Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205571 4.4 警告 Super - Super の super.c のエラー関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2776 2012-01-17 16:31 2012-01-8 Show GitHub Exploit DB Packet Storm
205572 4.3 警告 IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1362 2012-01-17 16:29 2012-01-15 Show GitHub Exploit DB Packet Storm
205573 9.3 危険 NTRglobal - NTR ActiveX コントロールの StopModule メソッドにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0267 2012-01-17 16:07 2012-01-15 Show GitHub Exploit DB Packet Storm
205574 9.3 危険 NTRglobal - NTR ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0266 2012-01-17 16:04 2012-01-15 Show GitHub Exploit DB Packet Storm
205575 10 危険 ヒューレット・パッカード - HP StorageWorks P2000 G3 MSA array systems における管理者権限でタスクを実行される脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0697 2012-01-16 15:19 2012-01-13 Show GitHub Exploit DB Packet Storm
205576 4.3 警告 IBM - IBM Cognos TM1 の Executive Viewer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0696 2012-01-16 15:04 2010-11-12 Show GitHub Exploit DB Packet Storm
205577 10 危険 Google
サムスン
日本エイサー		 - Chromebook プラットフォームで稼働する Google Chrome における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-0695 2012-01-16 15:04 2012-01-10 Show GitHub Exploit DB Packet Storm
205578 4.9 警告 Adaptive Computing - TORQUE Resource Manager における任意のユーザアカウントを偽装される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4925 2012-01-16 15:03 2012-01-13 Show GitHub Exploit DB Packet Storm
205579 10 危険 ヒューレット・パッカード - HP Diagnostics におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4789 2012-01-16 15:02 2012-01-13 Show GitHub Exploit DB Packet Storm
205580 7.8 危険 ヒューレット・パッカード - HP StorageWorks P2000 G3 MSA array systems における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4788 2012-01-16 15:02 2012-01-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
81 6.4 MEDIUM
Network 		- - IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten… New CWE-79
Cross-site Scripting 		CVE-2024-49791 2025-02-6 09:15 2025-02-6 Show GitHub Exploit DB Packet Storm
82 5.3 MEDIUM
Network 		- - IBM Aspera Shares 1.9.0 through 1.10.0 PL6 could allow an attacker to spoof their IP address, which is written to log files, due to improper verification of 'Client-IP' headers. New CWE-117
 Improper Output Neutralization for Logs 		CVE-2024-56473 2025-02-6 08:15 2025-02-6 Show GitHub Exploit DB Packet Storm
83 6.4 MEDIUM
Network 		- - IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering … New CWE-79
Cross-site Scripting 		CVE-2024-56472 2025-02-6 08:15 2025-02-6 Show GitHub Exploit DB Packet Storm
84 5.4 MEDIUM
Network 		- - IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially le… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-56471 2025-02-6 08:15 2025-02-6 Show GitHub Exploit DB Packet Storm
85 5.4 MEDIUM
Network 		- - IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially le… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-56470 2025-02-6 08:15 2025-02-6 Show GitHub Exploit DB Packet Storm
86 4.8 MEDIUM
Network 		- - IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within… New CWE-80
Basic XSS 		CVE-2024-38318 2025-02-6 08:15 2025-02-6 Show GitHub Exploit DB Packet Storm
87 4.8 MEDIUM
Network 		- - IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the inten… New CWE-79
Cross-site Scripting 		CVE-2024-38317 2025-02-6 08:15 2025-02-6 Show GitHub Exploit DB Packet Storm
88 4.3 MEDIUM
Network 		- - IBM Aspera Shares 1.9.0 through 1.10.0 PL6 does not properly rate limit the frequency that an authenticated user can send emails, which could result in email flooding or a denial of service. New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-38316 2025-02-6 08:15 2025-02-6 Show GitHub Exploit DB Packet Storm
89 - - - A prototype pollution in the function fieldsToJson of node-opcua-alarm-condition v2.134.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New - CVE-2024-57086 2025-02-6 07:15 2025-02-6 Show GitHub Exploit DB Packet Storm
90 - - - A prototype pollution in the function lib.parse of dot-properties v1.0.1 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New - CVE-2024-57084 2025-02-6 07:15 2025-02-6 Show GitHub Exploit DB Packet Storm