Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196111 3.7 注意 GNU Project - GNU nano におけるファイルの所有者を変更される脆弱性 CWE-362
競合状態 		CVE-2010-1161 2012-06-26 16:19 2010-04-15 Show GitHub Exploit DB Packet Storm
196112 1.9 注意 GNU Project - GNU nano における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-1160 2012-06-26 16:19 2010-04-7 Show GitHub Exploit DB Packet Storm
196113 6.8 警告 Apache Software Foundation - Apache HTTP Server の mod_auth_shadow モジュールにおけるデータを変更される脆弱性 CWE-362
競合状態 		CVE-2010-1151 2012-06-26 16:19 2010-04-20 Show GitHub Exploit DB Packet Storm
196114 2.1 注意 freedesktop.org - udisks の probers/udisks-dm-export.c における暗号鍵を発見される脆弱性 CWE-200
情報漏えい 		CVE-2010-1149 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
196115 9.3 危険 georg greve - SpamAssassin Milter プラグインにおける任意のシステムコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-1132 2012-06-26 16:19 2010-03-27 Show GitHub Exploit DB Packet Storm
196116 4.3 警告 アップル
マイクロソフト		 - Apple Safari で使用される JavaScriptCore.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-1131 2012-06-26 16:19 2010-03-27 Show GitHub Exploit DB Packet Storm
196117 5.8 警告 アップル - WebKit の JavaScript 実装におけるキーストロークを form フィールドに送信される脆弱性 CWE-200
情報漏えい 		CVE-2010-1126 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
196118 2.1 注意 chip salzenberg - Chip Salzenberg Deliver におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-1123 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
196119 5 警告 ASP indir - LookMer Music Portal におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1116 2012-06-26 16:19 2010-03-25 Show GitHub Exploit DB Packet Storm
196120 5 警告 comscripts - Web Server Creator - Web Portal の news/include/customize.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1115 2012-06-26 16:19 2010-03-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1831 - - - SQL injection vulnerability in the ZimbraSync Service SOAP endpoint in Zimbra Collaboration 10.0.x before 10.0.12 and 10.1.x before 10.1.4 due to insufficient sanitization of a user-supplied paramete… - CVE-2025-25064 2025-02-7 05:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1832 - - - Incorrect Authorization vulnerability in Apache Cassandra allowing users to access a datacenter or IP/CIDR groups they should not be able to when using CassandraNetworkAuthorizer or CassandraCIDRAuth… - CVE-2025-24860 2025-02-7 05:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1833 4.3 MEDIUM
Network 		mozilla firefox
thunderbird 		The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2025-1019 2025-02-7 04:40 2025-02-4 Show GitHub Exploit DB Packet Storm
1834 5.3 MEDIUM
Network 		mozilla firefox
thunderbird 		The fullscreen notification is prematurely hidden when fullscreen is re-requested quickly by the user. This could have been leveraged to perform a potential spoofing attack. This vulnerability affect… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2025-1018 2025-02-7 04:40 2025-02-4 Show GitHub Exploit DB Packet Storm
1835 7.5 HIGH
Network 		mozilla firefox
thunderbird 		A race during concurrent delazification could have led to a use-after-free. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird <… CWE-416
 Use After Free 		CVE-2025-1012 2025-02-7 04:33 2025-02-4 Show GitHub Exploit DB Packet Storm
1836 8.8 HIGH
Network 		mozilla firefox
thunderbird 		A bug in WebAssembly code generation could have lead to a crash. It may have been possible for an attacker to leverage this to achieve code execution. This vulnerability affects Firefox < 135, Firefo… NVD-CWE-noinfo
CVE-2025-1011 2025-02-7 04:31 2025-02-4 Show GitHub Exploit DB Packet Storm
1837 8.8 HIGH
Network 		mozilla firefox
thunderbird 		An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < … CWE-416
 Use After Free 		CVE-2025-1010 2025-02-7 04:30 2025-02-4 Show GitHub Exploit DB Packet Storm
1838 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, … CWE-416
 Use After Free 		CVE-2025-1009 2025-02-7 04:28 2025-02-4 Show GitHub Exploit DB Packet Storm
1839 - - - Using API in the 2N OS device, authorized user can enable logging, which discloses valid authentication tokens in system log. - CVE-2024-13416 2025-02-7 04:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1840 - - - An information disclosure vulnerability exists in the Vault API functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to reading vaults that have been prev… - CVE-2024-43779 2025-02-7 04:15 2025-02-7 Show GitHub Exploit DB Packet Storm