Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 18, 2025, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
531 8.8 重要
Network 		Gym Management System project Gym Management System codezips の Gym Management System における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0231 2025-01-15 15:25 2025-01-5 Show GitHub Exploit DB Packet Storm
532 9.8 緊急
Network 		Projectworlds Travel Management System fabianros の Travel Management System における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0229 2025-01-15 15:21 2025-01-5 Show GitHub Exploit DB Packet Storm
533 9.8 緊急
Network 		campcodes Complete Student Grading System campcodes の Complete Student Grading System における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0212 2025-01-15 15:12 2025-01-4 Show GitHub Exploit DB Packet Storm
534 7.5 重要
Network 		Huawei EMUI
HarmonyOS 		Huawei の EMUI および HarmonyOS における脆弱性 CWE-227
CWE-noinfo
CVE-2024-56442 2025-01-15 15:04 2024-12-26 Show GitHub Exploit DB Packet Storm
535 7.5 重要
Network 		クアルコム QCA8081 ファームウェア
QCA6431 ファームウェア
qca6698aq ファームウェア
fastconnect 6900 ファームウェア
QCA6595AU ファームウェア
QCA6421 ファームウェア
QCA8337 ファームウェア
QCA6574A … 		複数のクアルコム製品における不正な型変換に関する脆弱性 CWE-704
CWE-704
CVE-2023-33101 2025-01-15 15:01 2023-05-17 Show GitHub Exploit DB Packet Storm
536 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC18 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC18 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2485 2025-01-15 15:01 2024-03-15 Show GitHub Exploit DB Packet Storm
537 5.4 警告
Network 		oretnom23 Laundry Shop Management System Oretnom23 の Laundry Shop Management System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3463 2025-01-15 15:01 2024-04-8 Show GitHub Exploit DB Packet Storm
538 7.2 重要
Network 		BeyondTrust Corporation remote support
privileged remote access 		BeyondTrust Corporation の privileged remote access および remote support における OS コマンドインジェクションの脆弱性 CWE-78
CWE-78
CVE-2024-12686 2025-01-15 15:01 2024-12-18 Show GitHub Exploit DB Packet Storm
539 7.5 重要
Network 		クアルコム snapdragon auto 5g modem-rf ファームウェア
wcn3980 ファームウェア
c-v2x 9150 ファームウェア
WSA8810 ファームウェア
WCN3950 ファームウェア
QCS610 ファームウェア
QCS410 フ… 		複数のクアルコム製品における脆弱性 CWE-20
CWE-noinfo
CVE-2024-21453 2025-01-15 15:01 2024-04-1 Show GitHub Exploit DB Packet Storm
540 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における配列インデックスの検証に関する脆弱性 CWE-129
配列インデックスの不適切な検証 		CVE-2024-29231 2025-01-15 15:01 2024-03-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 18, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278191 - gafware cfximage showtemp.cfm for Gafware CFXImage 1.6.6 allows remote attackers to read arbitrary files via (1) a .. or (2) a C: style pathname in the FILE parameter. NVD-CWE-Other
CVE-2002-0879 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278192 - compaq proliant_bl_e-class_integrated_administrator_firmware Vulnerability in Compaq ProLiant BL e-Class Integrated Administrator 1.0 and 1.10, allows authenticated users with Telnet, SSH, or console access to conduct unauthorized activities. NVD-CWE-Other
CVE-2002-0883 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278193 - juniper netscreen_screenos The web interface (WebUI) of NetScreen ScreenOS before 2.6.1r8, and certain 2.8.x and 3.0.x versions before 3.0.3r1, allows remote attackers to cause a denial of service (crash) via a long user name. NVD-CWE-Other
CVE-2002-0891 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278194 - new_atlanta_communications servletexec_isapi The default configuration of NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to determine the path of the web root via a direct request to com.newatlanta.servletexec.JSP10Servlet without a f… NVD-CWE-Other
CVE-2002-0892 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278195 - new_atlanta_communications servletexec_isapi Directory traversal vulnerability in NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to read arbitrary files via a URL-encoded request to com.newatlanta.servletexec.JSP10Servlet containing "… NVD-CWE-Other
CVE-2002-0893 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278196 - new_atlanta_communications servletexec_isapi NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to cause a denial of service (crash) via (1) a request for a long .jsp file, or (2) a long URL sent directly to com.newatlanta.servletexec.JSP… NVD-CWE-Other
CVE-2002-0894 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278197 - matu matu_ftp Buffer overflow in MatuFtpServer 1.1.3.0 (1.1.3) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PASS (password) command. NVD-CWE-Other
CVE-2002-0895 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278198 - swatch swatch The throttle capability in Swatch may fail to report certain events if (1) the same type of event occurs after the throttle period, or (2) when multiple events matching the same "watchfor" expression… NVD-CWE-Other
CVE-2002-0896 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278199 - intranet-server localweb2000 LocalWEB2000 2.1.0 web server allows remote attackers to bypass access restrictions for restricted files via a URL that contains the "/./" directory. NVD-CWE-Other
CVE-2002-0897 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
278200 - blueface falcon_web_server Falcon web server 2.0.0.1021 and earlier allows remote attackers to bypass access restrictions for protected files via a URL whose directory portion ends in a . (dot). NVD-CWE-Other
CVE-2002-0899 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm