Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204481 7.1 危険 ヒューレット・パッカード - Palm Pre WebOS における任意の JavaScript を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-5097 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
204482 6.8 警告 ea-style - gBook の index_inc.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-5095 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
204483 7.5 危険 cmsfaethon - CMS Faethon の info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-5094 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
204484 5 警告 php4scripte - Gastebuch の gastbuch.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-5093 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
204485 7.5 危険 vlinks - Vlinks の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-5091 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
204486 6.8 警告 daman371 - Bloggeruniverse の editcomments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-5090 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
204487 4.3 警告 ideacart - IdeaCart の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-5089 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
204488 7.5 危険 ideacart - IdeaCart 0.02 の secure/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-5088 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
204489 5 警告 GeoVision - Geovision Digital Video Surveillance System の geohttpserver におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-5087 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
204490 2.6 注意 IBM - IBM TFIM における信頼制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-5085 2012-03-27 18:42 2011-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191 - - - A prototype pollution in the function fieldsToJson of node-opcua-alarm-condition v2.134.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New - CVE-2024-57086 2025-02-7 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
192 - - - A prototype pollution in the lib.install function of vxe-table v4.8.10 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New - CVE-2024-57080 2025-02-7 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
193 - - - A prototype pollution in the lib.combine function of php-parser v3.2.1 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New - CVE-2024-57071 2025-02-7 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
194 - - - A prototype pollution in the lib function of expand-object v0.4.2 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New - CVE-2024-57069 2025-02-7 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
195 - - - Trimble Cityworks versions prior to 23.10 are vulnerable to a deserialization vulnerability. This could allow an authenticated user to perform a remote code execution attack against a customer’s Micr… New CWE-502
 Deserialization of Untrusted Data 		CVE-2025-0994 2025-02-7 01:15 2025-02-7 Show GitHub Exploit DB Packet Storm
196 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2024. N… New - CVE-2024-43811 2025-02-7 01:15 2025-02-7 Show GitHub Exploit DB Packet Storm
197 - - - A security issue was found in Netplex Json-smart 2.5.0 through 2.5.1. When loading a specially crafted JSON input, containing a large number of ’{’, a stack exhaustion can be trigger, which could all… New - CVE-2024-57699 2025-02-7 01:15 2025-02-6 Show GitHub Exploit DB Packet Storm
198 - - - A floating point exception (divide-by-zero) vulnerability was discovered in Bento4 1.6.0-641 in function AP4_TfraAtom() of Ap4TfraAtom.cpp which allows a remote attacker to cause a denial of service … New - CVE-2024-57598 2025-02-7 01:15 2025-02-6 Show GitHub Exploit DB Packet Storm
199 - - - Insecure Permissions vulnerability in asterisk v22 allows a remote attacker to execute arbitrary code via the action_createconfig function New - CVE-2024-57520 2025-02-7 01:15 2025-02-6 Show GitHub Exploit DB Packet Storm
200 - - - A prototype pollution in the lib.merge function of cli-util v1.1.27 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New - CVE-2024-57078 2025-02-7 01:15 2025-02-6 Show GitHub Exploit DB Packet Storm