admin/edit_mem_submit.php. The manipulation of the arg… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0535	2025-01-18 04:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

104	6.3	MEDIUM Network	-	-	A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/new_submit.php. The manipulation of t… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0532	2025-01-18 03:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

105	-		-	-	Belledonne Communications Linphone-Desktop is vulnerable to a NULL Dereference vulnerability, which could allow a remote attacker to create a denial-of-service condition. New	CWE-476 NULL Pointer Dereference	CVE-2025-0430	2025-01-18 03:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

106	-		-	-	Nedap Librix Ecoreader is missing authentication for critical functions that could allow an unauthenticated attacker to potentially execute malicious code. New	CWE-306 Missing Authentication for Critical Function	CVE-2024-12757	2025-01-18 03:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

107	-		-	-	Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the limitSpeedUp parameter in the formSetClientState function. New	-	CVE-2024-57579	2025-01-18 03:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

108	-		-	-	Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the funcpara1 parameter in the formSetCfm function. New	-	CVE-2024-57578	2025-01-18 03:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

109	-		-	-	Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the speed_dir parameter in the formSetSpeedWan function. New	-	CVE-2024-57577	2025-01-18 03:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

110	-		-	-	JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component validRoleKey?sysRole.key. New	-	CVE-2024-57768	2025-01-18 03:15	2025-01-17	Show	GitHub Exploit DB Packet Storm