Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 29, 2025, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
207711 4.3 警告 アップル - 複数の Apple 製品の WebKit における CSS のトークンシーケンスを挿入される脆弱性 CWE-20
CWE-264
CVE-2011-0161 2011-04-7 14:16 2011-03-11 Show GitHub Exploit DB Packet Storm
207712 5 警告 アップル - 複数の Apple 製品の WebKit における認証情報を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2011-0160 2011-04-7 14:09 2011-03-11 Show GitHub Exploit DB Packet Storm
207713 4.7 警告 Linux
レッドハット
- Linux kernel の kernel/trace/ftrace.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-3079 2011-04-7 13:49 2010-09-20 Show GitHub Exploit DB Packet Storm
207714 7.2 危険 Linux
レッドハット
- Linux kernel の Direct Rendering Manager サブシステムの Intel i915 ドライバにおける権限昇格の脆弱性 CWE-20
不適切な入力確認
CVE-2010-2962 2011-04-7 13:44 2010-10-20 Show GitHub Exploit DB Packet Storm
207715 1.9 注意 Linux
レッドハット
- Linux kernel の Direct Rendering Manager サブシステムの drm_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-2803 2011-04-7 13:43 2010-08-26 Show GitHub Exploit DB Packet Storm
207716 2.6 注意 アップル - Apple Safari のウインドウの機能における任意のローカルファイルが送信される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-0169 2011-04-6 18:38 2011-03-11 Show GitHub Exploit DB Packet Storm
207717 7.8 危険 アップル - 複数の Apple 製品の Wi-Fi におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-0162 2011-04-6 18:36 2011-03-11 Show GitHub Exploit DB Packet Storm
207718 4.3 警告 アップル - Apple Safari のウインドウの機能における任意のローカルファイルが送信される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-0167 2011-04-6 18:01 2011-03-11 Show GitHub Exploit DB Packet Storm
207719 5.8 警告 アップル - Apple Safari の HTML5 ドラッグ&ドロップの機能における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-0166 2011-04-6 17:38 2011-03-11 Show GitHub Exploit DB Packet Storm
207720 5 警告 アップル - Apple iOS の Safari にある Safari 設定機能におけるユーザを追跡可能な脆弱性 CWE-20
不適切な入力確認
CVE-2011-0159 2011-04-6 17:34 2011-03-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2811 7.8 HIGH
Local
qualcomm fastconnect_6900_firmware
fastconnect_7800_firmware
qcm8550_firmware
qcs8550_firmware
sg8275p_firmware
sm8550p_firmware
snapdragon_8_gen_2_mobile_firmware
snapdragon_8_gen_3_mobi…
Memory corruption while processing frame command IOCTL calls. CWE-416
 Use After Free
CVE-2024-33059 2025-01-11 01:53 2025-01-6 Show GitHub Exploit DB Packet Storm
2812 5.5 MEDIUM
Local
qualcomm qcs8550_firmware
sw5100_firmware
sw5100p_firmware
wcn3660b_firmware
wcn3680b_firmware
wcn3980_firmware
wcn3988_firmware
wsa8830_firmware
wsa8835_firmware
Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process. CWE-125
Out-of-bounds Read
CVE-2024-33061 2025-01-11 01:49 2025-01-6 Show GitHub Exploit DB Packet Storm
2813 - - - WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the configuracao_doacao.php endpoint of the WeGIA application. This vulnerab… CWE-79
Cross-site Scripting
CVE-2025-22600 2025-01-11 01:15 2025-01-11 Show GitHub Exploit DB Packet Storm
2814 - - - WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the home.php endpoint of the WeGIA application. This vulnerability allows at… CWE-79
Cross-site Scripting
CVE-2025-22599 2025-01-11 01:15 2025-01-11 Show GitHub Exploit DB Packet Storm
2815 - - - WeGIA is a web manager for charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the cadastrarSocio.php endpoint of the WeGIA application. This vulnerability al… CWE-79
Cross-site Scripting
CVE-2025-22598 2025-01-11 01:15 2025-01-11 Show GitHub Exploit DB Packet Storm
2816 - - - WeGIA is a web manager for charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the CobrancaController.php endpoint of the WeGIA application. This vulnerabilit… CWE-79
Cross-site Scripting
CVE-2025-22597 2025-01-11 01:15 2025-01-11 Show GitHub Exploit DB Packet Storm
2817 - - - WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the modulos_visiveis.php endpoint of the WeGIA application. This vulnerabili… CWE-79
Cross-site Scripting
CVE-2025-22596 2025-01-11 01:15 2025-01-11 Show GitHub Exploit DB Packet Storm
2818 - - - Atheos is a self-hosted browser-based cloud IDE. Prior to v600, the $path and $target parameters are not properly validated across multiple components, allowing an attacker to read, modify, or execut… CWE-22
CWE-94
CWE-434
Path Traversal
Code Injection
 Unrestricted Upload of File with Dangerous Type 
CVE-2025-22152 2025-01-11 01:15 2025-01-11 Show GitHub Exploit DB Packet Storm
2819 - - - DataEase is an open source data visualization analysis tool. Prior to 2.10.4, there is a flaw in the authentication in the io.dataease.auth.filter.TokenFilter class, which can be bypassed and cause t… CWE-289
 Authentication Bypass by Alternate Name
CVE-2024-56511 2025-01-11 01:15 2025-01-11 Show GitHub Exploit DB Packet Storm
2820 - - - An arbitrary file upload vulnerability in the MediaPool module of Redaxo CMS v5.17.1 allows attackers to execute arbitrary code via uploading a crafted file. - CVE-2024-46210 2025-01-11 01:15 2025-01-11 Show GitHub Exploit DB Packet Storm