Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206631 4 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における Talent Acquisition Manager の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3529 2011-10-27 10:01 2011-10-18 Show GitHub Exploit DB Packet Storm
206632 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における Candidate Gateway の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3527 2011-10-27 10:01 2011-10-18 Show GitHub Exploit DB Packet Storm
206633 5.5 警告 オラクル - Oracle PeopleSoft Enterprise PeopleTools におけるセキュリティの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2315 2011-10-27 09:59 2011-10-18 Show GitHub Exploit DB Packet Storm
206634 2.8 注意 オラクル - Oracle PeopleSoft Enterprise PeopleTools における Personalization の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3520 2011-10-27 09:59 2011-10-18 Show GitHub Exploit DB Packet Storm
206635 4 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における eDevelopment の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3530 2011-10-27 09:58 2011-10-18 Show GitHub Exploit DB Packet Storm
206636 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における eProfile の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3528 2011-10-27 09:55 2011-10-18 Show GitHub Exploit DB Packet Storm
206637 4 警告 オラクル - Oracle Siebel CRM の Siebel Core - UIF Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3526 2011-10-27 09:54 2011-10-18 Show GitHub Exploit DB Packet Storm
206638 5.5 警告 オラクル - Oracle Siebel CRM の Siebel Core - UIF Client コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3518 2011-10-27 09:53 2011-10-18 Show GitHub Exploit DB Packet Storm
206639 4.3 警告 オラクル - Oracle Siebel CRM の Siebel Apps - Marketing コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2316 2011-10-27 09:53 2011-10-18 Show GitHub Exploit DB Packet Storm
206640 1.7 注意 オラクル - Oracle Solaris における Zone の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3539 2011-10-27 09:52 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4071 - - - Cross-site scripting vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP… - CVE-2025-0354 2025-01-21 13:15 2025-01-15 Show GitHub Exploit DB Packet Storm
4072 - - - Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim typically doesn't show a screen and just operates silently in ba… - CVE-2025-24014 2025-01-21 12:15 2025-01-21 Show GitHub Exploit DB Packet Storm
4073 6.2 MEDIUM
Local 		- - IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-45091 2025-01-21 10:15 2025-01-21 Show GitHub Exploit DB Packet Storm
4074 - - - Cosmos provides users the ability self-host a home server by acting as a secure gateway to your application, as well as a server manager. By monitoring the error code returned in the login, it is pos… CWE-204
 Response Discrepancy Information Exposure 		CVE-2025-23214 2025-01-21 03:15 2025-01-21 Show GitHub Exploit DB Packet Storm
4075 4.0 MEDIUM
Local 		- - IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 allows web pages to be stored locally which can be read by another user on the system. CWE-525
 Use of Web Browser Cache Containing Sensitive Information 		CVE-2024-22349 2025-01-21 03:15 2025-01-21 Show GitHub Exploit DB Packet Storm
4076 5.3 MEDIUM
Network 		- - IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensiti… CWE-942
 Permissive Cross-domain Policy with Untrusted Domains 		CVE-2024-22348 2025-01-21 03:15 2025-01-21 Show GitHub Exploit DB Packet Storm
4077 5.9 MEDIUM
Network 		- - IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-22347 2025-01-21 03:15 2025-01-21 Show GitHub Exploit DB Packet Storm
4078 - - - Fedify is a TypeScript library for building federated server apps powered by ActivityPub and other standards. This vulnerability allows a user to maneuver the Webfinger mechanism to perform a GET req… CWE-918
CWE-835
Server-Side Request Forgery (SSRF) 
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2025-23221 2025-01-21 02:15 2025-01-21 Show GitHub Exploit DB Packet Storm
4079 - - - CodeIgniter is a PHP full-stack web framework. Prior to 4.5.8, CodeIgniter lacked proper header validation for its name and value. The potential attacker can construct deliberately malformed headers … CWE-436
 Interpretation Conflict 		CVE-2025-24013 2025-01-21 01:15 2025-01-21 Show GitHub Exploit DB Packet Storm
4080 - - - Vite is a frontend tooling framework for javascript. Vite allowed any websites to send any requests to the development server and read the response due to default CORS settings and lack of validation… CWE-346
CWE-350
CWE-1385
 Origin Validation Error
 Reliance on Reverse DNS Resolution for a Security-Critical Action
 Missing Origin Validation in WebSockets 		CVE-2025-24010 2025-01-21 01:15 2025-01-21 Show GitHub Exploit DB Packet Storm