Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 30, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196811 3.5 注意 gameis - Carom3D の LAN ゲーム機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-2173 2012-06-26 16:10 2009-06-23 Show GitHub Exploit DB Packet Storm
196812 4.3 警告 dream - Radio and TV Player addon for vBulletin の forum/radioandtv.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2172 2012-06-26 16:10 2009-06-23 Show GitHub Exploit DB Packet Storm
196813 9.3 危険 EdrawSoft - Edraw PDF Viewer コンポーネントの pdfviewer.ocx における任意のファイルを作成される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2169 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
196814 7.5 危険 egyplus - EgyPlus 7ammel の cpanel/login.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-2168 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
196815 6.8 警告 egyplus - EgyPlus 7ammel の cpanel/login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2167 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
196816 5 警告 adaptweb - AdaptWeb の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2151 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
196817 6.8 警告 campusvirtualcomputrade - Campus Virtual-LMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2150 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
196818 4.3 警告 campusvirtualcomputrade - Campus Virtual-LMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2149 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
196819 7.5 危険 campusvirtualcomputrade - Campus Virtual-LMS の news/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2148 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
196820 7.5 危険 WordPress.org
firestats
edgewall		 - WordPress の FireStats プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2144 2012-06-26 16:10 2009-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
981 - - - OpenAirInterface CN5G AMF (oai-cn5g-amf) <= 2.0.0 contains a null dereference in its handling of unsupported NGAP protocol messages which allows an attacker with network-adjacent access to the AMF to… - CVE-2024-24445 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
982 - - - pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the organizationCode parameter at project.php. - CVE-2023-27113 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
983 - - - pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the projectCode parameter at project.php. - CVE-2023-27112 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
984 7.5 HIGH
Network 		- - Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable vulnerabi… - CVE-2025-21510 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
985 6.5 MEDIUM
Network 		- - Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable vulnerabi… - CVE-2025-21509 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
986 - - - https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incorrect Access Control. The type of exploitation is: local. The component is: `nm --without-symbol-version` function. - CVE-2024-57360 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
987 - - - Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions. - CVE-2024-55959 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
988 - - - The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is vulnerable to Remote Code Execution via a modified MQTT broker message. - CVE-2024-42936 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
989 - - - lunasvg v3.0.0 was discovered to contain a segmentation violation via the component gray_record_cell. - CVE-2024-57724 2025-01-24 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
990 - - - lunasvg v3.0.0 was discovered to contain a segmentation violation via the component composition_source_over. - CVE-2024-57723 2025-01-24 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm