Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Jan. 29, 2025, 2:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 206701 | 4.3 | 警告 | TIBCO Software | - | TIBCO Managed File Transfer および Slingshot における Web セッションをハイジャックされる脆弱性 |
CWE-Other
その他 |
CVE-2011-3424 | 2011-09-26 15:37 | 2011-09-13 | Show | GitHub Exploit DB Packet Storm |
| 206702 | 10 | 危険 | シスコシステムズ | - | Cisco Unified Service Monitor における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2738 | 2011-09-22 15:55 | 2011-09-14 | Show | GitHub Exploit DB Packet Storm |
| 206703 | 6.8 | 警告 | Jaspersoft | - | JasperServer にクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2011-1911 | 2011-09-22 15:54 | 2011-09-16 | Show | GitHub Exploit DB Packet Storm |
| 206704 | 7.5 | 危険 | LifeSize Communications | - | LifeSize Room appliance の Web インターフェイスにおける任意のコマンドを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-2763 | 2011-09-22 15:50 | 2011-09-2 | Show | GitHub Exploit DB Packet Storm |
| 206705 | 5 | 警告 | LifeSize Communications | - | LifeSize Room appliance の Web インターフェイスにおける認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2011-2762 | 2011-09-22 15:49 | 2011-09-2 | Show | GitHub Exploit DB Packet Storm |
| 206706 | 7.5 | 危険 | Myrephp Programming | - | MYRE Real Estate Software の findagent.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-3394 | 2011-09-21 15:52 | 2011-09-15 | Show | GitHub Exploit DB Packet Storm |
| 206707 | 4.3 | 警告 | Myrephp Programming | - | MYRE Real Estate Software の findagent.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-3393 | 2011-09-21 15:51 | 2011-09-15 | Show | GitHub Exploit DB Packet Storm |
| 206708 | 10 | 危険 | Scadatec Limited | - | Scadatec Limited Procyon SCADA におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-3322 | 2011-09-21 15:51 | 2011-09-15 | Show | GitHub Exploit DB Packet Storm |
| 206709 | 2.1 | 注意 | シスコシステムズ | - | Cisco VPN client for Windows の StartServiceCtrlDispatcher 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-4118 | 2011-09-21 15:50 | 2009-11-19 | Show | GitHub Exploit DB Packet Storm |
| 206710 | 3.3 | 注意 | シスコシステムズ | - | Cisco Security Monitoring, Analysis and Response System における重要な情報を取得される脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-2977 | 2011-09-21 15:48 | 2009-08-27 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Jan. 29, 2025, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2101 | 7.8 |
HIGH
Local |
- | - | Microsoft Office OneNote Remote Code Execution Vulnerability |
CWE-641
Improper Restriction of Names for Files and Other Resources |
CVE-2025-21402 | 2025-01-15 03:16 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 2102 | - | - | - | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. NOTE: The Realtime WYSIWYG Editor extension was **experimental**, and thus **not recommended**… |
CWE-862
Missing Authorization |
CVE-2025-23025 | 2025-01-15 03:16 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm | |
| 2103 | - | - | - | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - OpenBadges Extension allows Cross-Site Scripting (XSS).Th… | - | CVE-2025-23080 | 2025-01-15 03:16 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm | |
| 2104 | 6.5 |
MEDIUM
Network |
- | - | Windows SmartScreen Spoofing Vulnerability |
CWE-451
User Interface (UI) Misrepresentation of Critical Information |
CVE-2025-21314 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 2105 | 6.5 |
MEDIUM
Network |
- | - | Windows Security Account Manager (SAM) Denial of Service Vulnerability |
CWE-833
Deadlock |
CVE-2025-21313 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 2106 | 2.4 |
LOW
Physics |
- | - | Windows Smart Card Reader Information Disclosure Vulnerability |
CWE-908
Use of Uninitialized Resource |
CVE-2025-21312 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 2107 | 9.8 |
CRITICAL
Network
-
|
-
|
Windows NTLM V1 Elevation of Privilege Vulnerability
|
CWE-303
|
Incorrect Implementation of Authentication Algorithm
CVE-2025-21311
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 2108 | 6.6 |
MEDIUM
Physics |
- | - | Windows Digital Media Elevation of Privilege Vulnerability |
CWE-125
Out-of-bounds Read |
CVE-2025-21310 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 2109 | 8.1 |
HIGH
Network |
- | - | Windows Remote Desktop Services Remote Code Execution Vulnerability |
CWE-591
Sensitive Data Storage in Improperly Locked Memory |
CVE-2025-21309 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 2110 | 6.5 |
MEDIUM
Network |
- | - | Windows Themes Spoofing Vulnerability |
CWE-200
Information Exposure |
CVE-2025-21308 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |