Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 9, 2025, 4:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207011 7.5 危険 The PHP Group - PHP の dechunk フィルタにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-1866 2010-08-18 18:26 2010-05-2 Show GitHub Exploit DB Packet Storm
207012 5 警告 The PHP Group - PHP の chunk_split 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1862 2010-08-18 18:25 2010-05-4 Show GitHub Exploit DB Packet Storm
207013 5 警告 The PHP Group - PHP の addcslashes 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1864 2010-08-17 17:37 2010-05-3 Show GitHub Exploit DB Packet Storm
207014 5 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2190 2010-08-17 17:36 2010-05-30 Show GitHub Exploit DB Packet Storm
207015 6.4 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2010-2191 2010-08-17 17:35 2010-05-31 Show GitHub Exploit DB Packet Storm
207016 5 警告 The PHP Group - PHP の Zend Engine における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1914 2010-08-17 17:34 2010-05-8 Show GitHub Exploit DB Packet Storm
207017 6.4 警告 The PHP Group - PHP の sysvshm 拡張における任意のメモリアドレスを書かれる脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1861 2010-08-17 17:33 2010-05-5 Show GitHub Exploit DB Packet Storm
207018 4.3 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-0654 2010-08-16 18:57 2010-02-18 Show GitHub Exploit DB Packet Storm
207019 7.6 危険 アップル - Apple Safari における window オブジェクトの処理に脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1939 2010-08-16 15:08 2010-05-12 Show GitHub Exploit DB Packet Storm
207020 7.6 危険 IBM - IBM Lotus Domino Web Access の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0919 2010-08-16 15:05 2010-03-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1111 - - - Missing Authorization vulnerability in DeluxeThemes Userpro.This issue affects Userpro: from n/a through 5.1.9. CWE-862
 Missing Authorization 		CVE-2024-56211 2024-12-31 19:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1112 - - - Protection Mechanism Failure in bootloader prior to SMR Oct-2024 Release 1 allows physical attackers to reset lockscreen failure count by hardware fault injection. User interaction is required for tr… - CVE-2024-49422 2024-12-31 18:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1113 - - - The Hunk Companion WordPress plugin before 1.9.0 does not correctly authorize some REST API endpoints, allowing unauthenticated requests to install and activate arbitrary Hunk Companion WordPress plu… - CVE-2024-11972 2024-12-31 15:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1114 7.6 HIGH
Network 		- - A flaw was found in the OpenShift build process, where the docker-build container is configured with a hostPath volume mount that maps the node's /var/lib/kubelet/config.json file into the build pod.… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-45497 2024-12-31 12:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1115 8.8 HIGH
Network 		- - The QOCA aim from Quanta Computer has an Authorization Bypass Through User-Controlled Key vulnerability. By controlling the user ID parameter, remote attackers with regular privileges could access ce… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-13040 2024-12-31 11:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1116 8.8 HIGH
Network 		- - The login mechanism via device authentication of CGFIDO from Changing Information Technology has an Authentication Bypass vulnerability. If a user visits a forged website, the agent program deployed … CWE-294
Authentication Bypass by Capture-replay  		CVE-2024-12839 2024-12-31 11:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1117 8.8 HIGH
Network 		- - The passwordless login mechanism in CGFIDO from Changing Information Technology has an Authentication Bypass vulnerability, allowing remote attackers with regular privileges to send a crafted request… CWE-302
 Authentication Bypass by Assumed-Immutable Data 		CVE-2024-12838 2024-12-31 11:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1118 - - - An issue exists in SoftIron HyperCloud where authenticated, but non-admin users can create data pools, which could potentially impact the performance and availability of the backend software-defined… - CVE-2024-13058 2024-12-31 07:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1119 - - - Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker m… CWE-59
Link Following 		CVE-2024-12753 2024-12-31 06:15 2024-12-31 Show GitHub Exploit DB Packet Storm
1120 - - - Foxit PDF Reader AcroForm Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. Us… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2024-12752 2024-12-31 06:15 2024-12-31 Show GitHub Exploit DB Packet Storm