Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196581 4.3 警告 acoustica - Acoustica MP3 Audio Mixer におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-3809 2012-06-26 16:18 2009-10-27 Show GitHub Exploit DB Packet Storm
196582 7.5 危険 DesDev Inc. - DedeCMS の feedback_js.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3806 2012-06-26 16:18 2009-10-27 Show GitHub Exploit DB Packet Storm
196583 4.3 警告 kde-apps
gpg4win		 - Gpg4win の gpg2.exe におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-Other
その他 		CVE-2009-3805 2012-06-26 16:18 2009-10-27 Show GitHub Exploit DB Packet Storm
196584 4.3 警告 amirocms - Amiro.CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3803 2012-06-26 16:18 2009-10-27 Show GitHub Exploit DB Packet Storm
196585 5 警告 amirocms - Amiro.CMS における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-3802 2012-06-26 16:18 2009-10-27 Show GitHub Exploit DB Packet Storm
196586 9.3 危険 cutepdf - FormMax evaluation におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3790 2012-06-26 16:18 2009-10-26 Show GitHub Exploit DB Packet Storm
196587 3.5 注意 2bits
Drupal		 - Drupal の Userpoints モジュールにおける任意のユーザのユーザポイントデータを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-3782 2012-06-26 16:18 2009-10-21 Show GitHub Exploit DB Packet Storm
196588 4.3 警告 Drupal
ashok modi		 - Drupal のモジュールの Abuse におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3780 2012-06-26 16:18 2009-10-21 Show GitHub Exploit DB Packet Storm
196589 7.5 危険 Drupal
adam gerson		 - Drupal のモジュールの Moodle Course List における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3778 2012-06-26 16:18 2009-10-21 Show GitHub Exploit DB Packet Storm
196590 5 警告 DELL EMC (旧 EMC Corporation) - EMC RepliStor のサーバの rep_serv.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3744 2012-06-26 16:18 2009-10-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1151 - - - ECOVACS robot lawnmowers and vacuums use a deterministic root password generated based on model and serial number. An attacker with shell access can login as root. - CVE-2024-11147 2025-01-24 02:15 2025-01-24 Show GitHub Exploit DB Packet Storm
1152 - - - A Cross Site Request Forgery (CSRF) vulnerability in Code Astro Internet banking system 2.0.0 allows remote attackers to execute arbitrary JavaScript on the admin page (pages_account), potentially le… - CVE-2024-56924 2025-01-24 02:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1153 - - - D-Link DSL-3782 v1.01 is vulnerable to Buffer Overflow in /New_GUI/ParentalControl.asp. - CVE-2024-56914 2025-01-24 02:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1154 - - - An incorrect permission check in Jenkins GitLab Plugin 1.9.6 and earlier allows attackers with global Item/Configure permission (while lacking Item/Configure permission on any particular job) to enum… - CVE-2025-24397 2025-01-24 02:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1155 4.9 MEDIUM
Network 		- - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily expl… - CVE-2025-21504 2025-01-24 02:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1156 4.9 MEDIUM
Network 		- - Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vul… - CVE-2025-21503 2025-01-24 02:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1157 6.5 MEDIUM
Network 		- - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily expl… - CVE-2025-21501 2025-01-24 02:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1158 5.4 MEDIUM
Network 		- - Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable vulnerabi… - CVE-2025-21507 2025-01-24 02:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1159 6.5 MEDIUM
Network 		- - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily expl… - CVE-2025-21500 2025-01-24 02:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1160 4.9 MEDIUM
Network 		- - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vulnerability al… - CVE-2025-21499 2025-01-24 02:15 2025-01-22 Show GitHub Exploit DB Packet Storm