Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 3, 2025, 1:14 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 205171 | 5.8 | 警告 | Netcreators | - | TYPO3 用 Modern FAQ エクステンションにおけるオープンリダイレクトの脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-5079 | 2012-02-15 16:04 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 205172 | 5 | 警告 | The PHP Group | - | PHP のタイムゾーン機能におけるサービス運用妨害 (メモリ破損) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2012-0789 | 2012-02-15 16:03 | 2012-01-10 | Show | GitHub Exploit DB Packet Storm |
| 205173 | 5 | 警告 | The PHP Group | - | PHP の PDORow 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2012-0788 | 2012-02-15 16:02 | 2012-01-10 | Show | GitHub Exploit DB Packet Storm |
| 205174 | 7.5 | 危険 | Zoho Corporation | - | ManageEngine Applications Manager における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-1063 | 2012-02-15 15:55 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 205175 | 4.3 | 警告 | Zoho Corporation | - | ManageEngine Applications Manager におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1062 | 2012-02-15 15:55 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 205176 | 7.5 | 危険 | GForge Group | - | GForge Advanced Server における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-1061 | 2012-02-15 15:54 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 205177 | 2.1 | 注意 | Rik de Boer | - | Drupal 用 Revisioning モジュールの revisioning_theme.inc におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1060 | 2012-02-15 15:51 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 205178 | 4.3 | 警告 | osCommerce | - | OSCommerce Online Merchant の shirt モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1059 | 2012-02-15 15:51 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 205179 | 6 | 警告 | Flyspray | - | Flyspray におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-1058 | 2012-02-15 15:50 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 205180 | 6 | 警告 | Sean Robertson | - | Drupal 用 Forward モジュールのクリックスルートラッキング機能におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-1057 | 2012-02-15 15:49 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Feb. 26, 2025, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1051 | - | - | - | There is a defect in the CPython standard library module “mimetypes” where on Windows the default list of known file locations are writable meaning other users can create invalid files to cause Memor… | - | CVE-2024-3220 | 2025-02-15 04:15 | 2025-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 1052 | - | - | - | Mattermost versions 9.11.x <= 9.11.6 fail to filter out DMs from the deleted channels endpoint which allows an attacker to infer user IDs and other metadata from deleted DMs if someone had manually m… | - | CVE-2025-0503 | 2025-02-15 03:15 | 2025-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 1053 | - | - | - | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-48022. Reason: This candidate is a duplicate of CVE-2023-48022. Notes: All CVE users should reference CVE-2023-48022 instead of… | - | CVE-2024-57000 | 2025-02-15 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm | |
| 1054 | 6.5 |
MEDIUM
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_10_1809 windows_10_1507 windows_10_1607 windows_10_21h2 windows_10_22h2 windows_11_22h2 windows_11_24h2 windows_server_2016<… |
NTLM Hash Disclosure Spoofing Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21377 | 2025-02-15 02:40 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1055 | 7.1 |
HIGH
Adjacent |
microsoft |
windows_server_2025 windows_11_24h2 |
DHCP Client Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21379 | 2025-02-15 02:39 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1056 | 7.8 |
HIGH
Local |
microsoft |
365_apps office |
Microsoft Office Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21397 | 2025-02-15 02:38 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1057 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_10_1809 windows_10_1507 windows_10_1607 windows_10_21h2 windows_10_22h2 windows_11_22h2 windows_11_23h2 windows_11_24h2 w… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21406 | 2025-02-15 02:37 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1058 | 8.0 |
HIGH
Network |
microsoft | sharepoint_server | Microsoft SharePoint Server Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21400 | 2025-02-15 02:37 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1059 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2012 windows_10_1809 windows_server_2019 windows_server_2022 windows_10_1507 windows_10_1607 windows_10_21h2 windows_10_22h2 windows_11_22h2 windows_11_23h2<… |
Windows Disk Cleanup Tool Elevation of Privilege Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21420 | 2025-02-15 02:36 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1060 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_10_1809 windows_11_23h2 windows_11_22h2 windows_10_1507 windows_10_1607 windows_10_22h2 windows_server_2022 windows_server_2… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21407 | 2025-02-15 02:36 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |