Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 16, 2025, 2:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
491 7.5 重要
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows 11 		HTTP.sys のサービス拒否の脆弱性 CWE-476
CWE-noinfo
CVE-2024-26219 2025-01-10 17:45 2024-04-9 Show GitHub Exploit DB Packet Storm
492 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows 11 		Windows カーネルの特権の昇格の脆弱性 CWE-367
CWE-noinfo
CVE-2024-26218 2025-01-10 17:42 2024-04-9 Show GitHub Exploit DB Packet Storm
493 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows Server&… 		Windows Remote Access Connection Manager の特権の昇格の脆弱性 CWE-122
CWE-noinfo
CVE-2024-26211 2025-01-10 17:40 2024-04-9 Show GitHub Exploit DB Packet Storm
494 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows Server&… 		Windows Remote Access Connection Manager の情報漏えいの脆弱性 CWE-125
CWE-noinfo
CVE-2024-26207 2025-01-10 17:38 2024-04-9 Show GitHub Exploit DB Packet Storm
495 7 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows 11 		Windows USB プリント ドライバーの特権の昇格の脆弱性 CWE-126
CWE-362
CVE-2024-26243 2025-01-10 17:37 2024-04-9 Show GitHub Exploit DB Packet Storm
496 6.5 警告
Network 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Server&… 		Windows Kerberos のサービス拒否の脆弱性 CWE-476
CWE-noinfo
CVE-2024-26183 2025-01-10 17:36 2024-04-9 Show GitHub Exploit DB Packet Storm
497 8 重要
Adjacent 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows Server&… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 CWE-121
CWE-noinfo
CVE-2024-26180 2025-01-10 17:34 2024-04-9 Show GitHub Exploit DB Packet Storm
498 8 重要
Adjacent 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Server&… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 CWE-20
CWE-noinfo
CVE-2024-26240 2025-01-10 17:32 2024-04-9 Show GitHub Exploit DB Packet Storm
499 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows 11 		Windows DWM Core ライブラリの情報漏えいの脆弱性 CWE-125
CWE-noinfo
CVE-2024-26172 2025-01-10 17:32 2024-04-9 Show GitHub Exploit DB Packet Storm
500 7.3 重要
Local 		マイクロソフト PowerShell
Microsoft .NET Framework
.NET
Microsoft Visual Studio 		.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability CWE-416
CWE-noinfo
CVE-2024-21409 2025-01-10 17:30 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276761 - invision_power_services invision_board Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP POST request. NVD-CWE-Other
CVE-2005-0886 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
276762 - dream4 koobi_cms Cross-site scripting (XSS) vulnerability in index.php for Dream4 Koobi CMS 4.2.3 allows remote attackers to inject arbitrary web script or HTML via the area parameter. NVD-CWE-Other
CVE-2005-0889 2008-09-6 05:47 2005-03-24 Show GitHub Exploit DB Packet Storm
276763 - dream4 koobi_cms SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 allows remote attackers to execute arbitrary SQL commands via the area parameter. NVD-CWE-Other
CVE-2005-0890 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
276764 - instance_four
sacred
ubi_soft 		tincat
sacred
the_settlersheritage_of_kings 		Buffer overflow in a player logging function in the Tincat network library 2.x before 2.0.28, as used in games such as Sacred and The Settlers: Heritage of Kings, allows remote attackers to execute a… NVD-CWE-Other
CVE-2005-0906 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
276765 - valdersoft shopping_cart Multiple SQL injection vulnerabilities in Valdersoft Shopping Cart 3.0 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to category.php, (2) the id parameter to item.… NVD-CWE-Other
CVE-2005-0907 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
276766 - valdersoft valdersoft_shopping_cart Multiple cross-site scripting (XSS) vulnerabilities in Valdersoft Shopping Cart 3.0 allow remote attackers to inject arbitrary web script or HTML via (1) the lang parameter to index.php or (2) the se… NVD-CWE-Other
CVE-2005-0908 2008-09-6 05:47 2005-03-28 Show GitHub Exploit DB Packet Storm
276767 - e-xoops e-xoops Multiple cross-site scripting (XSS) vulnerabilities in exoops allow remote attackers to inject arbitrary web script or HTML via (1) the sortdays parameter to viewforum.php or (2) the viewcat paramete… NVD-CWE-Other
CVE-2005-0910 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
276768 - e-xoops e-xoops Multiple SQL injection vulnerabilities in exoops may allow remote attackers to execute arbitrary SQL commands via (1) the viewcat parameter to index.php or (2) the artid parameter in the viewarticle … NVD-CWE-Other
CVE-2005-0911 2008-09-6 05:47 2005-03-28 Show GitHub Exploit DB Packet Storm
276769 - deplate deplate Unknown vulnerabilities in deplate before 0.7.2 have unknown impact, possibly involving elements.rb. NVD-CWE-Other
CVE-2005-0912 2008-09-6 05:47 2005-03-24 Show GitHub Exploit DB Packet Storm
276770 - cpg-nuke cpg_dragonfly_cms Multiple cross-site scripting (XSS) vulnerabilities in CPG Dragonfly 9.0.2.0 allow remote attackers to inject arbitrary web script or HTML via (1) the profile parameter to index.php or (2) the cat pa… NVD-CWE-Other
CVE-2005-0914 2008-09-6 05:47 2005-03-26 Show GitHub Exploit DB Packet Storm