Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251 7.8 重要
Local
アドビシステムズ Adobe Substance 3D Stager アドビの Adobe Substance 3D Stager における境界外書き込みに関する脆弱性 New CWE-122
CWE-787
CVE-2025-21129 2025-01-20 17:30 2025-01-14 Show GitHub Exploit DB Packet Storm
252 7.8 重要
Local
アドビシステムズ Adobe Substance 3D Stager アドビの Adobe Substance 3D Stager における境界外書き込みに関する脆弱性 New CWE-787
境界外書き込み
CVE-2025-21130 2025-01-20 17:30 2025-01-14 Show GitHub Exploit DB Packet Storm
253 6.1 警告
Network
ILIAS ILIAS Ilias におけるクロスサイトスクリプティングの脆弱性 Update CWE-79
CWE-79
CVE-2019-1010237 2025-01-20 17:28 2019-01-4 Show GitHub Exploit DB Packet Storm
254 6.5 警告
Network
Jenkins プロジェクト Credentials Binding Jenkins Credentials Binding プラグインにおける認証情報の不十分な保護に関する脆弱性 Update CWE-257
CWE-522
CVE-2019-1010241 2025-01-20 17:25 2019-07-19 Show GitHub Exploit DB Packet Storm
255 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2008
Microsoft Windows 11
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server&…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2025-21417 2025-01-20 17:20 2025-01-14 Show GitHub Exploit DB Packet Storm
256 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2008
Microsoft Windows 11
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server&…
SQL Server 用 Microsoft WDAC OLE DB プロバイダーのリモートでコードが実行される脆弱性 New CWE-416
CWE-noinfo
CVE-2024-30006 2025-01-20 17:17 2024-05-14 Show GitHub Exploit DB Packet Storm
257 5.4 警告
Network
VillaTheme Thank You Page Customizer for WooCommerce - Increase Your Sales VillaTheme の WordPress 用 Thank You Page Customizer for WooCommerce - Increase Your Sales における認証の欠如に関する脆弱性 New CWE-862
認証の欠如
CVE-2024-1687 2025-01-20 17:17 2024-02-27 Show GitHub Exploit DB Packet Storm
258 8.8 重要
Local
マイクロソフト Microsoft Windows 11 Windows 仮想化ベースのセキュリティ (VBS) エンクレーブの特権昇格の脆弱性 New CWE-20
CWE-noinfo
CVE-2025-21370 2025-01-20 17:14 2025-01-14 Show GitHub Exploit DB Packet Storm
259 7.5 重要
Network
MailCleaner MailCleaner MailCleaner における認証の欠如に関する脆弱性 Update CWE-862
認証の欠如
CVE-2019-1010246 2025-01-20 17:12 2019-01-21 Show GitHub Exploit DB Packet Storm
260 8.8 重要
Network
マイクロソフト Microsoft SQL Server SQL Server Native Client OLE DB プロバイダーのリモート コード実行に対する脆弱性 New CWE-121
CWE-noinfo
CVE-2024-28928 2025-01-20 17:11 2024-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279351 - freebsd freebsd TCP RST denial of service in FreeBSD. NVD-CWE-Other
CVE-1999-0053 2008-09-6 05:16 1998-10-13 Show GitHub Exploit DB Packet Storm
279352 - ssh ssh A race condition in the authentication agent mechanism of sshd 1.2.17 allows an attacker to steal another user's credentials. NVD-CWE-Other
CVE-1999-0248 2008-09-6 05:16 1999-01-1 Show GitHub Exploit DB Packet Storm
279353 - freebsd freebsd Buffer overflow in FreeBSD lpd through long DNS hostnames. NVD-CWE-Other
CVE-1999-0299 2008-09-6 05:16 1997-03-5 Show GitHub Exploit DB Packet Storm
279354 - d-ic shop_v50
shop_v52
Cross-site scripting (XSS) vulnerability in DIC shop_v50 3.0 and earlier and shop_v52 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2008-3935 2008-09-6 00:08 2008-09-6 Show GitHub Exploit DB Packet Storm
279355 - opendb opendb Multiple cross-site scripting (XSS) vulnerabilities in Open Media Collectors Database (OpenDb) 1.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) user_id parameter in an … CWE-79
Cross-site Scripting
CVE-2008-3937 2008-09-6 00:08 2008-09-6 Show GitHub Exploit DB Packet Storm
279356 - opendb opendb Cross-site request forgery (CSRF) vulnerability in user_admin.php in Open Media Collectors Database (OpenDb) 1.0.6 allows remote attackers to change arbitrary passwords via an update_password action. CWE-352
 Origin Validation Error
CVE-2008-3938 2008-09-6 00:08 2008-09-6 Show GitHub Exploit DB Packet Storm
279357 - avtech pager_enterprise Directory traversal vulnerability in the web interface in AVTECH PageR Enterprise before 5.0.7 allows remote attackers to read arbitrary files via directory traversal sequences in the URI. CWE-22
Path Traversal
CVE-2008-3939 2008-09-6 00:08 2008-09-6 Show GitHub Exploit DB Packet Storm
279358 - manageengine servicedesk_plus Cross-site scripting (XSS) vulnerability in SolutionSearch.do in ManageEngine ServiceDesk Plus 7.0.0 Build 7011 for Windows allows remote attackers to inject arbitrary web script or HTML via the sear… CWE-79
Cross-site Scripting
CVE-2008-1299 2008-09-5 13:00 2008-03-13 Show GitHub Exploit DB Packet Storm
279359 - oocomments oocomments Multiple PHP remote file inclusion vulnerabilities in ooComments 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the PathToComment parameter for (1) classes/class_admin.php and … CWE-94
Code Injection
CVE-2008-1511 2008-09-5 13:00 2008-03-26 Show GitHub Exploit DB Packet Storm
279360 - avici
hitachi
router
gr2000
gr3000
gr4000
Unspecified vulnerability in Avici routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue … NVD-CWE-noinfo
CWE-20
 Improper Input Validation 
CVE-2008-2169 2008-09-5 13:00 2008-05-14 Show GitHub Exploit DB Packet Storm