Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195211 7.5 危険 Ganglia - Ganglia Web における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-3448 2012-08-9 11:48 2012-08-6 Show GitHub Exploit DB Packet Storm
195212 2.6 注意 Puppet - Puppet および Puppet Enterprise におけるエージェントを偽装される脆弱性 CWE-287
不適切な認証 		CVE-2012-3408 2012-08-9 11:42 2012-08-6 Show GitHub Exploit DB Packet Storm
195213 7.5 危険 シーメンス - Siemens Synco OZW Web Server における管理者のアクセス権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-3020 2012-08-9 11:32 2012-08-1 Show GitHub Exploit DB Packet Storm
195214 5 警告 Bitcoin Project - bitcoind および Bitcoin-Qt におけるサービス運用妨害 (プロセスハング) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-3789 2012-08-9 11:28 2012-06-20 Show GitHub Exploit DB Packet Storm
195215 5 警告 Bitcoin Project - bitcoind および Bitcoin-Qt におけるサービス運用妨害 (ブロック処理の停止および不正なブロックカウント) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-2459 2012-08-9 11:27 2012-05-14 Show GitHub Exploit DB Packet Storm
195216 7.5 危険 Bitcoin Project - Windows 上で稼働する Bitcoin-Qt におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2012-1910 2012-08-9 11:27 2012-03-17 Show GitHub Exploit DB Packet Storm
195217 5 警告 Bitcoin Project - 複数の製品で使用される Bitcoin プロトコルにおけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2012-1909 2012-08-9 11:25 2012-03-7 Show GitHub Exploit DB Packet Storm
195218 4.3 警告 Bitcoin Project - wxBitcoin および bitcoind における暗号化されていない秘密鍵を取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-4447 2012-08-9 11:24 2011-11-11 Show GitHub Exploit DB Packet Storm
195219 7.5 危険 Bitcoin Project - wxBitcoin および bitcoind における他のユーザが所有するビットコインを使われる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5141 2012-08-9 11:17 2010-07-28 Show GitHub Exploit DB Packet Storm
195220 5 警告 Bitcoin Project - wxBitcoin および bitcoind におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-5140 2012-08-9 10:54 2010-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1891 6.5 MEDIUM
Network 		mozilla thunderbird Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040. This vulnerability affects Thunderbird < 128.7 … NVD-CWE-noinfo
CVE-2025-0510 2025-02-7 06:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1892 - - - In Apache Cassandra it is possible for a local attacker without access to the Apache Cassandra process or configuration files to manipulate the RMI registry to perform a man-in-the-middle attack an… - CVE-2024-27137 2025-02-7 06:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1893 6.1 MEDIUM
Network 		- - IBM Jazz for Service Management 1.1.3 through 1.1.3.23 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI th… CWE-79
Cross-site Scripting 		CVE-2024-52892 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1894 - - - 2N Access Commander version 2.1 and prior is vulnerable in default settings to Man In The Middle attack due to not verifying certificates of 2N edge devices. - CVE-2024-47258 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1895 - - - Successful exploitation of this vulnerability could allow an attacker (who needs to have Admin access privileges) to read hardcoded AES passphrase, which may be used for decryption of certain data wi… - CVE-2024-47256 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1896 - - - Specifically crafted payloads sent to the RFID reader could cause DoS of RFID reader. After the device is restarted, it gets back to fully working state. - CVE-2024-13417 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1897 - - - WhoDB is an open source database management tool. In affected versions the application is vulnerable to parameter injection in database connection strings, which allows an attacker to read local file… - CVE-2025-24787 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1898 - - - WhoDB is an open source database management tool. While the application only displays Sqlite3 databases present in the directory `/db`, there is no path traversal prevention in place. This allows an … - CVE-2025-24786 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1899 - - - Cross Site Request Forgery (CSRF) in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authen… - CVE-2024-57523 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1900 - - - SQL injection vulnerability in the ZimbraSync Service SOAP endpoint in Zimbra Collaboration 10.0.x before 10.0.12 and 10.1.x before 10.1.4 due to insufficient sanitization of a user-supplied paramete… - CVE-2025-25064 2025-02-7 05:15 2025-02-4 Show GitHub Exploit DB Packet Storm