Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 25, 2025, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
208601 3.5 注意 Drupal
サイバートラスト株式会社
- Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3093 2010-10-7 16:38 2010-08-11 Show GitHub Exploit DB Packet Storm
208602 5.5 警告 Drupal
サイバートラスト株式会社
- Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3092 2010-10-7 16:37 2010-08-11 Show GitHub Exploit DB Packet Storm
208603 9.3 危険 アップル - Apple QuickTime の IPersistPropertyBag2::Read における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-1818 2010-10-6 16:57 2010-08-31 Show GitHub Exploit DB Packet Storm
208604 9.3 危険 IBM - IBM Lotus Domino サーバの MailCheck821Address 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-3407 2010-10-6 16:57 2010-09-16 Show GitHub Exploit DB Packet Storm
208605 6.8 警告 マイクロソフト - Microsoft Outlook Web Access におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2010-3213 2010-10-6 16:56 2010-09-7 Show GitHub Exploit DB Packet Storm
208606 6.9 警告 マイクロソフト - Microsoft Windows の Win32 サブシステム内にある CSRSS における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-1891 2010-10-6 16:56 2010-09-14 Show GitHub Exploit DB Packet Storm
208607 9 危険 マイクロソフト - Microsoft Windows の LSASS におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-0820 2010-10-6 16:55 2010-09-14 Show GitHub Exploit DB Packet Storm
208608 9.3 危険 マイクロソフト - Microsoft Windows の WordPad Text Converters における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-2563 2010-10-6 16:55 2010-09-14 Show GitHub Exploit DB Packet Storm
208609 9.3 危険 マイクロソフト - Microsoft Windows の RPC クライアント実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-2567 2010-10-6 16:55 2010-09-14 Show GitHub Exploit DB Packet Storm
208610 6.8 警告 マイクロソフト - Windows 上で稼働する Microsoft Internet Information Services におけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証
CVE-2010-2731 2010-10-6 16:54 2010-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1961 - - - Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the Attachment/DownloadTempFile function. - CVE-2023-42225 2025-01-14 07:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1962 - - - MonicaHQ v4.1.1 was discovered to contain an authenticated Client-Side Injection vulnerability via the entry text field at /journal/entries/ID/edit. - CVE-2024-54997 2025-01-14 07:15 2025-01-11 Show GitHub Exploit DB Packet Storm
1963 - - - A PHP Code Injection vulnerability that can lead to Remote Code Execution (RCE) and XSS in Opencode Mobile Collect Call v5.4.7 allows attackers to execute arbitrary web scripts or HTML via a crafted … - CVE-2024-55494 2025-01-14 07:15 2025-01-10 Show GitHub Exploit DB Packet Storm
1964 - - - Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 128.5, and Thunderbird 128.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort so… - CVE-2025-0243 2025-01-14 07:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1965 - - - Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 115.18, Firefox ESR 128.5, Thunderbird 115.18, and Thunderbird 128.5. Some of these bugs showed evidence of memory corruption a… - CVE-2025-0242 2025-01-14 07:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1966 - - - When segmenting specially crafted text, segmentation would corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134,… - CVE-2025-0241 2025-01-14 07:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1967 - - - Parsing a JavaScript module as JSON could under some circumstances cause cross-compartment access, which may result in a use-after-free. This vulnerability affects Firefox < 134, Firefox ESR < 128.6,… - CVE-2025-0240 2025-01-14 07:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1968 - - - When using Alt-Svc, ALPN did not properly validate certificates when the original server is redirecting to an insecure site. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird… - CVE-2025-0239 2025-01-14 07:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1969 - - - Assuming a controlled failed memory allocation, an attacker could have caused a use-after-free, leading to a potentially exploitable crash. This vulnerability affects Firefox < 134, Firefox ESR < 128… - CVE-2025-0238 2025-01-14 07:15 2025-01-8 Show GitHub Exploit DB Packet Storm
1970 - - - The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege… - CVE-2025-0237 2025-01-14 07:15 2025-01-8 Show GitHub Exploit DB Packet Storm