Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Jan. 16, 2025, 6:05 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195311 | 6.8 | 警告 | elvinbts | - | Elvin の login.php におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-2129 | 2012-06-26 16:10 | 2009-06-19 | Show | GitHub Exploit DB Packet Storm |
| 195312 | 7.5 | 危険 | elvinbts | - | Elvin の close_bug.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-2128 | 2012-06-26 16:10 | 2009-06-19 | Show | GitHub Exploit DB Packet Storm |
| 195313 | 4.3 | 警告 | elvinbts | - | Elvin の show_activity.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-2127 | 2012-06-26 16:10 | 2009-06-19 | Show | GitHub Exploit DB Packet Storm |
| 195314 | 4.3 | 警告 | elvinbts | - | Elvin の close_bug.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-2126 | 2012-06-26 16:10 | 2009-06-19 | Show | GitHub Exploit DB Packet Storm |
| 195315 | 4 | 警告 | elvinbts | - | Elvin の delete_bug.php における任意のバグを削除される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-2125 | 2012-06-26 16:10 | 2009-06-19 | Show | GitHub Exploit DB Packet Storm |
| 195316 | 7.5 | 危険 | elvinbts | - | Elvin の page.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-2124 | 2012-06-26 16:10 | 2009-06-19 | Show | GitHub Exploit DB Packet Storm |
| 195317 | 7.5 | 危険 | elvinbts | - | Elvin における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-2123 | 2012-06-26 16:10 | 2009-06-19 | Show | GitHub Exploit DB Packet Storm |
| 195318 | 4.3 | 警告 | F5 Networks | - | F5 FirePass SSL VPN のログインインターフェースにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-2119 | 2012-06-26 16:10 | 2009-06-18 | Show | GitHub Exploit DB Packet Storm |
| 195319 | 7.5 | 危険 | daan sprenkels | - | FretsWeb における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-2113 | 2012-06-26 16:10 | 2009-06-18 | Show | GitHub Exploit DB Packet Storm |
| 195320 | 7.5 | 危険 | frank-karau | - | phpFK の include/page_bottom.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-2112 | 2012-06-26 16:10 | 2009-06-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Jan. 17, 2025, 5:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 451 | 8.1 |
HIGH
Network |
- | - | Microsoft Digest Authentication Remote Code Execution Vulnerability New |
CWE-591
Sensitive Data Storage in Improperly Locked Memory |
CVE-2025-21294 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 452 | 8.8 |
HIGH
Network |
- | - | Active Directory Domain Services Elevation of Privilege Vulnerability New |
CWE-284
Improper Access Control |
CVE-2025-21293 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 453 | 8.8 |
HIGH
Local |
- | - | Windows Search Service Elevation of Privilege Vulnerability New |
CWE-94
Code Injection |
CVE-2025-21292 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 454 | 8.8 |
HIGH
Network |
- | - | Windows Direct Show Remote Code Execution Vulnerability New |
CWE-415
Double Free |
CVE-2025-21291 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 455 | 7.5 |
HIGH
Network
-
|
-
|
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
New
|
CWE-400
|
Uncontrolled Resource Consumption
CVE-2025-21290
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 456 | 7.5 |
HIGH
Network
-
|
-
|
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
New
|
CWE-400
|
Uncontrolled Resource Consumption
CVE-2025-21289
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 457 | 6.5 |
MEDIUM
Local |
- | - | Windows COM Server Information Disclosure Vulnerability New |
CWE-908
Use of Uninitialized Resource |
CVE-2025-21288 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 458 | 7.8 |
HIGH
Local |
- | - | Windows Installer Elevation of Privilege Vulnerability New |
CWE-269
Improper Privilege Management |
CVE-2025-21287 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 459 | 8.8 |
HIGH
Network |
- | - | Windows Telephony Service Remote Code Execution Vulnerability New |
CWE-122
Heap-based Buffer Overflow |
CVE-2025-21286 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 460 | 7.5 |
HIGH
Network
-
|
-
|
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
New
|
CWE-476
|
NULL Pointer Dereference
CVE-2025-21285
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|