Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 16, 2025, 2:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208381	4.4	警告	KVM レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0419	2010-03-23 14:09	2010-03-1	Show	GitHub Exploit DB Packet Storm

208382	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0263	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

208383	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0262	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

208384	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0261	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

208385	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2010-0260	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

208386	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0258	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

208387	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0264	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

208388	9.3	危険	マイクロソフト	-	Microsoft Office Excel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0257	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

208389	9.3	危険	マイクロソフト	-	Microsoft Windows Movie Maker および Microsoft Producer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0265	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

208390	8.5	危険	Samba Project	-	Samba の smbd におけるファイルパーミッションを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0728	2010-03-18 12:09	2010-03-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1811	-		-	-	Cross-Site Scripting (XSS) vulnerability in Pnetlab 5.3.11 allows an attacker to inject malicious scripts into a web page, which are executed in the context of the victim's browser.	-	CVE-2024-51111	2025-01-7 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

1812	6.4	MEDIUM Network	-	-	IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaS…	CWE-79 Cross-site Scripting	CVE-2024-31914	2025-01-7 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

1813	5.5	MEDIUM Network	-	-	IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaS…	CWE-79 Cross-site Scripting	CVE-2024-31913	2025-01-7 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

1814	-		-	-	An issue was discovered in Optimizely Configured Commerce before 5.2.2408. A medium-severity session issue exists in the Commerce B2B application, affecting the longevity of active sessions in the st…	-	CVE-2025-22386	2025-01-7 01:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

1815	-		-	-	An issue was discovered in Optimizely Configured Commerce before 5.2.2408. For newly created accounts, the Commerce B2B application does not require email confirmation. This medium-severity issue all…	-	CVE-2025-22385	2025-01-7 01:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

1816	9.8	CRITICAL Network	1000projects	beauty_parlour_management_system	A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-customer-se…	CWE-89 SQL Injection	CVE-2024-13072	2025-01-7 00:19	2025-01-1	Show	GitHub Exploit DB Packet Storm

1817	-		-	-	OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in the application log, which an unauthorized actor can use to decrypt the VPN traf…	-	CVE-2024-8474	2025-01-7 00:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

1818	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid…	-	CVE-2024-12997	2025-01-7 00:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

1819	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid…	-	CVE-2024-12996	2025-01-7 00:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

1820	-		-	-	In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, wi…	-	CVE-2024-20154	2025-01-7 00:15	2025-01-6	Show	GitHub Exploit DB Packet Storm