Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 13, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202651 10 危険 Shanghai Truecolor Multimedia - Android 用 QianXun YingShi アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1402 2012-03-8 16:18 2011-03-7 Show GitHub Exploit DB Packet Storm
202652 10 危険 IntSig Information - Android 用 CamScanner アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1401 2012-03-8 16:16 2012-03-7 Show GitHub Exploit DB Packet Storm
202653 10 危険 uplusbox - Android 用 U+Box 2.0 Pad アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1400 2012-03-8 16:14 2012-03-7 Show GitHub Exploit DB Packet Storm
202654 10 危険 uplusbox - Android 用 U+Box 2.0 アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1399 2012-03-8 16:13 2012-03-7 Show GitHub Exploit DB Packet Storm
202655 10 危険 Innovation Technology - Android 用 mOffice - Outlook sync アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1391 2012-03-8 16:10 2012-03-7 Show GitHub Exploit DB Packet Storm
202656 10 危険 GoMiso - Android 用 Miso アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1390 2012-03-8 16:09 2012-03-7 Show GitHub Exploit DB Packet Storm
202657 10 危険 fanfan - Android 用 Di Long Weibo アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1389 2012-03-8 15:03 2012-03-7 Show GitHub Exploit DB Packet Storm
202658 10 危険 xixun - Android 用 XiXunTianTian アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1388 2012-03-8 14:56 2012-03-7 Show GitHub Exploit DB Packet Storm
202659 10 危険 UANGEL - Android 用 RealTalk アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1387 2012-03-8 14:42 2012-03-7 Show GitHub Exploit DB Packet Storm
202660 10 危険 YouMail - Android 用 YouMail Visual Voicemail Plus アプリケーションにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1386 2012-03-8 14:30 2012-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1031 - - - Guzzle OAuth Subscriber signs Guzzle requests using OAuth 1.0. Prior to 0.8.1, Nonce generation does not use sufficient entropy nor a cryptographically secure pseudorandom source. This can leave serv… CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2025-21617 2025-01-7 05:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1032 - - - Z-BlogPHP 1.7.3 is vulnerable to arbitrary code execution via \zb_users\theme\shell\template. - CVE-2024-55529 2025-01-7 05:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1033 - - - A reflected Cross-Site Scripting (XSS) vulnerability exists in the login page of IceHRM v32.4.0.OS. The vulnerability is due to improper sanitization of the "next" parameter, which is included in the… - CVE-2024-46073 2025-01-7 05:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1034 - - - File Upload vulnerability in ChestnutCMS through 1.5.0. Based on the code analysis, it was determined that the /api/member/avatar API endpoint receives a base64 string as input. This string is then p… - CVE-2024-56828 2025-01-7 03:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1035 - - - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, TCP streams with TCP urgent data (out of band data) can lead to S… CWE-437
CVE-2024-55629 2025-01-7 03:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1036 - - - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messa… CWE-405
CWE-779
 Asymmetric Resource Consumption (Amplification) 		CVE-2024-55628 2025-01-7 03:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1037 - - - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer ov… CWE-191
CWE-122
 Integer Underflow (Wrap or Wraparound)
Heap-based Buffer Overflow 		CVE-2024-55627 2025-01-7 03:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1038 - - - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large BPF filter file provided to Suricata at startup can lead … CWE-680
 Integer Overflow to Buffer Overflow 		CVE-2024-55626 2025-01-7 03:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1039 - - - NiceGUI is an easy-to-use, Python-based UI framework. Prior to 2.9.1, authenticating with NiceGUI logged in the user for all browsers, including browsers in incognito mode. This vulnerability is fixe… CWE-287
Improper Authentication 		CVE-2025-21618 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
1040 - - - AAT (Another Activity Tracker) is a GPS-tracking application for tracking sportive activities, with emphasis on cycling. Versions lower than v1.26 of AAT are vulnerable to data exfiltration from mali… CWE-200
Information Exposure 		CVE-2025-21615 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm