Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 3, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198911 4.3 警告 Schneider Electric - Schneider Electric Kerweb および Kerwin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1990 2012-05-24 12:32 2012-05-22 Show GitHub Exploit DB Packet Storm
198912 7.5 危険 Thomas Abeel - Simple PHP Agenda の engine.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2925 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
198913 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の admin/setup.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2924 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
198914 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の news.php4 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2923 2012-05-23 19:34 2012-05-21 Show GitHub Exploit DB Packet Storm
198915 5 警告 Drupal - Drupal の includes/bootstrap.inc 内の request_path 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2922 2012-05-23 19:33 2012-05-21 Show GitHub Exploit DB Packet Storm
198916 3.5 注意 Geoff Davies - Drupal 用 Contact Forms モジュールにおけるモジュールの設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2340 2012-05-23 19:12 2012-05-21 Show GitHub Exploit DB Packet Storm
198917 4.3 警告 Nancy Wichmann - Drupal 用 Glossary モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2339 2012-05-23 19:00 2012-05-21 Show GitHub Exploit DB Packet Storm
198918 2.6 注意 Ishmael Sanchez - Drupal 用 Aberdeen テーマの aberdeen_breadcrumb 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2907 2012-05-23 18:57 2012-05-21 Show GitHub Exploit DB Packet Storm
198919 5 警告 mark pilgrim - Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2921 2012-05-23 18:50 2012-05-2 Show GitHub Exploit DB Packet Storm
198920 4.3 警告 Weston Ruter - WordPress 用 User Photo プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2920 2012-05-23 18:48 2012-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 4, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
641 - - - In the Linux kernel, the following vulnerability has been resolved: usb: musb: Fix hardware lockup on first Rx endpoint request There is a possibility that a request's callback could be invoked fro… - CVE-2024-56687 2024-12-28 19:15 2024-12-28 Show GitHub Exploit DB Packet Storm
642 - - - In the Linux kernel, the following vulnerability has been resolved: ext4: fix race in buffer_head read fault injection When I enabled ext4 debug for fault injection testing, I encountered the follo… - CVE-2024-56686 2024-12-28 19:15 2024-12-28 Show GitHub Exploit DB Packet Storm
643 - - - In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: Check num_codecs is not zero to avoid panic during probe Following commit 13f58267cda3 ("ASoC: soc.h: don't creat… - CVE-2024-56685 2024-12-28 19:15 2024-12-28 Show GitHub Exploit DB Packet Storm
644 - - - In the Linux kernel, the following vulnerability has been resolved: powerpc/mm/fault: Fix kfence page fault reporting copy_from_kernel_nofault() can be called when doing read of /proc/kcore. /proc/… - CVE-2024-56678 2024-12-28 19:15 2024-12-28 Show GitHub Exploit DB Packet Storm
645 - - - In the Linux kernel, the following vulnerability has been resolved: powerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init() During early init CMA_MIN_ALIGNMENT_BYTES can be PAGE_S… - CVE-2024-56677 2024-12-28 19:15 2024-12-28 Show GitHub Exploit DB Packet Storm
646 - - - A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-34408) This… - CVE-2023-52718 2024-12-28 17:15 2024-12-28 Show GitHub Exploit DB Packet Storm
647 - - - Some Huawei home routers have a connection hijacking vulnerability. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-76605) This vulne… - CVE-2023-7266 2024-12-28 16:15 2024-12-28 Show GitHub Exploit DB Packet Storm
648 - - - Some Huawei home music system products have a path traversal vulnerability. Successful exploitation of this vulnerability may cause unauthorized file deletion or file permission change.(Vulnerability… - CVE-2023-7263 2024-12-28 16:15 2024-12-28 Show GitHub Exploit DB Packet Storm
649 - - - Huawei HiLink AI Life product has an identity authentication bypass vulnerability. Successful exploitation of this vulnerability may allow attackers to access restricted functions.(Vulnerability ID:H… - CVE-2022-48470 2024-12-28 16:15 2024-12-28 Show GitHub Exploit DB Packet Storm
650 - - - Some Huawei wearables have a permission management vulnerability. - CVE-2021-37000 2024-12-28 16:15 2024-12-28 Show GitHub Exploit DB Packet Storm