Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205671 4.3 警告 GNU Project - Mailman 用の Mailman/htdig integration patch の mmsearch/design におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5024 2012-01-5 10:21 2011-12-29 Show GitHub Exploit DB Packet Storm
205672 4.3 警告 Pligg - Pligg CMS の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5023 2012-01-5 10:17 2011-12-29 Show GitHub Exploit DB Packet Storm
205673 7.5 危険 Pligg - Pligg CMS の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5022 2012-01-5 10:16 2011-12-29 Show GitHub Exploit DB Packet Storm
205674 4.3 警告 Winn GuestBook - Winn GuestBook におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5026 2012-01-5 10:16 2011-12-27 Show GitHub Exploit DB Packet Storm
205675 7.5 危険 PHPIDS - PHPIDS におけるルールセット回避の脆弱性 CWE-94
コード・インジェクション 		CVE-2011-5021 2012-01-5 10:15 2011-12-29 Show GitHub Exploit DB Packet Storm
205676 5 警告 GoAhead Software, Inc. - GoAhead WebServer におけるサービス運用妨害 (デーモン停止) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5111 2012-01-5 10:13 2011-12-27 Show GitHub Exploit DB Packet Storm
205677 5 警告 DHTTPD - dhttpd におけるサービス運用妨害 (デーモン停止) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5110 2012-01-5 10:13 2011-12-27 Show GitHub Exploit DB Packet Storm
205678 5 警告 Apache Software Foundation - Apache Tomcat におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4084 2012-01-4 16:50 2011-12-30 Show GitHub Exploit DB Packet Storm
205679 5 警告 Google - Google V8 におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5037 2012-01-4 16:48 2011-12-30 Show GitHub Exploit DB Packet Storm
205680 5 警告 Christian Neukirchen - Rack におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5036 2012-01-4 16:48 2011-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 10, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1401 - - - vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py implements hf_model_weights_iterator to load the model checkpoint, which is downloaded from huggingface. It uses t… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-24357 2025-01-28 03:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1402 - - - fastd is a VPN daemon which tunnels IP packets and Ethernet frames over UDP. When receiving a data packet from an unknown IP address/port combination, fastd will assume that one of its connected peer… CWE-405
 Asymmetric Resource Consumption (Amplification) 		CVE-2025-24356 2025-01-28 03:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1403 - - - imgproxy is server for resizing, processing, and converting images. Imgproxy does not block the 0.0.0.0 address, even with IMGPROXY_ALLOW_LOOPBACK_SOURCE_ADDRESSES set to false. This can expose servi… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2025-24354 2025-01-28 03:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1404 - - - matrix-hookshot is a Matrix bot for connecting to external services like GitHub, GitLab, JIRA, and more. When Hookshot 6 version 6.0.1 or below, or Hookshot 5 version 5.4.1 or below, is configured wi… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2025-23197 2025-01-28 03:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1405 4.5 MEDIUM
Local 		- - A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This affects an unknown part in the library profapi.dll. The manipulation leads to untrusted search … CWE-426
 Untrusted Search Path 		CVE-2025-0733 2025-01-28 03:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1406 4.5 MEDIUM
Local 		- - A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll. The manipul… CWE-426
 Untrusted Search Path 		CVE-2025-0732 2025-01-28 03:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1407 - - - Vision related software from NI used a third-party library for image processing that exposes several vulnerabilities. These vulnerabilities may result in arbitrary code execution. Successful exploi… - CVE-2024-12740 2025-01-28 03:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1408 - - - Cacti is an open source performance and fault management framework. Due to a flaw in multi-line SNMP result parser, authenticated users can inject malformed OIDs in the response. When processed by ss… CWE-78
OS Command  		CVE-2025-22604 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1409 4.3 MEDIUM
Network 		- - A vulnerability was found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel. 40304. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to clickjacking. T… CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2025-0729 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1410 - - - A cross-site scripting (XSS) vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title… - CVE-2024-55227 2025-01-28 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm