Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200631 7.1 危険 アップル - Apple QuickDraw の InternalUnpackBits 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0588 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
200632 7.5 危険 g-neric - PhP Generic Library & Framework membres/membreManager.ph における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0584 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
200633 7.5 危険 chernobile - ChernobiLe の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0582 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
200634 7.5 危険 eclipsebb - EclipseBB Lite の functions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0581 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
200635 7.5 危険 acgvclick - ACGVclick の function.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0577 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
200636 7.5 危険 drunken golem - Drunken:Golem Gaming Portal Alpha 2 の include/irc/phpIRC.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0572 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
200637 7.5 危険 asp news - ASP NEWS の news_detail.asp における SQL インジェクションの脆弱性 - CVE-2007-0566 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
200638 7.5 危険 asp edge - ASP EDGE の user.asp における SQL インジェクションの脆弱性 - CVE-2007-0560 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
200639 7.5 危険 CMS Made Simple - CMSimple の cmsimple/cms.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0551 2012-06-26 15:46 2007-01-29 Show GitHub Exploit DB Packet Storm
200640 6.8 警告 212cafe - 212cafeBoard の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0550 2012-06-26 15:46 2007-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1721 - - - Dell Networking Switches running Enterprise SONiC OS, version(s) prior to 4.4.1 and 4.2.3, contain(s) an Insertion of Sensitive Information into Log File vulnerability. A high privileged attacker wit… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2025-23374 2025-01-30 14:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1722 6.5 MEDIUM
Network 		- - A vulnerability was found in Tenda A18 up to 15.13.07.09. It has been rated as critical. This issue affects the function SetCmdlineRun of the file /goform/SetCmdlineRun of the component HTTP POST Req… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2025-0848 2025-01-30 11:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1723 7.8 HIGH
Local 		apple macos
ipados
iphone_os
visionos
watchos
tvos 		A use after free issue was addressed with improved memory management. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A malicious applicati… CWE-416
 Use After Free 		CVE-2025-24085 2025-01-30 11:00 2025-01-28 Show GitHub Exploit DB Packet Storm
1724 9.9 CRITICAL
Network 		- - Authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over a network. CWE-290
 Authentication Bypass by Spoofing 		CVE-2025-21415 2025-01-30 08:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1725 7.5 HIGH
Network 		- - Missing authorization in Microsoft Account allows an unauthorized attacker to elevate privileges over a network. CWE-862
 Missing Authorization 		CVE-2025-21396 2025-01-30 08:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1726 5.4 MEDIUM
Network 		- - User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network - CVE-2025-21262 2025-01-30 08:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1727 - - - A path traversal issue in ZipUtils.unzip and TarUtils.untar in Deep Java Library (DJL) on all platforms allows a bad actor to write files to arbitrary locations. - CVE-2025-0851 2025-01-30 07:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1728 7.3 HIGH
Network 		- - A vulnerability was found in needyamin Library Card System 1.0 and classified as critical. This issue affects some unknown processing of the file admin.php of the component Login. The manipulation of… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0842 2025-01-30 07:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1729 - - - When LDAP connection is activated in Teedy versions between 1.9 to 1.12, the username field of the login form is vulnerable to LDAP injection. Due to improper sanitization of user input, an unauthent… - CVE-2024-54852 2025-01-30 07:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1730 7.5 HIGH
Network 		- - Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it with crafted valid or invalid HTTP/2 traffic. This issue affects BIND 9 versions 9.18.0 through 9.18.3… - CVE-2024-12705 2025-01-30 07:15 2025-01-30 Show GitHub Exploit DB Packet Storm