Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195561 9.3 危険 Esri - ESRI ArcMap および ArcGI における任意の VBA コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1661 2012-07-17 16:29 2012-07-12 Show GitHub Exploit DB Packet Storm
195562 6.8 警告 eXtplorer - eXtplorer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3362 2012-07-17 16:27 2012-07-12 Show GitHub Exploit DB Packet Storm
195563 10 危険 Lawrence Berkeley National Laboratory - arpwatch における root 権限を取得される脆弱性 CWE-DesignError
CVE-2012-2653 2012-07-17 16:26 2012-07-12 Show GitHub Exploit DB Packet Storm
195564 5 警告 Mahara - Mahara の auth/saml プラグインのデフォルト設定におけるユーザになりすまされる脆弱性 CWE-16
環境設定 		CVE-2012-2351 2012-07-17 16:21 2012-03-6 Show GitHub Exploit DB Packet Storm
195565 6.8 警告 NiH - libzip の zip_open.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-1163 2012-07-17 16:19 2012-03-20 Show GitHub Exploit DB Packet Storm
195566 7.5 危険 NiH - libzip の zip_open.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1162 2012-07-17 16:18 2012-03-20 Show GitHub Exploit DB Packet Storm
195567 6.5 警告 GLPI-PROJECT.ORG - GLPI の front/popup.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1037 2012-07-17 16:17 2012-02-9 Show GitHub Exploit DB Packet Storm
195568 5.5 警告 Tryton - Tryton アプリケーションフレームワークにおける任意のユーザの権限を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0215 2012-07-17 16:09 2012-03-28 Show GitHub Exploit DB Packet Storm
195569 5 警告 Tiki Software Community Association - TikiWiki CMS/Groupware におけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3996 2012-07-17 16:04 2012-07-12 Show GitHub Exploit DB Packet Storm
195570 7.5 危険 Adrian Chadd - RTG および RTG2 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3881 2012-07-17 16:03 2012-07-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1341 - - - An argument injection vulnerability in the diagnose and import pac commands in WatchGuard Fireware OS before 12.8.1, 12.1.4, and 12.5.10 allows an authenticated remote attacker with unprivileged cred… - CVE-2022-31749 2025-01-28 09:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1342 - - - Anubis is a tool that allows administrators to protect bots against AI scrapers through bot-checking heuristics and a proof-of-work challenge to discourage scraping from multiple IP addresses. Anubis… CWE-807
 Reliance on Untrusted Inputs in a Security Decision 		CVE-2025-24369 2025-01-28 08:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1343 6.5 MEDIUM
Network 		- - IBM Watson Query on Cloud Pak for Data (IBM Data Virtualization 1.8, 2.0, 2.1, 2.2, and 3.0.0) could allow an authenticated user to obtain sensitive information from objects published using Watson Qu… CWE-497
 Exposure of Sensitive System Information to an Unauthorized Control Sphere 		CVE-2024-37526 2025-01-28 07:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1344 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `Handover Required` message missing a re… - CVE-2023-37011 2025-01-28 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1345 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `eNB Status Transfer` message missing a… - CVE-2023-37010 2025-01-28 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1346 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `Handover Notification` message missing … - CVE-2023-37009 2025-01-28 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1347 - - - An issue in System.Linq.Dynamic.Core before 1.6.0 allows remote access to properties on reflection types and static properties/fields. - CVE-2024-51417 2025-01-28 07:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1348 6.3 MEDIUM
Network 		- - A vulnerability classified as critical was found in Axiomatic Bento4 up to 1.6.0. This vulnerability affects the function AP4_StdcFileByteStream::ReadPartial of the component mp42aac. The manipulatio… CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2025-0753 2025-01-28 06:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1349 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `Initial UE Message` message missing a … - CVE-2023-37012 2025-01-28 06:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1350 - - - SSRF vulnerability in Edit Service Page of Apache Ranger UI in Apache Ranger Version 2.4.0. Users are recommended to upgrade to version Apache Ranger 2.5.0, which fixes this issue. - CVE-2024-45479 2025-01-28 06:15 2025-01-22 Show GitHub Exploit DB Packet Storm