Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196021 9.3 危険 cursorarts - CursorArts ZipWrangler におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1685 2012-06-26 16:19 2010-05-4 Show GitHub Exploit DB Packet Storm
196022 6.8 警告 dan pascu - Dan Pascu python-cjson におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1666 2012-06-26 16:19 2010-07-2 Show GitHub Exploit DB Packet Storm
196023 7.5 危険 clscript - CLScript Classifieds Script の help-details.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1660 2012-06-26 16:19 2010-05-3 Show GitHub Exploit DB Packet Storm
196024 5 警告 code-garage - Joomla! の Code-Garage noticeboard コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1658 2012-06-26 16:19 2010-05-3 Show GitHub Exploit DB Packet Storm
196025 7.5 危険 airiny - Joomla! 用の Airiny ABC コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1656 2012-06-26 16:19 2010-05-3 Show GitHub Exploit DB Packet Storm
196026 6.5 警告 The Cacti Group - Red Hat HPC Solution などの製品で使用される Cacti における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1645 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
196027 4.3 警告 The Cacti Group - Red Hat HPC Solution などの製品で使用される Cacti におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1644 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
196028 4.3 警告 ClamAV - ClamAV の parseicon 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-1640 2012-06-26 16:19 2010-05-18 Show GitHub Exploit DB Packet Storm
196029 4.3 警告 ClamAV - ClamAV の cli_pdf 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-1639 2012-06-26 16:19 2010-05-10 Show GitHub Exploit DB Packet Storm
196030 7.2 危険 GNUstep - GNUstep Base の gdomap の load_iface 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1620 2012-06-26 16:19 2010-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 21, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1721 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort so… CWE-787
 Out-of-bounds Write 		CVE-2025-1017 2025-02-7 06:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1722 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption a… CWE-787
 Out-of-bounds Write 		CVE-2025-1016 2025-02-7 06:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1723 8.8 HIGH
Network 		mozilla firefox
thunderbird 		Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability affects Firefox < 135, Firefox ESR < 128.7, Thunderbird … CWE-295
Improper Certificate Validation  		CVE-2025-1014 2025-02-7 06:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1724 6.5 MEDIUM
Network 		mozilla thunderbird Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040. This vulnerability affects Thunderbird < 128.7 … NVD-CWE-noinfo
CVE-2025-0510 2025-02-7 06:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1725 - - - In Apache Cassandra it is possible for a local attacker without access to the Apache Cassandra process or configuration files to manipulate the RMI registry to perform a man-in-the-middle attack an… - CVE-2024-27137 2025-02-7 06:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1726 6.1 MEDIUM
Network 		- - IBM Jazz for Service Management 1.1.3 through 1.1.3.23 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI th… CWE-79
Cross-site Scripting 		CVE-2024-52892 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1727 - - - 2N Access Commander version 2.1 and prior is vulnerable in default settings to Man In The Middle attack due to not verifying certificates of 2N edge devices. - CVE-2024-47258 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1728 - - - Successful exploitation of this vulnerability could allow an attacker (who needs to have Admin access privileges) to read hardcoded AES passphrase, which may be used for decryption of certain data wi… - CVE-2024-47256 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1729 - - - Specifically crafted payloads sent to the RFID reader could cause DoS of RFID reader. After the device is restarted, it gets back to fully working state. - CVE-2024-13417 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1730 - - - WhoDB is an open source database management tool. In affected versions the application is vulnerable to parameter injection in database connection strings, which allows an attacker to read local file… - CVE-2025-24787 2025-02-7 05:15 2025-02-7 Show GitHub Exploit DB Packet Storm