Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 10, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203461 4.3 警告 The Tor Project - Tor における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4897 2011-12-27 11:17 2011-12-23 Show GitHub Exploit DB Packet Storm
203462 4.3 警告 The Tor Project - Tor における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4896 2011-12-27 11:13 2011-12-23 Show GitHub Exploit DB Packet Storm
203463 4.3 警告 The Tor Project - Tor におけるブリッジを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-4895 2011-12-27 11:10 2011-12-23 Show GitHub Exploit DB Packet Storm
203464 4.3 警告 The Tor Project - Tor におけるブリッジを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-4894 2011-12-27 11:06 2011-12-23 Show GitHub Exploit DB Packet Storm
203465 7.6 危険 The Tor Project - Tor におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2778 2011-12-27 11:04 2011-12-16 Show GitHub Exploit DB Packet Storm
203466 4.3 警告 The Tor Project - Tor におけるブリッジを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-2769 2011-12-27 11:01 2011-10-27 Show GitHub Exploit DB Packet Storm
203467 5.8 警告 The Tor Project - Tor における匿名化のためのプロパティを無効にされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2768 2011-12-27 10:54 2011-10-27 Show GitHub Exploit DB Packet Storm
203468 7.5 危険 PmWiki - PmWiki の PageListSort 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4453 2011-12-27 10:46 2011-11-11 Show GitHub Exploit DB Packet Storm
203469 - - The Support Incident Tracker Project - Support Incident Tracker に複数の脆弱性 - CVE-2011-3831
CVE-2011-3833
CVE-2011-5067
CVE-2011-5068
CVE-2011-5069
CVE-2011-5070 		2011-12-27 09:42 2011-12-5 Show GitHub Exploit DB Packet Storm
203470 9.3 危険 Sielco Sistemi - Sielco Sistemi Winlog PRO および Winlog Lite におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4037 2011-12-26 16:32 2011-12-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
341 - - - A vulnerability was found in donglight bookstore???????? 1.0.0. It has been rated as problematic. This issue affects the function updateUser of the file src/main/Java/org/zdd/bookstore/web/controller… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2024-13197 2025-01-9 09:15 2025-01-9 Show GitHub Exploit DB Packet Storm
342 - - - A vulnerability was found in donglight bookstore???????? 1.0.0. It has been declared as problematic. This vulnerability affects the function BookSearchList of the file src/main/java/org/zdd/bookstore… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2024-13196 2025-01-9 09:15 2025-01-9 Show GitHub Exploit DB Packet Storm
343 - - - A vulnerability was found in donglight bookstore???????? 1.0.0. It has been classified as critical. This affects the function getHtml of the file src/main/java/org/zdd/bookstore/rawl/HttpUtil.java. T… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-13195 2025-01-9 09:15 2025-01-9 Show GitHub Exploit DB Packet Storm
344 - - - A vulnerability was found in Sucms 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/admin_members.php?ac=search. The manipulation of the argumen… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-13194 2025-01-9 09:15 2025-01-9 Show GitHub Exploit DB Packet Storm
345 - - - A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a loca… New CWE-121
Stack-based Buffer Overflow 		CVE-2025-0283 2025-01-9 08:15 2025-01-9 Show GitHub Exploit DB Packet Storm
346 - - - Rejected reason: loading template... New - CVE-2024-5610 2025-01-9 08:15 2025-01-9 Show GitHub Exploit DB Packet Storm
347 - - - Carbon is an international PHP extension for DateTime. Application passing unsanitized user input to Carbon::setLocale are at risk of arbitrary file include, if the application allows users to upload… New CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2025-22145 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
348 - - - A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches exists. It could allow an unauthenticated adjacent attacker to conduct a packet forwarding attack against … New - CVE-2024-54010 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
349 - - - SickChill is an automatic video library manager for TV shows. A user-controlled `login` endpoint's `next_` parameter takes arbitrary content. Prior to commit c7128a8946c3701df95c285810eb75b2de18bf82,… New CWE-601
Open Redirect 		CVE-2024-53995 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
350 - - - Certain Teradata account-handling code through 2024-11-04, used with SUSE Enterprise Linux Server, mismanages groups. Specifically, when there is an operating system move from SUSE Enterprise Linux S… New - CVE-2024-52869 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm