Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209201 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1286 2010-06-1 15:44 2010-05-11 Show GitHub Exploit DB Packet Storm
209202 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1284 2010-06-1 15:44 2010-05-11 Show GitHub Exploit DB Packet Storm
209203 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1283 2010-06-1 15:44 2010-05-11 Show GitHub Exploit DB Packet Storm
209204 4.3 警告 レッドハット
Glyph & Cog, LLC
ターボリナックス
サイバートラスト株式会社
CUPS		 - Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0166 2010-06-1 12:01 2009-04-16 Show GitHub Exploit DB Packet Storm
209205 4.3 警告 Glyph & Cog, LLC
アップル
サイバートラスト株式会社
CUPS
ターボリナックス
レッドハット		 - Xpdf および CUPS の JBIG2 デコーダーにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0147 2010-06-1 12:01 2009-04-16 Show GitHub Exploit DB Packet Storm
209206 4.3 警告 Glyph & Cog, LLC
アップル
サイバートラスト株式会社
CUPS
ターボリナックス
レッドハット		 - Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-0146 2010-06-1 12:01 2009-04-16 Show GitHub Exploit DB Packet Storm
209207 4.3 警告 アドビシステムズ - Adobe Shockwave Player におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1282 2010-05-31 18:27 2010-05-11 Show GitHub Exploit DB Packet Storm
209208 9.3 危険 アドビシステムズ - Adobe Shockwave Player の iml32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1281 2010-05-31 18:26 2010-05-11 Show GitHub Exploit DB Packet Storm
209209 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1280 2010-05-31 18:26 2010-05-11 Show GitHub Exploit DB Packet Storm
209210 9.3 危険 アドビシステムズ - Adobe Shockwave Player におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0987 2010-05-31 18:26 2010-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1361 - - - An issue in parse-uri v1.0.9 allows attackers to cause a Regular expression Denial of Service (ReDoS) via a crafted URL. - CVE-2024-36751 2025-01-16 07:15 2025-01-16 Show GitHub Exploit DB Packet Storm
1362 - - - A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /fladmin/cat_edit.php. The manipulation of t… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0487 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
1363 - - - A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fladmin/login.php. The manipulatio… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0486 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
1364 - - - An issue in the USB Autorun function of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to execute arbitrary code via uploading a crafted script from a USB device. - CVE-2024-48123 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
1365 - - - Insecure default configurations in HI-SCAN 6040i Hitrax HX-03-19-I allow authenticated attackers with low-level privileges to escalate to root-level privileges. - CVE-2024-48122 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
1366 - - - The HI-SCAN 6040i Hitrax HX-03-19-I was discovered to transmit user credentials in cleartext over the GIOP protocol. This allows attackers to possibly gain access to sensitive information via a man-i… - CVE-2024-48121 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
1367 - - - A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. This affects an unknown part of the file /fladmin/user_recoverpwd.php. The manipulation leads to use of d… - CVE-2025-0482 2025-01-16 06:15 2025-01-16 Show GitHub Exploit DB Packet Storm
1368 - - - Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the iface parameter in the vif_enable function. - CVE-2024-57226 2025-01-16 06:15 2025-01-11 Show GitHub Exploit DB Packet Storm
1369 - - - TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the modifyOne parameter in the enable_wsh function. - CVE-2024-57211 2025-01-16 06:15 2025-01-11 Show GitHub Exploit DB Packet Storm
1370 - - - TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an a… - CVE-2024-54887 2025-01-16 06:15 2025-01-10 Show GitHub Exploit DB Packet Storm