Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205381	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-2377	2012-01-27 16:40	2011-06-21	Show	GitHub Exploit DB Packet Storm

205382	7.6	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-2373	2012-01-27 16:39	2011-06-21	Show	GitHub Exploit DB Packet Storm

205383	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-2371	2012-01-27 16:38	2011-06-21	Show	GitHub Exploit DB Packet Storm

205384	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-2365	2012-01-27 16:32	2011-06-21	Show	GitHub Exploit DB Packet Storm

205385	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox および Thunderbird の nsSVGPointList::AppendElement 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2363	2012-01-27 16:31	2011-06-21	Show	GitHub Exploit DB Packet Storm

205386	5	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox および Thunderbird における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2362	2012-01-27 16:25	2011-06-21	Show	GitHub Exploit DB Packet Storm

205387	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox および Thunderbird の nsXULCommandDispatcher 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0085	2012-01-27 16:23	2011-06-21	Show	GitHub Exploit DB Packet Storm

205388	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox および Thunderbird の nsSVGPathSegList::ReplaceItem 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0083	2012-01-27 16:22	2011-06-21	Show	GitHub Exploit DB Packet Storm

205389	4.3	警告	シマンテック	-	Symantec pcAnywhere 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3479	2012-01-27 16:20	2012-01-22	Show	GitHub Exploit DB Packet Storm

205390	10	危険	シマンテック	-	Symantec pcAnywhere 製品における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2011-3478	2012-01-27 16:18	2012-01-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
101	-	-	-	The WP Finance WordPress plugin through 1.3.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored … Update	-	CVE-2024-13096	2025-02-5 06:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

102	-	-	-	The Responsive iframe WordPress plugin through 1.2.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow user… Update	-	CVE-2024-12768	2025-02-5 06:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

103	-	-	-	The Python standard library functions `urllib.parse.urlsplit` and `urlparse` accepted domain names that included square brackets which isn't valid according to RFC 3986. Square brackets are only mean… Update	-	CVE-2025-0938	2025-02-5 06:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

104	-	-	-	reNgine is an automated reconnaissance framework for web applications. An unrestricted project deletion vulnerability allows attackers with specific roles, such as `penetration_tester` or `auditor` t… New	CWE-284 Improper Access Control	CVE-2025-24968	2025-02-5 05:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

105	-	-	-	reNgine is an automated reconnaissance framework for web applications. A stored cross-site scripting (XSS) vulnerability exists in the admin panel's user management functionality. An attacker can exp… New	CWE-79 Cross-site Scripting	CVE-2025-24967	2025-02-5 05:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

106	-	-	-	reNgine is an automated reconnaissance framework for web applications. HTML Injection occurs when an application improperly validates or sanitizes user inputs, allowing attackers to inject arbitrary … New	CWE-79 Cross-site Scripting	CVE-2025-24966	2025-02-5 05:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

107	-	-	-	AutomationDirect C-more EA9 HMI contains a function with bounds checks that can be skipped, which could result in an attacker abusing the function to cause a denial-of-service condition or achieving … New	CWE-120 Classic Buffer Overflow	CVE-2025-0960	2025-02-5 05:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

108	-	-	-	Multiple Western Telematic (WTI) products contain a web interface that is vulnerable to a local file inclusion attack (LFI), where any authenticated user has privileged access to files on the device'… New	CWE-73 External Control of File Name or Path	CVE-2025-0630	2025-02-5 05:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

109	-	-	-	A security issue was found in Sparkle before version 2.64. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s (Ed)DSA signing checks. New	-	CVE-2025-0509	2025-02-5 05:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

110	-	-	-	DumpDrop is a stupid simple file upload application that provides an interface for dragging and dropping files. An OS Command Injection vulnerability was discovered in the DumbDrop application, `/upl… New	-	CVE-2025-24971	2025-02-5 05:15	2025-02-5	Show	GitHub Exploit DB Packet Storm