Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 9, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195611	2.1	注意	Debian	-	sabre の XRunSabre におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2008-4407	2012-06-26 16:02	2008-07-20	Show	GitHub Exploit DB Packet Storm

195612	7.2	危険	Debian	-	sabre の run スクリプトへの特定の Debian のパッチにおける任意のファイルを削除される脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4406	2012-06-26 16:02	2008-07-20	Show	GitHub Exploit DB Packet Storm

195613	6.9	警告	Gentoo Linux	-	Portage における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2008-4394	2012-06-26 16:02	2008-10-9	Show	GitHub Exploit DB Packet Storm

195614	9.3	危険	シスコシステムズ	-	Cisco Linksys WVC54GC ワイアレスビデオカメラにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4391	2012-06-26 16:02	2008-12-8	Show	GitHub Exploit DB Packet Storm

195615	10	危険	シスコシステムズ	-	Cisco Linksys WVC54GC ワイアレスビデオカメラにおけるパスワードなどの重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-4390	2012-06-26 16:02	2008-12-8	Show	GitHub Exploit DB Packet Storm

195616	10	危険	日本アルカテル・ルーセント Alcatel-Lucent	-	Alcatel OmniSwitch デバイスにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4383	2012-06-26 16:02	2008-08-6	Show	GitHub Exploit DB Packet Storm

195617	7.5	危険	creative mind	-	Creative Mind Creator CMS の index.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4377	2012-06-26 16:02	2008-10-1	Show	GitHub Exploit DB Packet Storm

195618	7.5	危険	availscript	-	Availscript Classmate Script の viewprofile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4375	2012-06-26 16:02	2008-10-1	Show	GitHub Exploit DB Packet Storm

195619	7.5	危険	cmsbuzz	-	CMS Buzz の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4374	2012-06-26 16:02	2008-10-1	Show	GitHub Exploit DB Packet Storm

195620	7.5	危険	availscript	-	AvailScript Job Portal Script の job_seeker/applynow.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4373	2012-06-26 16:02	2008-10-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
31	-		-	-	An issue was discovered in Ovidentia 8.3. The file upload feature does not prevent the uploading of executable files. A user can upload a .png file containing PHP code and then rename it to have the … New	-	CVE-2022-41573	2025-01-9 00:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

32	-		-	-	An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Privilege escalation can be accomplished on the server because nmap can be run as root. The attacker achieves total control over the ser… New	-	CVE-2022-41572	2025-01-9 00:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

33	-		-	-	Improper Access Controls allows access to protected views. New	-	CVE-2024-40749	2025-01-9 00:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

34	-		-	-	Lack of output escaping in the id attribute of menu lists. New	-	CVE-2024-40748	2025-01-9 00:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

35	-		-	-	Memory safety bugs present in Firefox 133 and Thunderbird 133. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited t… New	-	CVE-2025-0247	2025-01-9 00:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

36	-		-	-	Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.1.0 before 8.0.0 Description: Default clustering instructions at https://openmeetings.apache.org/Clustering.htm… New	-	CVE-2024-54676	2025-01-8 23:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

37	-		-	-	Insufficient Session Expiration vulnerability in Apache Airflow Fab Provider. This issue affects Apache Airflow Fab Provider: before 1.5.2. When user password has been changed with admin CLI, the s… New	-	CVE-2024-45033	2025-01-8 23:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

38	-		-	-	The MinigameCenter module has insufficient restrictions on loading URLs, which may lead to some information leakage. New	-	CVE-2024-13186	2025-01-8 23:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

39	-		-	-	IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting (XSS) via the meta parameter. New	-	CVE-2024-55218	2025-01-8 23:15	2025-01-8	Show	GitHub Exploit DB Packet Storm

40	6.5	MEDIUM Network	progress	whatsup_gold	In WhatsUp Gold versions released before 2024.0.2, an authenticated user can use a specially crafted HTTP request that can lead to information disclosure. Update	CWE-22 Path Traversal	CVE-2024-12105	2025-01-8 23:15	2024-12-31	Show	GitHub Exploit DB Packet Storm