Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209211 9.3 危険 マイクロソフト - Microsoft Windows の MPEG-4 コーデックにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0818 2010-10-5 18:58 2010-09-14 Show GitHub Exploit DB Packet Storm
209212 9.3 危険 マイクロソフト - Microsoft Windows の Print Spooler サービスにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2729 2010-10-5 18:57 2010-09-14 Show GitHub Exploit DB Packet Storm
209213 1.7 注意 IBM - IBM AIX の sa_snap におけるファイルを削除される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3406 2010-10-5 18:57 2010-08-6 Show GitHub Exploit DB Packet Storm
209214 6.8 警告 IBM - IBM AIX および VIOS の sa_snap におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3405 2010-10-5 18:56 2010-08-6 Show GitHub Exploit DB Packet Storm
209215 4.3 警告 有限会社 のれんずプロ - AD-EDIT2 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2367 2010-10-5 11:02 2010-10-5 Show GitHub Exploit DB Packet Storm
209216 9.3 危険 アップル - iPhone および iPod touch 上で稼動する Apple iOS の ImageIO におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1817 2010-10-4 17:59 2010-09-8 Show GitHub Exploit DB Packet Storm
209217 5.8 警告 アップル - iPhone および iPod touch 上で稼動する Apple iOS の FaceTime における通話をリダイレクトされる脆弱性 CWE-Other
その他 		CVE-2010-1810 2010-10-4 17:55 2010-09-8 Show GitHub Exploit DB Packet Storm
209218 10 危険 アップル - iPhone および iPod touch 上で稼動する Apple iOS の Accessibility コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-1809 2010-10-4 17:55 2010-09-8 Show GitHub Exploit DB Packet Storm
209219 4 警告 ISC, Inc.
IBM
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
レッドハット		 - BIND 9 の DNSSEC 検証処理における脆弱性 CWE-noinfo
情報不足 		CVE-2009-4022 2010-10-1 17:39 2009-12-2 Show GitHub Exploit DB Packet Storm
209220 4 警告 ISC, Inc.
サイバートラスト株式会社
ターボリナックス
ヒューレット・パッカード
レッドハット		 - ISC BIND における DNS キャッシュ汚染の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0290 2010-10-1 17:39 2010-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3521 - - - There is a deserialization of untrusted data vulnerability in the Kredis JSON deserialization code - CVE-2023-27531 2025-01-9 10:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3522 - - - There is a potential DOM based cross-site scripting issue in rails-ujs which leverages the Clipboard API to target HTML elements that are assigned the contenteditable attribute. This has the potentia… - CVE-2023-23913 2025-01-9 10:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3523 - - - A vulnerability was found in donglight bookstore???????? 1.0.0. It has been rated as problematic. This issue affects the function updateUser of the file src/main/Java/org/zdd/bookstore/web/controller… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2024-13197 2025-01-9 09:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3524 - - - A vulnerability was found in donglight bookstore???????? 1.0.0. It has been declared as problematic. This vulnerability affects the function BookSearchList of the file src/main/java/org/zdd/bookstore… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2024-13196 2025-01-9 09:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3525 - - - A vulnerability was found in donglight bookstore???????? 1.0.0. It has been classified as critical. This affects the function getHtml of the file src/main/java/org/zdd/bookstore/rawl/HttpUtil.java. T… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-13195 2025-01-9 09:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3526 - - - A vulnerability was found in Sucms 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/admin_members.php?ac=search. The manipulation of the argumen… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-13194 2025-01-9 09:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3527 - - - Rejected reason: loading template... - CVE-2024-5610 2025-01-9 08:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3528 - - - Carbon is an international PHP extension for DateTime. Application passing unsanitized user input to Carbon::setLocale are at risk of arbitrary file include, if the application allows users to upload… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2025-22145 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3529 - - - A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches exists. It could allow an unauthenticated adjacent attacker to conduct a packet forwarding attack against … - CVE-2024-54010 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
3530 - - - SickChill is an automatic video library manager for TV shows. A user-controlled `login` endpoint's `next_` parameter takes arbitrary content. Prior to commit c7128a8946c3701df95c285810eb75b2de18bf82,… CWE-601
Open Redirect 		CVE-2024-53995 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm