Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205851 4.3 警告 Digium - Asterisk の channels/chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-200
情報漏えい 		CVE-2011-4598 2011-12-19 15:03 2011-11-2 Show GitHub Exploit DB Packet Storm
205852 5 警告 Digium - Asterisk の UDP 実装での SIP におけるユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-4597 2011-12-19 15:01 2011-07-18 Show GitHub Exploit DB Packet Storm
205853 7.5 危険 Caupo.Net - CaupoShop Pro および CaupoShop Classic におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4832 2011-12-19 13:44 2011-12-15 Show GitHub Exploit DB Packet Storm
205854 4 警告 David Azoulay - Web File Browser の webFileBrowser.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4831 2011-12-19 13:43 2011-12-15 Show GitHub Exploit DB Packet Storm
205855 7.5 危険 e4j Extensions for Joomla - Joomla! 用 Vik Real Estate コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4823 2011-12-19 11:52 2011-12-15 Show GitHub Exploit DB Packet Storm
205856 3.5 注意 Barter Sites - Joomla! 用 Barter Sites の com_listing コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4830 2011-12-19 11:51 2011-12-15 Show GitHub Exploit DB Packet Storm
205857 7.5 危険 Barter Sites - Joomla! 用 Barter Sites の com_listing コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4829 2011-12-19 11:50 2011-12-15 Show GitHub Exploit DB Packet Storm
205858 7.5 危険 AutoSec Tools - AutoSec Tools V-CMS のファイルアップロードにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4828 2011-12-19 11:49 2011-11-27 Show GitHub Exploit DB Packet Storm
205859 4.3 警告 AutoSec Tools - AutoSec Tools V-CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4827 2011-12-19 11:39 2011-12-15 Show GitHub Exploit DB Packet Storm
205860 6.8 警告 AutoSec Tools - AutoSec Tools V-CMS の session.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4826 2011-12-19 11:30 2011-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1701 - - - In build_read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution… - CVE-2024-43096 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1702 - - - In multiple locations, there is a possible way to obtain any system permission due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileg… - CVE-2024-43095 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1703 - - - In multiple locations, there is a possible bypass of user consent to enabling new Bluetooth HIDs due to a logic error in the code. This could lead to local escalation of privilege with no additional … - CVE-2024-34730 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1704 - - - In setActualDefaultRingtoneUri of RingtoneManager.java, there is a possible way to bypass content providers read permissions due to a missing permission check. This could lead to local escalation of … - CVE-2023-40132 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1705 - - - In multiple locations, there is a possible way to access media content belonging to another user due to a missing permission check. This could lead to local information disclosure with no additional … - CVE-2023-40108 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1706 7.5 HIGH
Network 		- - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). The supported version that is affected is 14.1.1.0.0. Easily exploitable vulnerability allows unau… - CVE-2025-21549 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1707 6.4 MEDIUM
Network 		- - Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). Supported versions that are affected are 9.1.0 and prior. Easily exploitable vulnerability allows high pr… - CVE-2025-21548 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1708 9.1 CRITICAL
Network 		- - Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Applications (component: Opera Servlet). Supported versions that are affected are 5.6.19.20, 5.6.25.8, 5.6.26.6 and 5.6… - CVE-2025-21547 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1709 3.8 LOW
Network 		- - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. … - CVE-2025-21546 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm
1710 7.5 HIGH
Network 		- - Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: OpenSearch). Supported versions that are affected are 8.60 and 8.61. Easily exploitable vulnerability… - CVE-2025-21545 2025-01-23 03:15 2025-01-22 Show GitHub Exploit DB Packet Storm