Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 13, 2025, 4 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
201971 5.5 警告 オラクル - Oracle PeopleSoft および JDEdwards Suite の PeopleSoft Enterprise FMS - Cash Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3529 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
201972 4 警告 オラクル - Oracle PeopleSoft および JDEdwards Suite の PeopleSoft Enterprise CRM -共通コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3528 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
201973 5.5 警告 オラクル - Oracle PeopleSoft および JDEdwards Suite の PeopleSoft Enterprise FMS - AM コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3527 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
201974 5.5 警告 オラクル - Oracle PeopleSoft および JDEdwards Suite の PeopleSoft Enterprise SCM - PO コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3526 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
201975 5.5 警告 オラクル - Oracle PeopleSoft および JDEdwards Suite の PeopleSoft Enterprise FMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3525 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
201976 10 危険 オラクル - Oracle Fusion Middleware の Oracle WebLogic Server コンポーネントにおける Node Manager の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2010-3510 2012-03-27 18:42 2011-01-19 Show GitHub Exploit DB Packet Storm
201977 3 注意 オラクル - Oracle Sun Products Suite の Oracle Explorer (Sun Explorer) コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3506 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
201978 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Technology Stack コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3504 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
201979 4 警告 オラクル - Oracle Siebel Suite の Siebel Core コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3502 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
201980 6 警告 オラクル - Oracle Siebel Suite の Siebel Core - Highly Interactive Client コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3500 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
781 - - - ClipBucket V5 provides open source video hosting with PHP. During the user avatar upload workflow, a user can choose to upload and change their avatar at any time. During deletion, ClipBucket checks … CWE-22
Path Traversal
CVE-2025-21622 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
782 - - - A vulnerability was found in code-projects Online Book Shop 1.0. It has been rated as critical. This issue affects some unknown processing of the file /process_login.php. The manipulation of the argu… CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0298 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
783 - - - A vulnerability was found in code-projects Online Book Shop 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /detail.php. The manipulation of the argument id… CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0297 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
784 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in kmfoysal06 SimpleCharm allows Reflected XSS.This issue affects SimpleCharm: from n/a through 1.4.… CWE-79
Cross-site Scripting
CVE-2024-56056 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
785 - - - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Rezgo Rezgo allows PHP Local File Inclusion.This issue affects Rezgo: from n/a… CWE-98
CWE-829
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
 Inclusion of Functionality from Untrusted Control Sphere
CVE-2024-53800 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
786 - - - An authenticated arbitrary file upload vulnerability in Car Rental Management System v1.0 to v1.3 allows attackers to execute arbitrary code via uploading a crafted file. - CVE-2024-53345 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
787 - - - matrix-rust-sdk is an implementation of a Matrix client-server library in Rust. Versions of the matrix-sdk-crypto Rust crate before 0.8.0 lack a dedicated mechanism to notify that a user's cryptograp… CWE-223
CVE-2024-52813 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
788 - - - Vehicle Management System 1.0 is vulnerable to SQL Injection. A guest user can exploit vulnerable POST parameters in various administrative actions, such as booking a vehicle or confirming a booking.… - CVE-2024-48245 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
789 - - - An issue in the validate_email function in CTFd/utils/validators/__init__.py of CTFd 3.7.3 allows attackers to cause a Regular expression Denial of Service (ReDoS) via supplying a crafted string as e… - CVE-2024-46242 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm
790 8.2 HIGH
Network
- - IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow an unauthorized user to obtain valid tokens to gain access to protected resources due to improper certificate validat… CWE-295
Improper Certificate Validation 
CVE-2024-40702 2025-01-8 01:15 2025-01-8 Show GitHub Exploit DB Packet Storm