Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204451	6	警告	オラクル	-	Oracle Siebel Suite の Siebel Core - Highly Interactive Client コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2405	2012-03-27 18:42	2010-10-13	Show	GitHub Exploit DB Packet Storm

204452	3.5	注意	オラクル	-	Oracle E-Business Suite の Oracle iRecruitment コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2404	2012-03-27 18:42	2010-10-13	Show	GitHub Exploit DB Packet Storm

204453	5.8	警告	オラクル	-	Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2388	2012-03-27 18:42	2010-10-13	Show	GitHub Exploit DB Packet Storm

204454	8.5	危険	Cobbler project	-	Red Hat Network Satellite Server の Cobbler における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2235	2012-03-27 18:42	2010-10-18	Show	GitHub Exploit DB Packet Storm

204455	3.5	注意	OTRS プロジェクト	-	OTRS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2080	2012-03-27 18:42	2010-09-20	Show	GitHub Exploit DB Packet Storm

204456	5	警告	Apache Software Foundation	-	Apache MyFaces の shared/util/StateUtils.java における View State を変更される脆弱性	CWE-310 暗号の問題	CVE-2010-2057	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

204457	9.3	危険	シマンテック	-	SAVCE などの製品で使用されている AMS または AMS2 の HDNLRSVC.EXE における任意のプログラムを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0111	2012-03-27 18:42	2011-01-26	Show	GitHub Exploit DB Packet Storm

204458	7.9	危険	シマンテック	-	SAVCE などの製品で使用されている Intel Alert Management System におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0110	2012-03-27 18:42	2011-01-26	Show	GitHub Exploit DB Packet Storm

204459	5	警告	Pentaho Corporation	-	Pentaho BI Server における Web トラフィックを傍受される脆弱性	CWE-200 情報漏えい	CVE-2009-5101	2012-03-27 18:42	2011-09-13	Show	GitHub Exploit DB Packet Storm

204460	2.1	注意	Pentaho Corporation	-	Pentaho BI Server におけるパスワードを取得される脆弱性	CWE-200 情報漏えい	CVE-2009-5100	2012-03-27 18:42	2011-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
41	5.4	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts in… Update	CWE-79 Cross-site Scripting	CVE-2024-53962	2025-02-12 01:04	2025-02-5	Show	GitHub Exploit DB Packet Storm

42	-		-	-	AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation by a local attacker. Successful exploitation of these vulnerabilities may lead to overwriting arbi… New	-	CVE-2024-33659	2025-02-12 00:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

43	-		-	-	Improper password reset in PAM Module in Devolutions Server 2024.3.10.0 and earlier allows an authenticated user to reuse the oracle user password after check-in due to crash in the password reset fu… New	-	CVE-2025-1231	2025-02-12 00:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

44	-		-	-	In affected versions of Octopus Server it was possible for a user with sufficient access to set custom headers in all server responses. By submitting a specifically crafted referrer header the user c… New	-	CVE-2025-0588	2025-02-12 00:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

45	-		-	-	A vulnerability has been identified in Opcenter Intelligence (All versions < V2501). Server-side request forgery (SSRF) vulnerability in Tableau Server. For details go to help.salesforce.com and sear… New	-	CVE-2025-26491	2025-02-12 00:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

46	-		-	-	A vulnerability has been identified in Opcenter Intelligence (All versions < V2501). Personal access token disclosure vulnerability in Tableau Server. For details go to help.salesforce.com and search… New	-	CVE-2025-26490	2025-02-12 00:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

47	-		-	-	In affected versions of Octopus Deploy it was possible to upload files to unexpected locations on the host using an API endpoint. The field lacked validation which could potentially result in ways to… New	-	CVE-2025-0526	2025-02-12 00:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

48	-		-	-	In affected versions of Octopus Server error messages were handled unsafely on the error page. If an adversary could control any part of the error message they could embed code which may impact the u… New	-	CVE-2025-0513	2025-02-12 00:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

49	-		-	-	An authenticated attacker is able to use the Plugin Manager of the web interface of the Wattsense Bridge devices to upload malicious Python files to the device. This enables an attacker to gain remot… New	-	CVE-2025-26411	2025-02-12 00:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

50	-		-	-	The firmware of all Wattsense Bridge devices contain the same hard-coded user and root credentials. The user password can be easily recovered via password cracking attempts. The recovered credentials… New	-	CVE-2025-26410	2025-02-12 00:15	2025-02-11	Show	GitHub Exploit DB Packet Storm