Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 17, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
206621	-	-	IBM	-	IBM WebSphere Portal Server の入力値検証に脆弱性	-	-	2011-03-25 15:16	2011-02-24	Show	GitHub Exploit DB Packet Storm

206622	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0457	2011-03-25 12:02	2011-03-14	Show	GitHub Exploit DB Packet Storm

206623	5.1	警告	Google	-	Picasa における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2011-0458	2011-03-25 12:01	2011-03-25	Show	GitHub Exploit DB Packet Storm

206624	7.2	危険	マイクロソフト	-	Microsoft Malware Protection Engine における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0037	2011-03-24 15:40	2011-02-23	Show	GitHub Exploit DB Packet Storm

206625	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスにおける任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0396	2011-03-24 15:37	2011-02-23	Show	GitHub Exploit DB Packet Storm

206626	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0395	2011-03-24 15:34	2011-02-23	Show	GitHub Exploit DB Packet Storm

206627	7.8	危険	シスコシステムズ	-	複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0394	2011-03-24 15:32	2011-02-23	Show	GitHub Exploit DB Packet Storm

206628	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスおよび Cisco PIX Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0393	2011-03-24 15:13	2011-02-23	Show	GitHub Exploit DB Packet Storm

206629	7.1	危険	ISC, Inc.	-	ISC BIND にサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0414	2011-03-24 15:07	2011-02-23	Show	GitHub Exploit DB Packet Storm

206630	4.9	警告	Linux レッドハット	-	Linux kernel の mm/mprotect.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4169	2011-03-24 15:01	2010-11-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 17, 2025, 5:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2001	-		-	-	A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minus_cart.php. The…	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0199	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2002	4.3	MEDIUM Network	-	-	IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to …	-	CVE-2024-55897	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2003	5.4	MEDIUM Network	-	-	IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthori…	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2024-55896	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2004	4.3	MEDIUM Network	-	-	The Photo Gallery Slideshow & Masonry Tiled Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.0.15 via the rjg_get_youtube_info_justifi…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-12237	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2005	7.3	HIGH Network	-	-	The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0. This is due to the software allowing users to execute …	CWE-94 Code Injection	CVE-2024-11733	2025-01-4 08:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2006	-		-	-	A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared as critical. Affected by this vulnerability is the function action_service of the file app/modules/roxywi/roxy.py. The manipulat…	CWE-78 CWE-77 OS Command Command Injection	CVE-2024-13129	2025-01-4 07:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2007	-		-	-	A vulnerability, which was classified as critical, has been found in code-projects Point of Sales and Inventory Management System 1.0. This issue affects some unknown processing of the file /user/sea…	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0198	2025-01-4 06:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2008	-		-	-	Next.js is a React framework for building full-stack web applications. Starting in version 13.0.0 and prior to versions 13.5.8, 14.2.21, and 15.1.2, Next.js is vulnerable to a Denial of Service (DoS)…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-56332	2025-01-4 06:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2009	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 have a cross-site scripting (XSS) vulnerability in custom properties. The …	-	CVE-2024-56410	2025-01-4 06:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2010	-		-	-	FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an integer overflow, potentially resulting in a denial-of-service (DoS) condition or other undefined behav…	-	CVE-2024-36613	2025-01-4 06:15	2025-01-4	Show	GitHub Exploit DB Packet Storm