Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 30, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
291 7.5 重要
Network 		Linux Foundation Magma Linux Foundation の Magma における古典的バッファオーバーフローの脆弱性 New CWE-120
CWE-120
CVE-2024-24416 2025-01-28 14:30 2024-01-25 Show GitHub Exploit DB Packet Storm
292 6.5 警告
Network 		デル PowerProtect Data Manager デルの PowerProtect Data Manager における XML 外部エンティティの脆弱性 New CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2024-25971 2025-01-28 14:30 2024-03-28 Show GitHub Exploit DB Packet Storm
293 4.3 警告
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window… 		Windows HTML プラットフォームのセキュリティ機能のバイパスの脆弱性 New CWE-41
CWE-noinfo
CVE-2025-21269 2025-01-28 14:28 2025-01-14 Show GitHub Exploit DB Packet Storm
294 6.5 警告
Adjacent 		Linux Foundation Magma Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
CWE-476
CVE-2023-37030 2025-01-28 14:26 2023-06-28 Show GitHub Exploit DB Packet Storm
295 6.5 警告
Adjacent 		Linux Foundation Magma Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
CWE-476
CVE-2023-37033 2025-01-28 14:26 2023-06-28 Show GitHub Exploit DB Packet Storm
296 7 重要
Local 		クアルコム sa8255p ファームウェア
snapdragon auto 5g modem-rf gen 2 ファームウェア
WSA8835 ファームウェア
sa8775p ファームウェア
qam8775p ファームウェア
qca6698aq ファームウェア
w… 		複数のクアルコム製品における解放済みメモリの使用に関する脆弱性 New CWE-416
CWE-416
CVE-2023-43543 2025-01-28 14:26 2023-09-19 Show GitHub Exploit DB Packet Storm
297 5.4 警告
Network 		getshortcodes shortcodes ultimate getshortcodes の WordPress 用 shortcodes ultimate におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-0792 2025-01-28 14:26 2024-02-29 Show GitHub Exploit DB Packet Storm
298 6.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window… 		Windows デジタル メディアの特権昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2025-21265 2025-01-28 14:23 2025-01-14 Show GitHub Exploit DB Packet Storm
299 6.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window… 		Windows デジタル メディアの特権昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2025-21260 2025-01-28 14:19 2025-01-14 Show GitHub Exploit DB Packet Storm
300 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2025 		Windows アプリ パッケージ インストーラーの特権昇格の脆弱性 New CWE-285
CWE-noinfo
CVE-2025-21275 2025-01-28 14:15 2025-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280461 - phorum phorum SQL injection vulnerability in read.php3 and other scripts in Phorum 3.0.7 allows remote attackers to execute arbitrary SQL queries via the sSQL parameter. NVD-CWE-Other
CVE-2000-1233 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
280462 - phorum phorum violation.php3 in Phorum 3.0.7 allows remote attackers to send e-mails to arbitrary addresses and possibly use Phorum as a "spam proxy" by setting the Mod and ForumName parameters. NVD-CWE-Other
CVE-2000-1234 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
280463 - oracle application_server The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via H… NVD-CWE-Other
CVE-2000-1235 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
280464 - floosietek ftgate The POP3 server in FTGate returns an -ERR code after receiving an invalid USER request, which makes it easier for remote attackers to determine valid usernames and conduct brute force password guessi… NVD-CWE-Other
CVE-2000-1237 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
280465 - ibm aix AIX cdmount allows local users to gain root privileges via shell metacharacters. NVD-CWE-Other
CVE-2000-0466 2008-09-6 05:21 2000-06-20 Show GitHub Exploit DB Packet Storm
280466 - analogx proxy Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long HELO command in the SMTP protocol. NVD-CWE-Other
CVE-2000-0657 2008-09-6 05:21 2000-07-25 Show GitHub Exploit DB Packet Storm
280467 - cvs cvs The CVS 1.10.8 client trusts pathnames that are provided by the CVS server, which allows the server to force the client to create arbitrary files. NVD-CWE-Other
CVE-2000-0679 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
280468 - cvs cvs The CVS 1.10.8 server does not properly restrict users from creating arbitrary Checkin.prog or Update.prog programs, which allows remote CVS committers to modify or create Trojan horse programs with … NVD-CWE-Other
CVE-2000-0680 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
280469 - bea weblogic_server Buffer overflow in BEA WebLogic server proxy plugin allows remote attackers to execute arbitrary commands via a long URL with a .JSP extension. NVD-CWE-Other
CVE-2000-0681 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
280470 - bea weblogic_server BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /ConsoleHelp/ into the URL, which invokes the FileServlet. NVD-CWE-Other
CVE-2000-0682 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm