Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196381 4.3 警告 edgephp - EZodiak の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4684 2012-06-26 16:19 2010-03-10 Show GitHub Exploit DB Packet Storm
196382 4.3 警告 frank-karau - phpFK PHP Forum ohne の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4677 2012-06-26 16:19 2010-03-8 Show GitHub Exploit DB Packet Storm
196383 9.3 危険 JetAudio - jetAudio の JetCast.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4676 2012-06-26 16:19 2010-03-5 Show GitHub Exploit DB Packet Storm
196384 7.5 危険 WordPress.org
grupenet		 - WordPress 用 WP-Lytebox プラグインの main.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4672 2012-06-26 16:19 2010-03-5 Show GitHub Exploit DB Packet Storm
196385 7.5 危険 beaussier - RoomPHPlanning の Login.php における管理アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2009-4671 2012-06-26 16:19 2010-03-5 Show GitHub Exploit DB Packet Storm
196386 7.5 危険 beaussier - RoomPHPlanning の admin/delitem.php における任意のルームを削除される脆弱性 CWE-287
不適切な認証 		CVE-2009-4670 2012-06-26 16:19 2010-03-5 Show GitHub Exploit DB Packet Storm
196387 7.5 危険 beaussier - RoomPHPlanning における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4669 2012-06-26 16:19 2010-03-5 Show GitHub Exploit DB Packet Storm
196388 9.3 危険 JetAudio - jetAudio の JetCast.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4668 2012-06-26 16:19 2010-03-5 Show GitHub Exploit DB Packet Storm
196389 5 警告 CuteSoft Components - ASP.NET 用の CuteSoft Components Cute Editor におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4665 2012-06-26 16:19 2010-03-5 Show GitHub Exploit DB Packet Storm
196390 3.3 注意 Linux
fwbuilder		 - Firewall Builder における権限を取得される脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-4664 2012-06-26 16:19 2010-03-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1181 - - - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null Considering that in some… - CVE-2024-57915 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1182 - - - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_fs: Remove WARN_ON in functionfs_bind This commit addresses an issue related to below kernel panic where panic_on_… - CVE-2024-57913 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1183 - - - WeGIA < 3.2.0 is vulnerable to Cross Site Scripting (XSS) via the dados_addInfo parameter of documentos_funcionario.php. - CVE-2024-57033 2025-01-24 02:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1184 8.8 HIGH
Network 		jfinaloa_project jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component apply/save#oaContractApply.id. CWE-89
SQL Injection 		CVE-2024-57770 2025-01-24 02:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1185 - - - In the Linux kernel, the following vulnerability has been resolved: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute syzbot found that TCA_FLOW_RSHIFT attribute was not validated. Right shit… - CVE-2025-21653 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1186 - - - In the Linux kernel, the following vulnerability has been resolved: afs: Fix the maximum cell name length The kafs filesystem limits the maximum length of a cell to 256 bytes, but a problem occurs … - CVE-2025-21646 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1187 - - - In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' str… - CVE-2025-21640 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1188 8.8 HIGH
Network 		jfinaloa_project jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component borrowmoney/listData?applyUser. CWE-89
SQL Injection 		CVE-2024-57769 2025-01-24 02:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1189 - - - In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: rto_min/max: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structu… - CVE-2025-21639 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1190 - - - In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: auth_enable: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structu… - CVE-2025-21638 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm