Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 25, 2025, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196171	6.8	警告	arabless	-	SaphpLesson の admin/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2883	2012-06-26 16:10	2009-08-20	Show	GitHub Exploit DB Packet Storm

196172	4.3	警告	datingpro	-	PG MatchMaking におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2882	2012-06-26 16:10	2009-08-20	Show	GitHub Exploit DB Packet Storm

196173	7.5	危険	artis.imag	-	Basilic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2881	2012-06-26 16:10	2009-08-20	Show	GitHub Exploit DB Packet Storm

196174	7.3	危険	シスコシステムズ	-	Cisco Aironet Lightweight Access Point などの OTAP 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-2861	2012-06-26 16:10	2009-08-25	Show	GitHub Exploit DB Packet Storm

196175	4.3	警告	classifiedphpscript	-	PHP Open Classifieds Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2785	2012-06-26 16:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

196176	7.5	危険	garagesalesjunkie	-	GarageSales Script の visitor/view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2777	2012-06-26 16:10	2009-08-14	Show	GitHub Exploit DB Packet Storm

196177	4.3	警告	freearcadescript	-	Free Arcade Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2771	2012-06-26 16:10	2009-08-14	Show	GitHub Exploit DB Packet Storm

196178	7.5	危険	dd-wrt	-	DD-WRT 24 sp1 の管理 GUI の httpd の httpd.c における設定を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2766	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

196179	8.3	危険	dd-wrt	-	DD-WRT 24 sp1 の管理 GUI の httpd の httpd.c における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2765	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

196180	7.2	危険	Avira	-	複数の Avira 製品で使用されるスケジューラにおける権限を取得される脆弱性	CWE-Other その他	CVE-2009-2761	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
951	7.8	HIGH Local	microsoft	365_apps office	Microsoft Excel Security Feature Bypass Vulnerability	NVD-CWE-noinfo	CVE-2025-21364	2025-01-18 00:11	2025-01-15	Show	GitHub Exploit DB Packet Storm

952	7.8	HIGH Local	microsoft	365_apps office	Microsoft Word Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2025-21363	2025-01-18 00:10	2025-01-15	Show	GitHub Exploit DB Packet Storm

953	7.3	HIGH Network	-	-	A vulnerability classified as critical was found in code-projects Admission Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /signupconfirm.php. The manip…	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0527	2025-01-17 23:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

954	-		-	-	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Newtec NTC2218, NTC2250, NTC2299 on Linux, PowerPC, ARM (Updating signaling process in the swdownload binary mo…	-	CVE-2024-13503	2025-01-17 23:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

955	-		-	-	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Newtec/iDirect NTC2218, NTC2250, NTC2299 on Linux, PowerPC, ARM allows Local Code Inclusion…	-	CVE-2024-13502	2025-01-17 23:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

956	-		-	-	In the Linux kernel, the following vulnerability has been resolved: workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker After commit 746ae46c1113 ("drm/sched: Mar…	-	CVE-2024-57888	2025-01-17 23:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

957	-		-	-	In the Linux kernel, the following vulnerability has been resolved: mm: hugetlb: independent PMD page table shared count The folio refcount may be increased unexpectly through try_get_folio() by ca…	-	CVE-2024-57883	2025-01-17 23:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

958	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ceph: give up on paths longer than PATH_MAX If the full path to be built by ceph_mdsc_build_path() happens to be longer than PATH…	-	CVE-2024-53685	2025-01-17 23:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

959	-		-	-	CWE-502: Deserialization of untrusted data vulnerability exists that could lead to loss of confidentiality, integrity and potential remote code execution on workstation when a non-admin authenticated…	CWE-502 Deserialization of Untrusted Data	CVE-2024-12703	2025-01-17 20:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

960	-		-	-	CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of restricted web page, modification of web page and denial of service…	CWE-200 Information Exposure	CVE-2024-12142	2025-01-17 20:15	2025-01-17	Show	GitHub Exploit DB Packet Storm