Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2001 6.6 警告
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019 		Windows DNS サーバーのリモートでコードが実行される脆弱性 CWE-416
CWE-noinfo
CVE-2024-26231 2025-01-15 12:10 2024-04-9 Show GitHub Exploit DB Packet Storm
2002 7.5 重要
Network 		IBM IBM Maximo Application Suite IBM の IBM Maximo Application Suite におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-22328 2025-01-15 12:10 2024-04-5 Show GitHub Exploit DB Packet Storm
2003 7.8 重要
Local 		IBM IBM Security Guardium IBM の IBM Security Guardium における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2023-47712 2025-01-15 12:10 2023-11-9 Show GitHub Exploit DB Packet Storm
2004 6.5 警告
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Windows Server 2008
Microsoft Windows Server 2016
Microso… 		Windows 分散ファイル システムの情報漏えいの脆弱性 CWE-125
CWE-noinfo
CVE-2024-26226 2025-01-15 12:03 2024-04-9 Show GitHub Exploit DB Packet Storm
2005 7.5 重要
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Windows Server 2008
Microsoft Windows Server 2016
Microso… 		DHCP Server サービスのサービス拒否の脆弱性 CWE-400
CWE-noinfo
CVE-2024-26212 2025-01-15 12:00 2024-04-9 Show GitHub Exploit DB Packet Storm
2006 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2008
Microsoft Windows 10
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Microsoft Window… 		Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-26205 2025-01-15 11:50 2024-04-9 Show GitHub Exploit DB Packet Storm
2007 5.4 警告
Network 		IBM IBM Aspera Faspex IBM の IBM Aspera Faspex におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-37411 2025-01-15 11:45 2023-07-5 Show GitHub Exploit DB Packet Storm
2008 7.5 重要
Network 		IBM IBM TXSeries for Multiplatforms IBM の IBM TXSeries for Multiplatforms における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2024-22345 2025-01-15 11:45 2024-05-9 Show GitHub Exploit DB Packet Storm
2009 8 重要
Adjacent 		マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server&… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 CWE-20
CWE-noinfo
CVE-2024-26189 2025-01-15 11:44 2024-04-9 Show GitHub Exploit DB Packet Storm
2010 7.8 重要
Local 		マイクロソフト Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2022 		Windows 認証の特権の昇格の脆弱性 CWE-59
CWE-noinfo
CVE-2024-21447 2025-01-15 11:39 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
151 - - - A memory leak has been identified in the parseSWF_FILTERLIST function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. Update - CVE-2025-26308 2025-02-25 03:15 2025-02-21 Show GitHub Exploit DB Packet Storm
152 - - - A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file. Update - CVE-2025-26306 2025-02-25 03:15 2025-02-21 Show GitHub Exploit DB Packet Storm
153 - - - PHPJabbers Car Park Booking System v3.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on … Update - CVE-2023-51311 2025-02-25 03:15 2025-02-21 Show GitHub Exploit DB Packet Storm
154 - - - SQL injection in SLIMS v.9.6.1 allows a remote attacker to escalate privileges via the month parameter in the visitor_report_day.php component. New - CVE-2025-26200 2025-02-25 02:15 2025-02-25 Show GitHub Exploit DB Packet Storm
155 - - - An improper input validation vulnerability was discovered in the NTP server configuration field of the Network-M2 card. This could result in an authenticated high privileged user having the ability t… New - CVE-2025-22495 2025-02-25 02:15 2025-02-25 Show GitHub Exploit DB Packet Storm
156 - - - Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data into another Guest's virtualised GPU memory. Update - CVE-2024-46975 2025-02-25 02:15 2025-02-23 Show GitHub Exploit DB Packet Storm
157 3.5 LOW
Network 		- - A vulnerability was found in pankajindevops scale up to 3633544a00245d3df88b6d13d9b3dd0f411be7f6. It has been classified as problematic. Affected is an unknown function of the file /scale/project. Th… Update - CVE-2025-1553 2025-02-25 02:15 2025-02-22 Show GitHub Exploit DB Packet Storm
158 - - - solid-js is a declarative, efficient, and flexible JavaScript library for building user interfaces. In affected versions Inserts/JSX expressions inside illegal inlined JSX fragments lacked escaping, … Update - CVE-2025-27109 2025-02-25 02:15 2025-02-22 Show GitHub Exploit DB Packet Storm
159 - - - A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /delete.php. The attack can use SQL injection to obtain sensitive data. Update - CVE-2025-25876 2025-02-25 02:15 2025-02-22 Show GitHub Exploit DB Packet Storm
160 5.4 MEDIUM
Network 		homeasap easy_mls_listings_import The Easy MLS Listings Import plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'homeasap-featured-listings' shortcode in all versions up to, and including, 2.0.1 due … Update CWE-79
Cross-site Scripting 		CVE-2024-12525 2025-02-25 02:11 2025-02-18 Show GitHub Exploit DB Packet Storm