Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196811 4.3 警告 editeurscripts - EditeurScripts EsNews の modifier.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2581 2012-06-26 16:10 2009-07-23 Show GitHub Exploit DB Packet Storm
196812 6.5 警告 CS-Cart - CS-Cart の reward_points.post.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2579 2012-06-26 16:10 2009-08-5 Show GitHub Exploit DB Packet Storm
196813 6.5 警告 bioscripts - MiniTwitter の index.php における任意のアカウントの特定のオプションを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2574 2012-06-26 16:10 2009-07-22 Show GitHub Exploit DB Packet Storm
196814 6 警告 bioscripts - MiniTwitter における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2573 2012-06-26 16:10 2009-07-22 Show GitHub Exploit DB Packet Storm
196815 7.5 危険 almondsoft
Joomla!		 - Joomla! の aclassf コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2567 2012-06-26 16:10 2009-07-22 Show GitHub Exploit DB Packet Storm
196816 7.5 危険 adminnewstools - Admin News Tools の system/message.php におけるニュースを投稿される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2558 2012-06-26 16:10 2009-07-21 Show GitHub Exploit DB Packet Storm
196817 5 警告 adminnewstools - Admin News Tools の system/download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2557 2012-06-26 16:10 2009-07-21 Show GitHub Exploit DB Packet Storm
196818 5 警告 bistudio - Armed Assault および Armed Assault II におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-2549 2012-06-26 16:10 2009-07-20 Show GitHub Exploit DB Packet Storm
196819 10 危険 bistudio - Armed Assault および Armed Assault II におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2009-2548 2012-06-26 16:10 2009-07-20 Show GitHub Exploit DB Packet Storm
196820 5 警告 bistudio - Armed Assault および Armed Assault II における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2547 2012-06-26 16:10 2009-07-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1181 - - - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null Considering that in some… - CVE-2024-57915 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1182 - - - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_fs: Remove WARN_ON in functionfs_bind This commit addresses an issue related to below kernel panic where panic_on_… - CVE-2024-57913 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1183 - - - WeGIA < 3.2.0 is vulnerable to Cross Site Scripting (XSS) via the dados_addInfo parameter of documentos_funcionario.php. - CVE-2024-57033 2025-01-24 02:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1184 8.8 HIGH
Network 		jfinaloa_project jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component apply/save#oaContractApply.id. CWE-89
SQL Injection 		CVE-2024-57770 2025-01-24 02:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1185 - - - In the Linux kernel, the following vulnerability has been resolved: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute syzbot found that TCA_FLOW_RSHIFT attribute was not validated. Right shit… - CVE-2025-21653 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1186 - - - In the Linux kernel, the following vulnerability has been resolved: afs: Fix the maximum cell name length The kafs filesystem limits the maximum length of a cell to 256 bytes, but a problem occurs … - CVE-2025-21646 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1187 - - - In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' str… - CVE-2025-21640 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1188 8.8 HIGH
Network 		jfinaloa_project jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component borrowmoney/listData?applyUser. CWE-89
SQL Injection 		CVE-2024-57769 2025-01-24 02:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1189 - - - In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: rto_min/max: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structu… - CVE-2025-21639 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm
1190 - - - In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: auth_enable: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structu… - CVE-2025-21638 2025-01-24 02:15 2025-01-19 Show GitHub Exploit DB Packet Storm