Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195211 7.5 危険 Ganglia - Ganglia Web における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-3448 2012-08-9 11:48 2012-08-6 Show GitHub Exploit DB Packet Storm
195212 2.6 注意 Puppet - Puppet および Puppet Enterprise におけるエージェントを偽装される脆弱性 CWE-287
不適切な認証 		CVE-2012-3408 2012-08-9 11:42 2012-08-6 Show GitHub Exploit DB Packet Storm
195213 7.5 危険 シーメンス - Siemens Synco OZW Web Server における管理者のアクセス権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-3020 2012-08-9 11:32 2012-08-1 Show GitHub Exploit DB Packet Storm
195214 5 警告 Bitcoin Project - bitcoind および Bitcoin-Qt におけるサービス運用妨害 (プロセスハング) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-3789 2012-08-9 11:28 2012-06-20 Show GitHub Exploit DB Packet Storm
195215 5 警告 Bitcoin Project - bitcoind および Bitcoin-Qt におけるサービス運用妨害 (ブロック処理の停止および不正なブロックカウント) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-2459 2012-08-9 11:27 2012-05-14 Show GitHub Exploit DB Packet Storm
195216 7.5 危険 Bitcoin Project - Windows 上で稼働する Bitcoin-Qt におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2012-1910 2012-08-9 11:27 2012-03-17 Show GitHub Exploit DB Packet Storm
195217 5 警告 Bitcoin Project - 複数の製品で使用される Bitcoin プロトコルにおけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2012-1909 2012-08-9 11:25 2012-03-7 Show GitHub Exploit DB Packet Storm
195218 4.3 警告 Bitcoin Project - wxBitcoin および bitcoind における暗号化されていない秘密鍵を取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-4447 2012-08-9 11:24 2011-11-11 Show GitHub Exploit DB Packet Storm
195219 7.5 危険 Bitcoin Project - wxBitcoin および bitcoind における他のユーザが所有するビットコインを使われる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5141 2012-08-9 11:17 2010-07-28 Show GitHub Exploit DB Packet Storm
195220 5 警告 Bitcoin Project - wxBitcoin および bitcoind におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-5140 2012-08-9 10:54 2010-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1871 3.1 LOW
Network 		- - A vulnerability classified as problematic was found in Mindskip xzs-mysql ????????? 3.9.0. Affected by this vulnerability is an unknown functionality of the component CORS Handler. The manipulation l… CWE-346
CWE-942
 Origin Validation Error
 Permissive Cross-domain Policy with Untrusted Domains 		CVE-2025-1083 2025-02-7 08:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1872 3.5 LOW
Network 		- - A vulnerability classified as problematic has been found in Mindskip xzs-mysql ????????? 3.9.0. Affected is an unknown function of the file /api/admin/question/edit of the component Exam Edit Handler… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-1082 2025-02-7 08:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1873 - - - On Darwin, building a Go module which contains CGO can trigger arbitrary code execution when using the Apple version of ld, due to usage of the @executable_path, @loader_path, or @rpath special value… - CVE-2025-22867 2025-02-7 07:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1874 - - - An SQL injection vulnerability in the pjActionGetUser function of PHPJabbers Cinema Booking System v2.0 allows attackers to manipulate database queries via the column parameter. Exploiting this flaw … - CVE-2024-57430 2025-02-7 07:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1875 - - - A cross-site request forgery (CSRF) vulnerability in the pjActionUpdate function of PHPJabbers Cinema Booking System v2.0 allows remote attackers to escalate privileges by tricking an authenticated a… - CVE-2024-57429 2025-02-7 07:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1876 - - - A stored cross-site scripting (XSS) vulnerability in PHPJabbers Cinema Booking System v2.0 exists due to unsanitized input in file upload fields (event_img, seat_maps) and seat number configurations … - CVE-2024-57428 2025-02-7 07:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1877 - - - In Newgensoft OmniDocs 11.0_SP1_03_006, Insecure Direct Object Reference (IDOR) in the getuserproperty function allows user's configuration and PII to be stolen. - CVE-2024-39033 2025-02-7 07:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1878 5.4 MEDIUM
Network 		mozilla thunderbird The Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attacker to create and export an address book containing a malicious payload in a field. For example, in … NVD-CWE-noinfo
CVE-2025-1015 2025-02-7 07:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1879 3.1 LOW
Adjacent 		- - A vulnerability was found in Bharti Airtel Xstream Fiber up to 20250123. It has been rated as problematic. This issue affects some unknown processing of the component WiFi Password Handler. The manip… CWE-1391
 Use of Weak Credentials 		CVE-2025-1081 2025-02-7 06:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1880 - - - Certain HP LaserJet Pro printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer via IPP (Internet Printing Protocol). - CVE-2025-1004 2025-02-7 06:15 2025-02-7 Show GitHub Exploit DB Packet Storm