Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
671 9.8 緊急
Network 		デル smartfabric os10 デルの smartfabric os10 における OS コマンドインジェクションの脆弱性 CWE-20
CWE-78
CVE-2023-32462 2025-01-24 14:04 2023-05-9 Show GitHub Exploit DB Packet Storm
672 7.8 重要
Local 		F5 Networks BIG-IP Next Cloud-Native Network Functions F5 Networks の BIG-IP Next Cloud-Native Network Functions における脆弱性 CWE-522
CWE-noinfo
CVE-2024-23306 2025-01-24 13:58 2024-02-14 Show GitHub Exploit DB Packet Storm
673 9.8 緊急
Network 		PHOENIX CONTACT charx sec-3100 ファームウェア
charx sec-3050 ファームウェア
charx sec-3000 ファームウェア
charx sec-3150 ファームウェア 		複数の PHOENIX CONTACT 製品におけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 CWE-1188
リソースの安全ではないデフォルト値への初期化 		CVE-2024-6788 2025-01-24 13:51 2024-08-13 Show GitHub Exploit DB Packet Storm
674 7.8 重要
Local 		インテル graphics performance analyzers インテルの graphics performance analyzers における脆弱性 CWE-284
CWE-noinfo
CVE-2023-40071 2025-01-24 13:51 2023-10-12 Show GitHub Exploit DB Packet Storm
675 4.8 警告
Network 		WP Ninjas, LLC. Ninja Forms Saturday Drive の WordPress 用 Ninja Forms におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-50515 2025-01-24 13:51 2024-11-19 Show GitHub Exploit DB Packet Storm
676 5.4 警告
Network 		Nextcloud Nextcloud Server Nextcloud の Nextcloud Server における不正な認証に関する脆弱性 CWE-287
CWE-863
CVE-2024-52518 2025-01-24 13:51 2024-11-15 Show GitHub Exploit DB Packet Storm
677 7.5 重要
Network 		EBM Technologies RISWEB EBM Technologies の RISWEB における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2024-26263 2025-01-24 13:45 2024-02-15 Show GitHub Exploit DB Packet Storm
678 5.5 警告
Local 		radare radare2 radare の radare2 における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-26475 2025-01-24 13:45 2024-03-14 Show GitHub Exploit DB Packet Storm
679 6.5 警告
Network 		ZyXEL NAS 542 ファームウェア
NAS 326 ファームウェア 		ZyXEL の NAS 326 ファームウェアおよび NAS 542 ファームウェアにおける脆弱性 CWE-269
CWE-noinfo
CVE-2024-29976 2025-01-24 13:45 2024-06-4 Show GitHub Exploit DB Packet Storm
680 5.4 警告
Network 		Basixonline NEX-Forms Basixonline の WordPress 用 NEX-Forms におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-37512 2025-01-24 13:45 2024-07-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280011 - summit_computer_networks lil_http_server Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the (1) "Name" or (2… NVD-CWE-Other
CVE-2002-1009 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280012 - lotus domino_r4 Lotus Domino R4 allows remote attackers to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasse… NVD-CWE-Other
CVE-2002-1010 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280013 - ibm tivoli_management_framework Buffer overflow in web server for Tivoli Management Framework (TMF) Endpoint 3.6.x through 3.7.1, before Fixpack 2, allows remote attackers to cause a denial of service or execute arbitrary code via … NVD-CWE-Other
CVE-2002-1011 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280014 - ibm tivoli_management_framework Buffer overflow in web server for Tivoli Management Framework (TMF) ManagedNode 3.6.x through 3.7.1 allows remote attackers to cause a denial of service or execute arbitrary code via a long HTTP GET … NVD-CWE-Other
CVE-2002-1012 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280015 - inktomi media-ixt
traffic_edge
traffic_server 		Buffer overflow in traffic_manager for Inktomi Traffic Server 4.0.18 through 5.2.2, Traffic Edge 1.1.2 and 1.5.0, and Media-IXT 3.0.4 allows local users to gain root privileges via a long -path argum… NVD-CWE-Other
CVE-2002-1013 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280016 - realnetworks realjukebox_2
realjukebox_2_plus
realone_player 		Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long val… NVD-CWE-Other
CVE-2002-1014 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280017 - realnetworks realjukebox_2
realjukebox_2_plus
realone_player 		RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary script in the Local computer zone by inserting the script into the skin.ini fil… NVD-CWE-Other
CVE-2002-1015 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280018 - adobe digital_editions Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files. NVD-CWE-Other
CVE-2002-1016 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280019 - adobe digital_editions Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption Challenge, and using the appropriate hash function to generate the a… NVD-CWE-Other
CVE-2002-1017 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280020 - working_resources_inc. badblue BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte. NVD-CWE-Other
CVE-2002-1021 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm