Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 1, 2025, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207201	9.3	危険	マイクロソフト	-	Microsoft Windows の Embedded OpenType フォントエンジンにおける任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0018	2010-02-9 13:55	2010-01-12	Show	GitHub Exploit DB Packet Storm

207202	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat におけるファイル拡張子の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3461	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

207203	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3460	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

207204	4.3	警告	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-2995	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

207205	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-2989	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

207206	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat の画像デコーダにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-2984	2010-02-9 13:54	2009-10-13	Show	GitHub Exploit DB Packet Storm

207207	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3797	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

207208	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3796	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

207209	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3794	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

207210	10	危険	IBM	-	IBM Lotus Domino Web Access におけるリンク処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0276	2010-02-8 13:19	2010-01-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 1, 2025, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2401	4.3	MEDIUM Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 could allow an authenticated user to upload insecure files, due to insufficient file type distinction.	CWE-351 Insufficient Type Distinction	CVE-2024-45676	2024-12-11 12:21	2024-12-4	Show	GitHub Exploit DB Packet Storm

2402	2.5	LOW Local	-	-	IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain sensitive information due to improper encryption of certain data.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2023-37395	2024-12-11 12:15	2024-12-11	Show	GitHub Exploit DB Packet Storm

2403	4.4	MEDIUM Network	-	-	IBM OpenPages with Watson 9.0 may write sensitive information, under specific configurations, in clear text to the system tracing log files that could be obtained by a privileged user.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-35117	2024-12-11 11:15	2024-12-11	Show	GitHub Exploit DB Packet Storm

2404	7.8	HIGH Local	razormist	phone_contact_manager_system	A vulnerability, which was classified as problematic, has been found in SourceCodester Phone Contact Manager System 1.0. This issue affects the function UserInterface::MenuDisplayStart of the compone…	NVD-CWE-noinfo	CVE-2024-12353	2024-12-11 08:37	2024-12-9	Show	GitHub Exploit DB Packet Storm

2405	7.8	HIGH Local	razormist	phone_contact_manager_system	A vulnerability has been found in SourceCodester Phone Contact Manager System 1.0 and classified as problematic. Affected by this vulnerability is the function ContactBook::adding of the file Contact…	NVD-CWE-noinfo	CVE-2024-12355	2024-12-11 08:36	2024-12-9	Show	GitHub Exploit DB Packet Storm

2406	7.8	HIGH Local	razormist	phone_contact_manager_system	A vulnerability, which was classified as critical, was found in SourceCodester Phone Contact Manager System 1.0. Affected is the function UserInterface::MenuDisplayStart of the component User Menu. T…	CWE-787 Out-of-bounds Write	CVE-2024-12354	2024-12-11 08:36	2024-12-9	Show	GitHub Exploit DB Packet Storm

2407	5.3	MEDIUM Network	mayurik	best_house_rental_management_system	A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The man…	NVD-CWE-Other	CVE-2024-12357	2024-12-11 08:35	2024-12-9	Show	GitHub Exploit DB Packet Storm

2408	5.4	MEDIUM Network	code-projects	admin_dashboard	A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendor_management.php. The manipulation of th…	CWE-79 Cross-site Scripting	CVE-2024-12359	2024-12-11 08:34	2024-12-9	Show	GitHub Exploit DB Packet Storm

2409	8.8	HIGH Network	datax-web_project	datax-web	A vulnerability was found in WeiYe-Jing datax-web 2.1.1. It has been classified as critical. This affects an unknown part of the file /api/job/add/. The manipulation of the argument glueSource leads …	CWE-78 OS Command	CVE-2024-12358	2024-12-11 08:34	2024-12-9	Show	GitHub Exploit DB Packet Storm

2410	8.8	HIGH Network	online_class_and_exam_scheduling_system_project	online_class_and_exam_scheduling_system	A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0. It has been rated as critical. This issue affects some unknown processing of the file class_update.php. The man…	CWE-89 SQL Injection	CVE-2024-12360	2024-12-11 08:33	2024-12-9	Show	GitHub Exploit DB Packet Storm