Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206151 10 危険 シスコシステムズ - Cisco TelePresence Manager における任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0381 2011-11-29 09:55 2011-02-23 Show GitHub Exploit DB Packet Storm
206152 7.5 危険 シスコシステムズ - Cisco TelePresence Manager における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-0380 2011-11-29 09:54 2011-02-23 Show GitHub Exploit DB Packet Storm
206153 7.9 危険 シスコシステムズ - 複数の Cisco 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0379 2011-11-29 09:53 2011-02-23 Show GitHub Exploit DB Packet Storm
206154 8.3 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスの XML-RPC 実装における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0378 2011-11-29 09:53 2011-02-23 Show GitHub Exploit DB Packet Storm
206155 7.8 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0377 2011-11-29 09:52 2011-02-23 Show GitHub Exploit DB Packet Storm
206156 10 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-0376 2011-11-29 09:51 2011-02-23 Show GitHub Exploit DB Packet Storm
206157 9 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0375 2011-11-29 09:51 2011-02-23 Show GitHub Exploit DB Packet Storm
206158 9 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0374 2011-11-29 09:50 2011-02-23 Show GitHub Exploit DB Packet Storm
206159 9 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0373 2011-11-29 09:50 2011-02-23 Show GitHub Exploit DB Packet Storm
206160 10 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0372 2011-11-29 09:49 2011-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1791 6.3 MEDIUM
Network 		- - A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dashboard/admin/edit_member.php. The manipulation o… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0541 2025-01-18 07:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1792 - - - OtCMS <=V7.46 is vulnerable to Server-Side Request Forgery (SSRF) in /admin/read.php, which can Read system files arbitrarily. - CVE-2024-57252 2025-01-18 07:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1793 - - - A new feature to prevent Firmware downgrades was recently added to some Lexmark products. A method to override this downgrade protection has been identified. - CVE-2023-50738 2025-01-18 07:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1794 - - - Cross Site Scripting vulnerability in InformationPush master version allows a remote attacker to obtain sensitive information via the title, time and msg parameters - CVE-2024-57372 2025-01-18 07:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1795 - - - Teradata Vantage Editor 1.0.1 is mostly intended for SQL database access and docs.teradata.com access, but provides unintended functionality (including Chromium Developer Tools) that can result in a … - CVE-2024-52870 2025-01-18 07:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1796 - - - The AWS Cloud Development Kit (AWS CDK) is an open-source software development framework to define cloud infrastructure in code and provision it through AWS CloudFormation. Users who use IAM OIDC cus… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2025-23206 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1797 - - - Bible Module is a tool designed for ROBLOX developers to integrate Bible functionality into their games. The `FetchVerse` and `FetchPassage` functions in the Bible Module are susceptible to injection… CWE-20
 Improper Input Validation  		CVE-2025-23202 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1798 - - - Caido is a web security auditing toolkit. A Cross-Site Scripting (XSS) vulnerability was identified in Caido v0.45.0 due to improper sanitization in the URL decoding tooltip of HTTP request and respo… CWE-79
Cross-site Scripting 		CVE-2025-23039 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1799 6.3 MEDIUM
Network 		- - A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /expadd.php. The manipulation of the arg… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0540 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
1800 - - - nbgrader is a system for assigning and grading notebooks. Enabling frame-ancestors: 'self' grants any JupyterHub user the ability to extract formgrader content by sending malicious links to users wit… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2025-23205 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm