Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 27, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196351 6.8 警告 gander - MyFusion の infusions/last_seen_users_panel/last_seen_users_panel.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2611 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
196352 7.5 危険 amotools
Joomla!		 - Joomla! の amocourse コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2609 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
196353 6.8 警告 chatelao - PHP Address Book における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2608 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
196354 5 警告 brainjar - ASP Football Pool におけるデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2606 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
196355 7.5 危険 Escon Information Consulting - Escon SupportPortal Pro の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2603 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
196356 5 警告 Akiva - Webboard の view.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2600 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
196357 4.3 警告 censura - Censura の productSearch.html におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2595 2012-06-26 16:10 2009-07-24 Show GitHub Exploit DB Packet Storm
196358 4.3 警告 censura - Censura の censura.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2594 2012-06-26 16:10 2009-07-24 Show GitHub Exploit DB Packet Storm
196359 7.5 危険 censura - Censura の censura.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2593 2012-06-26 16:10 2009-07-24 Show GitHub Exploit DB Packet Storm
196360 4.3 警告 dragdropcart - DragDropCart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2587 2012-06-26 16:10 2009-07-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 28, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1011 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows Reflected XSS. This issue affec… CWE-79
Cross-site Scripting 		CVE-2024-49300 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1012 - - - Incorrect Privilege Assignment vulnerability in NotFound Easy Real Estate allows Privilege Escalation. This issue affects Easy Real Estate: from n/a through 2.2.6. CWE-266
 Incorrect Privilege Assignment 		CVE-2024-32555 2025-01-21 23:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1013 - - - In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix variable not being completed when function returns When cmd_alloc_index(), fails cmd_work_handler() needs to comple… - CVE-2025-21662 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1014 - - - In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix missing lookup table cleanups When a virtuser device is created via configfs and the probe fails due to an in… - CVE-2025-21661 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1015 - - - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix unexpectedly changed path in ksmbd_vfs_kern_path_locked When `ksmbd_vfs_kern_path_locked` met an error and it is not t… - CVE-2025-21660 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1016 - - - In the Linux kernel, the following vulnerability has been resolved: netdev: prevent accessing NAPI instances from another namespace The NAPI IDs were not fully exposed to user space prior to the ne… - CVE-2025-21659 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1017 - - - In the Linux kernel, the following vulnerability has been resolved: hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur scsi_execute_cmd() function can return both negative … - CVE-2025-21656 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1018 - - - In the Linux kernel, the following vulnerability has been resolved: exfat: fix the new buffer was not zeroed before writing Before writing, if a buffer_head marked as new, its data must be zeroed, … - CVE-2024-57943 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1019 - - - In the Linux kernel, the following vulnerability has been resolved: net: stmmac: dwmac-tegra: Read iommu stream id from device tree Nvidia's Tegra MGBE controllers require the IOMMU "Stream ID" (SI… - CVE-2025-21663 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
1020 - - - In the Linux kernel, the following vulnerability has been resolved: sched_ext: Replace rq_lock() to raw_spin_rq_lock() in scx_ops_bypass() scx_ops_bypass() iterates all CPUs to re-enqueue all the s… - CVE-2025-21657 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm