Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 3, 2025, 1:14 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 206051 | 6.8 | 警告 | Canonical | - | Ubuntu の Software Center における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-3150 | 2011-12-8 12:12 | 2011-11-21 | Show | GitHub Exploit DB Packet Storm |
| 206052 | 4.3 | 警告 | phpWebSite | - | phpWebSite におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4265 | 2011-12-8 12:04 | 2011-12-8 | Show | GitHub Exploit DB Packet Storm |
| 206053 | 7.5 | 危険 | One Click Orgs | - | One Click Orgs におけるアクセス権を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2011-4677 | 2011-12-7 16:25 | 2011-12-6 | Show | GitHub Exploit DB Packet Storm |
| 206054 | 5.8 | 警告 | One Click Orgs | - | One Click Orgs におけるオープンリダイレクトの複数の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-4553 | 2011-12-7 16:19 | 2011-12-6 | Show | GitHub Exploit DB Packet Storm |
| 206055 | 4.3 | 警告 | One Click Orgs | - | One Click Orgs におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4552 | 2011-12-7 16:18 | 2011-12-6 | Show | GitHub Exploit DB Packet Storm |
| 206056 | 7.5 | 危険 | osCommerce | - | osCommerce における複数のディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4543 | 2011-12-6 16:33 | 2011-12-5 | Show | GitHub Exploit DB Packet Storm |
| 206057 | 7.5 | 危険 | Zabbix | - | Zabbix の popup.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-4674 | 2011-12-6 16:27 | 2011-11-24 | Show | GitHub Exploit DB Packet Storm |
| 206058 | 7.5 | 危険 | Automattic Inc. | - | WordPress 用 Jetpack プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-4673 | 2011-12-6 16:26 | 2011-12-2 | Show | GitHub Exploit DB Packet Storm |
| 206059 | 7.5 | 危険 | Valid | - | Valid tiny-erp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-4672 | 2011-12-6 16:25 | 2011-12-2 | Show | GitHub Exploit DB Packet Storm |
| 206060 | 7.5 | 危険 | AdRotate Plugin | - | WordPress 用 AdRotate プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-4671 | 2011-12-6 16:24 | 2011-12-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Feb. 4, 2025, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1591 | 5.5 |
MEDIUM
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_server_2022_23h2 windows_10_1507 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows… |
Windows Kernel Memory Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21320 | 2025-01-22 23:45 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 1592 | 5.5 |
MEDIUM
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_server_2022_23h2 windows_10_1607 windows_10_1507 windows_10_1809 windows_10_21h2 windows_10_22h2 windows… |
Windows Kernel Memory Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21319 | 2025-01-22 23:44 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 1593 | 5.5 |
MEDIUM
Local |
microsoft |
windows_server_2012 windows_server_2025 windows_server_2022_23h2 windows_10_1607 windows_10_1507 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_22h2 windows_11_… |
Windows Kernel Memory Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21318 | 2025-01-22 23:43 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 1594 | 5.5 |
MEDIUM
Local |
microsoft |
windows_server_2025 windows_server_2022_23h2 windows_10_21h2 windows_10_22h2 windows_11_22h2 windows_11_23h2 windows_11_24h2 windows_server_2022 |
Windows Kernel Memory Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21317 | 2025-01-22 23:42 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 1595 | 5.5 |
MEDIUM
Local |
microsoft |
windows_server_2012 windows_server_2025 windows_server_2022_23h2 windows_10_1607 windows_10_1809 windows_10_1507 windows_10_21h2 windows_10_22h2 windows_11_22h2 windows_11_… |
Windows Kernel Memory Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21316 | 2025-01-22 23:41 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 1596 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2025 windows_server_2022_23h2 windows_11_24h2 |
Microsoft Brokering File System Elevation of Privilege Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21315 | 2025-01-22 23:40 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 1597 | - | - | - | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | - | CVE-2024-57937 | 2025-01-22 22:15 | 2025-01-21 | Show | GitHub Exploit DB Packet Storm | |
| 1598 | - | - | - | A externally controlled reference to a resource in another sphere in Fortinet FortiManager before version 7.4.3, FortiMail before version 7.0.3, FortiAnalyzer before version 7.4.3, FortiVoice version… |
CWE-610
Externally Controlled Reference to a Resource in Another Sphere |
CVE-2022-23439 | 2025-01-22 19:15 | 2025-01-22 | Show | GitHub Exploit DB Packet Storm | |
| 1599 | - | - | - | Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If a user logs in to CLI of the affected produc… |
CWE-78
OS Command |
CVE-2025-23237 | 2025-01-22 15:15 | 2025-01-22 | Show | GitHub Exploit DB Packet Storm | |
| 1600 | - | - | - | Inclusion of undocumented features issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. A remote attacker may disable the LAN-side firewall function of the affected products, and open specifi… |
CWE-1242
Inclusion of Undocumented Features or Chicken Bits |
CVE-2025-22450 | 2025-01-22 15:15 | 2025-01-22 | Show | GitHub Exploit DB Packet Storm |