Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 31, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202131 4.3 警告 シーメンス - 複数の Siemens 製品の HMI Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4511 2012-02-8 10:53 2012-01-24 Show GitHub Exploit DB Packet Storm
202132 4.3 警告 シーメンス - 複数の Siemens 製品の HMI Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4510 2012-02-8 10:51 2012-01-24 Show GitHub Exploit DB Packet Storm
202133 10 危険 シーメンス - 複数の Siemens 製品の HMI Web サーバにおけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4509 2012-02-8 10:50 2012-01-24 Show GitHub Exploit DB Packet Storm
202134 10 危険 シーメンス - 複数の Siemens 製品の HMI Web サーバにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-4508 2012-02-8 10:49 2012-01-24 Show GitHub Exploit DB Packet Storm
202135 2.6 注意 HTC Corporation - HTC 製 Android 端末に Wi-Fi 認証情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2011-4872 2012-02-7 16:21 2012-02-2 Show GitHub Exploit DB Packet Storm
202136 7.5 危険 Scriptsez.net - Scriptsez.net の Ez Album における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0983 2012-02-7 16:19 2012-02-2 Show GitHub Exploit DB Packet Storm
202137 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Agent Zone の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0982 2012-02-7 16:18 2012-02-2 Show GitHub Exploit DB Packet Storm
202138 5 警告 KYBERNETIKA - phpShowtime における任意のディレクトリおよびイメージファイルをリストアップされる脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0981 2012-02-7 16:17 2012-02-2 Show GitHub Exploit DB Packet Storm
202139 7.5 危険 phux Development - phux Download Manager の download.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0980 2012-02-7 16:16 2012-02-2 Show GitHub Exploit DB Packet Storm
202140 4.3 警告 TWiki - TWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0979 2012-02-7 16:14 2012-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 1, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
941 8.8 HIGH
Network 		- - A flaw was found in the MustGather.managed.openshift.io Custom Defined Resource (CRD) of OpenShift Dedicated. A non-privileged user on the cluster can create a MustGather object with a specially craf… CWE-20
 Improper Input Validation  		CVE-2024-25131 2024-12-20 00:15 2024-12-20 Show GitHub Exploit DB Packet Storm
942 - - - A vulnerability, which was classified as critical, was found in X1a0He Adobe Downloader up to 1.3.1 on macOS. Affected is the function shouldAcceptNewConnection of the file com.x1a0he.macOS.Adobe-Dow… CWE-266
CWE-269
 Incorrect Privilege Assignment
 Improper Privilege Management 		CVE-2024-12786 2024-12-20 00:15 2024-12-20 Show GitHub Exploit DB Packet Storm
943 - - - A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file sendmail.php. The man… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-12785 2024-12-20 00:15 2024-12-20 Show GitHub Exploit DB Packet Storm
944 5.5 MEDIUM
Local 		fabulatech usb_over_network A vulnerability, which was classified as problematic, was found in FabulaTech USB over Network 6.0.6.1. This affects the function 0x220448 in the library ftusbbus2.sys of the component IOCT Handler. … CWE-476
 NULL Pointer Dereference 		CVE-2024-12656 2024-12-20 00:11 2024-12-17 Show GitHub Exploit DB Packet Storm
945 5.5 MEDIUM
Local 		fabulatech usb_over_network A vulnerability, which was classified as problematic, has been found in FabulaTech USB over Network 6.0.6.1. Affected by this issue is the function 0x220420 in the library ftusbbus2.sys of the compon… CWE-476
 NULL Pointer Dereference 		CVE-2024-12655 2024-12-20 00:11 2024-12-17 Show GitHub Exploit DB Packet Storm
946 5.9 MEDIUM
Network 		invoiceplane invoiceplane A vulnerability was found in InvoicePlane up to 1.6.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /invoices/view. The manipulation leads to session… CWE-613
 Insufficient Session Expiration 		CVE-2024-12667 2024-12-20 00:10 2024-12-17 Show GitHub Exploit DB Packet Storm
947 8.8 HIGH
Network 		classcms classcms A vulnerability has been found in ClassCMS up to 4.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin?do=admin:user:editPost of the component … NVD-CWE-noinfo
CVE-2024-12666 2024-12-20 00:01 2024-12-17 Show GitHub Exploit DB Packet Storm
948 5.4 MEDIUM
Network 		ruifang-tech rebuild A vulnerability, which was classified as problematic, was found in ruifang-tech Rebuild 3.8.5. Affected is an unknown function of the component Task Comment Attachment Upload. The manipulation leads … CWE-79
Cross-site Scripting 		CVE-2024-12665 2024-12-19 23:55 2024-12-17 Show GitHub Exploit DB Packet Storm
949 5.4 MEDIUM
Network 		ruifang-tech rebuild A vulnerability, which was classified as problematic, has been found in ruifang-tech Rebuild 3.8.5. This issue affects some unknown processing of the component Project Task Comment Handler. The manip… CWE-79
Cross-site Scripting 		CVE-2024-12664 2024-12-19 23:55 2024-12-17 Show GitHub Exploit DB Packet Storm
950 5.5 MEDIUM
Local 		iobit advanced_systemcare_ultimate A vulnerability was found in IObit Advanced SystemCare Utimate up to 17.0.0. It has been declared as problematic. Affected by this vulnerability is the function 0x8001E018 in the library AscRegistryF… CWE-476
 NULL Pointer Dereference 		CVE-2024-12660 2024-12-19 23:49 2024-12-17 Show GitHub Exploit DB Packet Storm