Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197141 7.5 危険 cccp-common-clan-portal-pasterbin - CCCP Community Clan Portal Pastebin の insert_to_pastebin 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1245 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
197142 7.5 危険 arcadwy - Arcadwy Arcade Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1229 2012-06-26 16:10 2009-04-2 Show GitHub Exploit DB Packet Storm
197143 4.3 警告 arcadwy - Arcadwy Arcade Script CMS の register.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1228 2012-06-26 16:10 2009-04-2 Show GitHub Exploit DB Packet Storm
197144 5 警告 fullrevolution - aspWebCalendar Free Edition におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1223 2012-06-26 16:10 2009-04-2 Show GitHub Exploit DB Packet Storm
197145 7.5 危険 auth2db - auth2db における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1208 2012-06-26 16:10 2009-04-1 Show GitHub Exploit DB Packet Storm
197146 4.3 警告 banshee-project - Banshee の DAAP 拡張の apps/web/vs_diag.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1175 2012-06-26 16:10 2009-03-31 Show GitHub Exploit DB Packet Storm
197147 10 危険 DELL EMC (旧 EMC Corporation) - EMC RepliStor におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1119 2012-06-26 16:10 2009-04-15 Show GitHub Exploit DB Packet Storm
197148 9.3 危険 GeoVision - GeoVision DVR システムの LIVEAU~1.OCX における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1092 2012-06-26 16:10 2009-03-25 Show GitHub Exploit DB Packet Storm
197149 4.3 警告 expressionengine - ExpressionEngine の system/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1070 2012-06-26 16:10 2009-03-26 Show GitHub Exploit DB Packet Storm
197150 9.3 危険 AB Team - bsplayer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1068 2012-06-26 16:10 2009-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1761 9.8 CRITICAL
Network 		openimageio openimageio OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component OpenImageIO_v3_1_0::farmhash::inlined::Fetch64(char const*). CWE-787
 Out-of-bounds Write 		CVE-2024-55192 2025-01-30 00:36 2025-01-24 Show GitHub Exploit DB Packet Storm
1762 9.8 CRITICAL
Network 		openimageio openimageio OpenImageIO v3.1.0.0dev was discovered to contain a segmentation violation via the component /OpenImageIO/string_view.h. NVD-CWE-Other
CVE-2024-55193 2025-01-30 00:27 2025-01-24 Show GitHub Exploit DB Packet Storm
1763 9.8 CRITICAL
Network 		openimageio openimageio OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component /OpenImageIO/fmath.h. CWE-787
 Out-of-bounds Write 		CVE-2024-55194 2025-01-30 00:19 2025-01-24 Show GitHub Exploit DB Packet Storm
1764 - - - An issue in the reset password interface of ruoyi v4.8.0 allows attackers with Admin privileges to cause a Denial of Service (DoS) by duplicating the login name of the account. - CVE-2024-57439 2025-01-30 00:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1765 - - - RuoYi v4.8.0 was discovered to allow unauthorized attackers to view the session ID of the admin in the system monitoring. This issue can allow attackers to impersonate Admin users via using a crafted… - CVE-2024-57436 2025-01-30 00:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1766 - - - Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Mediu… CWE-416
 Use After Free 		CVE-2025-0762 2025-01-30 00:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1767 - - - The Competition Form WordPress plugin through 2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used again… - CVE-2024-12749 2025-01-30 00:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1768 - - - A vulnerability, which was classified as critical, was found in ESAFENET CDG V5. Affected is an unknown function of the file /sdTodoDetail.jsp. The manipulation of the argument flowId leads to sql in… - CVE-2025-0792 2025-01-30 00:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1769 - - - A vulnerability, which was classified as critical, has been found in ESAFENET CDG V5. This issue affects some unknown processing of the file /sdDoneDetail.jsp. The manipulation of the argument flowId… - CVE-2025-0791 2025-01-30 00:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1770 - - - A vulnerability classified as problematic was found in ESAFENET CDG V5. This vulnerability affects unknown code of the file /doneDetail.jsp. The manipulation of the argument curpage leads to cross si… - CVE-2025-0790 2025-01-30 00:15 2025-01-29 Show GitHub Exploit DB Packet Storm