Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209631 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0241 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
209632 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0240 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
209633 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0239 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
209634 9.3 危険 マイクロソフト - Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2010-0017 2010-03-1 11:35 2010-02-9 Show GitHub Exploit DB Packet Storm
209635 9.3 危険 マイクロソフト - Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0016 2010-03-1 11:35 2010-02-9 Show GitHub Exploit DB Packet Storm
209636 5 警告 日立 - uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-02-26 11:36 2010-01-29 Show GitHub Exploit DB Packet Storm
209637 2.6 注意 tDiary開発プロジェクト - tDiary 付属のプラグイン tb-send.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0726 2010-02-25 15:03 2010-02-25 Show GitHub Exploit DB Packet Storm
209638 4.3 警告 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server における HTTP リクエストを非表示にされる脆弱性 CWE-Other
その他 		CVE-2003-1578 2010-02-25 12:36 2003-11-14 Show GitHub Exploit DB Packet Storm
209639 2.6 注意 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server におけるログファイルに任意のテキストを挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2003-1577 2010-02-25 12:36 2003-11-14 Show GitHub Exploit DB Packet Storm
209640 5 警告 IBM - IBM WebSphere Application Server の Single Sign-on 機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-0563 2010-02-25 12:35 2010-02-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1481 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - RefreshSpecial Extension allows Cross-Site Scripting (XSS… - CVE-2025-23072 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1482 - - - Umbraco.Forms is a web form framework written for the nuget ecosystem. Character limits configured by editors for short and long answer fields are validated only client-side, not server-side. This is… CWE-20
 Improper Input Validation  		CVE-2025-23041 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1483 7.8 HIGH
Local 		- - Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could lead to arbitrary code execution. An attacker could manipulate the sear… CWE-427
 Uncontrolled Search Path Element 		CVE-2025-21127 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1484 - - - Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Gradio's Access Control List (ACL) … CWE-285
Improper Authorization 		CVE-2025-23042 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1485 7.8 HIGH
Local 		- - Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current … CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2025-21122 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1486 - - - Invoice Ninja is vulnerable to authenticated Server-Side Request Forgery (SSRF) allowing for arbitrary file read and network resource requests as the application user. This issue affects Invoice Ninj… - CVE-2025-0474 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1487 - - - An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack of upper-bound limit enforcement in strings passed when performing IPv6 validation could lead to a p… - CVE-2024-56374 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1488 - - - Git Credential Manager (GCM) is a secure Git credential helper built on .NET that runs on Windows, macOS, and Linux. The Git credential protocol is text-based over standard input/output, and consists… CWE-200
Information Exposure 		CVE-2024-50338 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1489 - - - Open source machine learning framework. A vulnerability has been identified in Rasa that enables an attacker who has the ability to load a maliciously crafted model remotely into a Rasa instance to a… CWE-94
CWE-502
Code Injection
 Deserialization of Untrusted Data 		CVE-2024-49375 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
1490 - - - .NET Elevation of Privilege Vulnerability CWE-379
 Creation of Temporary File in Directory with Incorrect Permissions 		CVE-2025-21173 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm