Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 1, 2025, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202081 4.3 警告 D-Mack Media - Joomla! 用 D-Mack Media Currency Converter モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1018 2012-02-10 10:15 2012-02-8 Show GitHub Exploit DB Packet Storm
202082 7.5 危険 Secure Ideas - Basic Analysis and Security Engine の base_qry_main.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1017 2012-02-10 10:14 2012-02-8 Show GitHub Exploit DB Packet Storm
202083 4.3 警告 ]project-open[ - Project Open にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1027 2012-02-9 18:34 2012-02-6 Show GitHub Exploit DB Packet Storm
202084 4.3 警告 Sphinx Software - Sphinx Software Mobile Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1005 2012-02-9 16:52 2012-02-7 Show GitHub Exploit DB Packet Storm
202085 7.5 危険 Hudong - HDWiki の attachement.php における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2011-5077 2012-02-9 16:01 2012-02-8 Show GitHub Exploit DB Packet Storm
202086 7.5 危険 Hudong - HDWiki の model/comment.class.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5076 2012-02-9 16:00 2012-02-8 Show GitHub Exploit DB Packet Storm
202087 7.5 危険 Likno Software Inc. - WordPress 用 AllWebMenus プラグインの actions.php における任意の PHP コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1011 2012-02-9 15:59 2012-02-7 Show GitHub Exploit DB Packet Storm
202088 7.5 危険 Likno Software Inc. - WordPress 用 AllWebMenus プラグインの actions.php における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1010 2012-02-9 15:59 2012-02-7 Show GitHub Exploit DB Packet Storm
202089 8.5 危険 OpenEMR - OpenEMR の interface/fax/fax_dispatch.php における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0992 2012-02-9 15:57 2012-02-7 Show GitHub Exploit DB Packet Storm
202090 3.5 注意 OpenEMR - OpenEMR におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0991 2012-02-9 15:57 2012-02-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 1, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1011 - - - SeaCMS <=13.0 is vulnerable to command execution in phome.php via the function Ebak_RepPathFiletext(). - CVE-2024-55461 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1012 - - - iperf v3.17.1 was discovered to contain a segmentation violation via the iperf_exchange_parameters() function. - CVE-2024-53580 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1013 7.1 HIGH
Local 		- - A library injection vulnerability exists in Microsoft Word 16.83 for macOS. A specially crafted library can leverage Word's access privileges, leading to a permission bypass. A malicious application … CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-41165 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1014 7.1 HIGH
Local 		- - A library injection vulnerability exists in Microsoft OneNote 16.83 for macOS. A specially crafted library can leverage OneNote's access privileges, leading to a permission bypass. A malicious applic… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-41159 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1015 7.1 HIGH
Local 		- - A library injection vulnerability exists in the WebView.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access priv… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-41145 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1016 7.1 HIGH
Local 		- - A library injection vulnerability exists in the com.microsoft.teams2.modulehost.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leve… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-41138 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1017 7.1 HIGH
Local 		- - A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint's access privileges, leading to a permission bypass. A malicious … CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-39804 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1018 - - - Insecure Permissions vulnerability in SecureSTATION v.2.5.5.3116-S50-SMA-B20160811A and before allows a physically proximate attacker to obtain sensitive information via the modification of user cred… - CVE-2024-37649 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1019 5.0 MEDIUM
Local 		- - An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part… CWE-476
 NULL Pointer Dereference 		CVE-2022-40733 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm
1020 5.0 MEDIUM
Local 		- - An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part… CWE-476
 NULL Pointer Dereference 		CVE-2022-40732 2024-12-19 08:15 2024-12-19 Show GitHub Exploit DB Packet Storm