Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 30, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
711 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10
Microsoft Windows Server 2012
Microsoft Windows Server 2022
Microsoft Window… 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21318 2025-01-23 14:47 2025-01-14 Show GitHub Exploit DB Packet Storm
712 5.3 警告
Network 		aio-libs project aiosmtpd aio-libs project の aiosmtpd におけるデータの信頼性についての不十分な検証に関する脆弱性 CWE-345
CWE-345
CVE-2024-27305 2025-01-23 14:45 2024-03-12 Show GitHub Exploit DB Packet Storm
713 6 警告
Local 		フォーティネット FortiAnalyzer-BigData
FortiManager
FortiAnalyzer 		複数のフォーティネット製品におけるパストラバーサルの脆弱性 CWE-22
CWE-23
CVE-2024-32116 2025-01-23 14:43 2024-11-12 Show GitHub Exploit DB Packet Storm
714 8.8 重要
Network 		フォーティネット FortiAnalyzer-BigData
FortiManager
FortiAnalyzer 		複数のフォーティネット製品における脆弱性 CWE-602
CWE-Other
CVE-2024-23666 2025-01-23 14:42 2024-11-12 Show GitHub Exploit DB Packet Storm
715 4.1 警告
Network 		フォーティネット FortiAnalyzer-BigData
FortiManager
FortiAnalyzer 		複数のフォーティネット製品における脆弱性 CWE-359
CWE-Other
CVE-2023-44255 2025-01-23 14:38 2023-09-27 Show GitHub Exploit DB Packet Storm
716 9.8 緊急
Network 		Kabir Alhasan Student Management System code-projects の Student Management System における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0203 2025-01-23 14:33 2025-01-4 Show GitHub Exploit DB Packet Storm
717 6.1 警告
Network 		code-projects Exam Form Submission code-projects の Exam Form Submission におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-42307 2025-01-23 14:29 2023-09-8 Show GitHub Exploit DB Packet Storm
718 4.3 警告
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microso… 		MapUrlToZone セキュリティ機能のバイパスの脆弱性 CWE-41
CWE-noinfo
CVE-2025-21328 2025-01-23 13:57 2025-01-14 Show GitHub Exploit DB Packet Storm
719 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows 11
Microsoft Windows Server&… 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21323 2025-01-23 13:54 2025-01-14 Show GitHub Exploit DB Packet Storm
720 7.5 重要
Network 		フォーティネット FortiSOAR フォーティネットの FortiSOAR における過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2024-45327 2025-01-23 13:50 2024-09-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 30, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279961 - yabb yabb Cross-site scripting vulnerability in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 and earlier allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded … NVD-CWE-Other
CVE-2002-0117 2008-09-6 05:27 2002-03-25 Show GitHub Exploit DB Packet Storm
279962 - sambar sambar_server cgitest.exe in Sambar Server 5.1 before Beta 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long argument. NVD-CWE-Other
CVE-2002-0128 2008-09-6 05:27 2002-03-25 Show GitHub Exploit DB Packet Storm
279963 - eazel nautilus Nautilus 1.0.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on the .nautilus-metafile.xml metadata file. NVD-CWE-Other
CVE-2002-0157 2008-09-6 05:27 2002-05-16 Show GitHub Exploit DB Packet Storm
279964 - xpilot xpilot Buffer overflow in xpilot-server for XPilot 4.5.0 and earlier allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2002-0179 2008-09-6 05:27 2002-04-22 Show GitHub Exploit DB Packet Storm
279965 - apache mod_python mod_python version 2.7.6 and earlier allows a module indirectly imported by a published module to then be accessed via the publisher, which allows remote attackers to call possibly dangerous function… NVD-CWE-Other
CVE-2002-0185 2008-09-6 05:27 2002-05-16 Show GitHub Exploit DB Packet Storm
279966 - cisco tacacs\+ tac_plus Tacacs+ daemon F4.0.4.alpha, originally maintained by Cisco, creates files from the accounting directive with world-readable and writable permissions, which allows local users to access and … NVD-CWE-Other
CVE-2002-0225 2008-09-6 05:27 2002-05-16 Show GitHub Exploit DB Packet Storm
279967 - castelle faxpress Castelle FaxPress, possibly 6.3 and other versions, when configured to use the Network print queue, allows attackers to obtain the username and password by submitting an incorrect login, which causes… NVD-CWE-Other
CVE-2002-0235 2008-09-6 05:27 2002-05-29 Show GitHub Exploit DB Packet Storm
279968 - cisco secure_access_control_server NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to au… NVD-CWE-Other
CVE-2002-0241 2008-09-6 05:27 2002-05-29 Show GitHub Exploit DB Packet Storm
279969 - cisco ios Cisco IOS 11.1CC through 12.2 with Cisco Express Forwarding (CEF) enabled includes portions of previous packets in the padding of a MAC level packet when the MAC packet's length is less than the IP l… NVD-CWE-Other
CVE-2002-0339 2008-09-6 05:27 2002-06-25 Show GitHub Exploit DB Packet Storm
279970 - sgi mediamail MediaMail and MediaMail Pro in SGI IRIX 6.5.16 and earlier allows local users to force the program to dump core via certain arguments, which could allow the users to read sensitive data or gain privi… NVD-CWE-Other
CVE-2002-0358 2008-09-6 05:27 2002-07-26 Show GitHub Exploit DB Packet Storm