Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 27, 2025, 12:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209741	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4245	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

209742	9.3	危険	リアルネットワークス	-	Realnetworks RealPlayer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4244	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

209743	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の DLL ファイルにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-0376	2010-02-17 11:47	2010-01-19	Show	GitHub Exploit DB Packet Storm

209744	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の DLL ファイルにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0375	2010-02-17 11:47	2010-01-19	Show	GitHub Exploit DB Packet Storm

209745	9.3	危険	リアルネットワークス	-	Realnetworks RealPlayer における HTTP のチャンク転送コーディングの処理に関する脆弱性	CWE-119 バッファエラー	CVE-2009-4243	2010-02-17 11:47	2010-01-19	Show	GitHub Exploit DB Packet Storm

209746	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4242	2010-02-17 11:47	2010-01-19	Show	GitHub Exploit DB Packet Storm

209747	9.3	危険	リアルネットワークス	-	Realnetworks RealPlayer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4241	2010-02-17 11:46	2010-01-19	Show	GitHub Exploit DB Packet Storm

209748	4.4	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の z90crypt ドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1883	2010-02-17 11:46	2009-09-15	Show	GitHub Exploit DB Packet Storm

209749	7.2	危険	サイバートラスト株式会社 Linux ターボリナックスレッドハット	-	Linux kernel の udp_sendmsg 関数における権限昇格の脆弱性	CWE-DesignError	CVE-2009-2698	2010-02-17 11:45	2009-08-27	Show	GitHub Exploit DB Packet Storm

209750	7.2	危険	サイバートラスト株式会社 Linux ターボリナックスレッドハット	-	Linux kernel における proto_ops 構造体の初期化処理に関する権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2009-2692	2010-02-17 11:45	2009-08-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2431	-		-	-	Incorrect Privilege Assignment vulnerability in Drupal Private content allows Target Influence via Framing.This issue affects Private content: from 0.0.0 before 2.1.0.	-	CVE-2024-13248	2025-01-11 07:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

2432	-		-	-	In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand() function, which is not cryptographically strong.	-	CVE-2025-22376	2025-01-11 07:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

2433	5.4	MEDIUM Network	osuuu	lightpicture	A vulnerability classified as problematic was found in osuuu LightPicture up to 1.2.2. This vulnerability affects unknown code of the file /api/upload of the component SVG File Upload Handler. The ma…	CWE-79 Cross-site Scripting	CVE-2024-13141	2025-01-11 06:39	2025-01-6	Show	GitHub Exploit DB Packet Storm

2434	5.4	MEDIUM Network	emlog	emlog	A vulnerability classified as problematic has been found in Emlog Pro up to 2.4.3. Affected is an unknown function of the file /admin/article.php?action=upload_cover of the component Cover Upload Han…	CWE-79 Cross-site Scripting	CVE-2024-13140	2025-01-11 06:34	2025-01-5	Show	GitHub Exploit DB Packet Storm

2435	9.8	CRITICAL Network	code-projects	online_shoe_store	A vulnerability, which was classified as critical, was found in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /summary.php. The manipulation of the argument tid leads …	CWE-89 SQL Injection	CVE-2025-0208	2025-01-11 06:28	2025-01-4	Show	GitHub Exploit DB Packet Storm

2436	9.8	CRITICAL Network	code-projects	online_shoe_store	A vulnerability, which was classified as critical, has been found in code-projects Online Shoe Store 1.0. Affected by this issue is some unknown functionality of the file /function/login.php. The man…	CWE-89 SQL Injection	CVE-2025-0207	2025-01-11 06:27	2025-01-4	Show	GitHub Exploit DB Packet Storm

2437	9.8	CRITICAL Network	campcodes	school_faculty_scheduling_system	A vulnerability has been found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?act…	CWE-89 SQL Injection	CVE-2025-0210	2025-01-11 06:20	2025-01-4	Show	GitHub Exploit DB Packet Storm

2438	-		-	-	On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as ro…	-	CVE-2024-5872	2025-01-11 06:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

2439	8.8	HIGH Network	wangl1989	mysiteforme	A vulnerability was found in wangl1989 mysiteforme 1.0. It has been rated as critical. This issue affects the function doContent of the file src/main/java/com/mysiteform/admin/controller/system/FileC…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-13139	2025-01-11 06:02	2025-01-5	Show	GitHub Exploit DB Packet Storm

2440	8.8	HIGH Network	wangl1989	mysiteforme	A vulnerability was found in wangl1989 mysiteforme 1.0. It has been declared as critical. This vulnerability affects the function upload of the file src/main/java/com/mysiteform/admin/service/ipl/Loc…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-13138	2025-01-11 06:01	2025-01-5	Show	GitHub Exploit DB Packet Storm