Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
311	9.8	緊急 Network	ベリタス	Veritas NetBackup Veritas NetBackup アプライアンスファームウェア	ベリタスの Veritas NetBackup および Veritas NetBackup アプライアンスファームウェアにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2024-28222	2025-01-28 18:07	2024-03-7	Show	GitHub Exploit DB Packet Storm

312	7.5	重要 Network	Linux Foundation	Magma	Linux Foundation の Magma における境界外書き込みに関する脆弱性	CWE-120 CWE-787	CVE-2023-37032	2025-01-28 17:57	2023-06-28	Show	GitHub Exploit DB Packet Storm

313	6.1	警告 Physics	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server&…	Windows 回復環境エージェントの特権の昇格の脆弱性	CWE-284 CWE-noinfo	CVE-2025-21202	2025-01-28 17:54	2025-01-14	Show	GitHub Exploit DB Packet Storm

314	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server 2012 Microsoft Windows Server 2022 Microsoft Window…	Windows テレフォニーサービスのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2025-21223	2025-01-28 17:54	2025-01-14	Show	GitHub Exploit DB Packet Storm

315	6.6	警告 Physics	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server 2012 Microsoft Windows Server 2022 Microsoft Window…	Windows デジタルメディアの特権昇格の脆弱性	CWE-125 CWE-noinfo	CVE-2025-21227	2025-01-28 17:53	2025-01-14	Show	GitHub Exploit DB Packet Storm

316	6.6	警告 Physics	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server 2012 Microsoft Windows Server 2022 Microsoft Window…	Windows デジタルメディアの特権昇格の脆弱性	CWE-125 CWE-noinfo	CVE-2025-21228	2025-01-28 17:53	2025-01-14	Show	GitHub Exploit DB Packet Storm

317	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server 2012 Microsoft Windows Server 2022 Microsoft Window…	IP ヘルパーのサービス拒否の脆弱性	CWE-400 CWE-noinfo	CVE-2025-21231	2025-01-28 17:53	2025-01-14	Show	GitHub Exploit DB Packet Storm

318	6.6	警告 Physics	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server 2012 Microsoft Windows Server 2022 Microsoft Window…	Windows デジタルメディアの特権昇格の脆弱性	CWE-125 CWE-noinfo	CVE-2025-21258	2025-01-28 17:53	2025-01-14	Show	GitHub Exploit DB Packet Storm

319	6.6	警告 Physics	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server 2012 Microsoft Windows Server 2022 Microsoft Window…	Windows デジタルメディアの特権昇格の脆弱性	CWE-125 CWE-noinfo	CVE-2025-21263	2025-01-28 17:53	2025-01-14	Show	GitHub Exploit DB Packet Storm

320	8.8	重要 Network	マイクロソフト	Microsoft Visual Studio	Visual Studio のリモートでコードが実行される脆弱性	CWE-122 CWE-125 CWE-noinfo	CVE-2025-21178	2025-01-28 17:52	2025-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
273811	-	microsoft	ie	Microsoft Internet Explorer 6 SP2 (6.0.2900.2180) crashes when the user attempts to add a URI to the restricted zone, in which the full domain name of the URI begins with numeric sequences similar to…	NVD-CWE-Other	CVE-2005-1791	2016-10-18 12:22	2005-05-28	Show	GitHub Exploit DB Packet Storm

273812	-	peercast	peercast	Format string vulnerability in PeerCast 0.1211 and earlier allows remote attackers to execute arbitrary code via format strings in the URL.	NVD-CWE-Other	CVE-2005-1806	2016-10-18 12:22	2005-05-28	Show	GitHub Exploit DB Packet Storm

273813	-	firefly_studios	stronghold_2	Firefly Studios Stronghold 2 1.2 and earlier allows remote attackers to cause a denial of service (crash) via a packet with a large size value for the nickname, which causes a memory allocation failu…	NVD-CWE-Other	CVE-2005-1808	2016-10-18 12:22	2005-05-30	Show	GitHub Exploit DB Packet Storm

273814	-	wordpress	wordpress	SQL injection vulnerability in template-functions-category.php in WordPress 1.5.1 allows remote attackers to execute arbitrary SQL commands via the $cat_ID variable, as demonstrated using the cat par…	NVD-CWE-Other	CVE-2005-1810	2016-10-18 12:22	2005-06-1	Show	GitHub Exploit DB Packet Storm

273815	-	newmad_technologies	picowebserver	Stack-based buffer overflow in PicoWebServer 1.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long URL.	NVD-CWE-Other	CVE-2005-1814	2016-10-18 12:22	2005-06-1	Show	GitHub Exploit DB Packet Storm

273816	-	powerscripts.org	powerdownload	PHP remote file inclusion vulnerability in pdl_header.inc.php in PowerDownload 3.0.2 and 3.0.3 allows remote attackers to execute arbitrary PHP code via the incdir parameter to downloads.php.	NVD-CWE-Other	CVE-2005-1821	2016-10-18 12:22	2005-06-1	Show	GitHub Exploit DB Packet Storm

273817	-	compuware	softice_driverstudio	The DbgMsg.sys driver in Compuware SoftICE DriverStudio 3.1 and 3.2 allows remote attackers to cause a denial of service (application crash) via an invalid Debug Message pointer.	NVD-CWE-Other	CVE-2005-1830	2016-10-18 12:22	2005-05-29	Show	GitHub Exploit DB Packet Storm

273818	-	mybulletinboard	mybulletinboard	Multiple cross-site scripting (XSS) vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 and earlier allow remote attackers to execute arbitrary web script or HTML via the (1) forums, (2) version, or (…	NVD-CWE-Other	CVE-2005-1832	2016-10-18 12:22	2005-05-31	Show	GitHub Exploit DB Packet Storm

273819	-	mybulletinboard	mybulletinboard	Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 allow remote attackers to execute arbitrary SQL commands via the (1) eid parameter to calendar.php, (2) idsql parameter to on…	NVD-CWE-Other	CVE-2005-1833	2016-10-18 12:22	2005-05-31	Show	GitHub Exploit DB Packet Storm

273820	-	nextweb	nextweb_$i$site	SQL injection vulnerability in login.asp in NEXTWEB (i)Site allows remote attackers to execute arbitrary SQL commands and bypass authentication via the password field.	NVD-CWE-Other	CVE-2005-1834	2016-10-18 12:22	2005-06-1	Show	GitHub Exploit DB Packet Storm