Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
811 5.3 警告
Network 		aio-libs project aiosmtpd aio-libs project の aiosmtpd におけるデータの信頼性についての不十分な検証に関する脆弱性 CWE-345
CWE-345
CVE-2024-27305 2025-01-23 14:45 2024-03-12 Show GitHub Exploit DB Packet Storm
812 6 警告
Local 		フォーティネット FortiAnalyzer-BigData
FortiManager
FortiAnalyzer 		複数のフォーティネット製品におけるパストラバーサルの脆弱性 CWE-22
CWE-23
CVE-2024-32116 2025-01-23 14:43 2024-11-12 Show GitHub Exploit DB Packet Storm
813 8.8 重要
Network 		フォーティネット FortiAnalyzer-BigData
FortiManager
FortiAnalyzer 		複数のフォーティネット製品における脆弱性 CWE-602
CWE-Other
CVE-2024-23666 2025-01-23 14:42 2024-11-12 Show GitHub Exploit DB Packet Storm
814 4.1 警告
Network 		フォーティネット FortiAnalyzer-BigData
FortiManager
FortiAnalyzer 		複数のフォーティネット製品における脆弱性 CWE-359
CWE-Other
CVE-2023-44255 2025-01-23 14:38 2023-09-27 Show GitHub Exploit DB Packet Storm
815 9.8 緊急
Network 		Kabir Alhasan Student Management System code-projects の Student Management System における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0203 2025-01-23 14:33 2025-01-4 Show GitHub Exploit DB Packet Storm
816 6.1 警告
Network 		code-projects Exam Form Submission code-projects の Exam Form Submission におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-42307 2025-01-23 14:29 2023-09-8 Show GitHub Exploit DB Packet Storm
817 4.3 警告
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microso… 		MapUrlToZone セキュリティ機能のバイパスの脆弱性 CWE-41
CWE-noinfo
CVE-2025-21328 2025-01-23 13:57 2025-01-14 Show GitHub Exploit DB Packet Storm
818 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows 11
Microsoft Windows Server&… 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21323 2025-01-23 13:54 2025-01-14 Show GitHub Exploit DB Packet Storm
819 7.5 重要
Network 		フォーティネット FortiSOAR フォーティネットの FortiSOAR における過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2024-45327 2025-01-23 13:50 2024-09-10 Show GitHub Exploit DB Packet Storm
820 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Microsoft Windows 10
Microsoft Window… 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21321 2025-01-23 13:50 2025-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280011 - summit_computer_networks lil_http_server Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the (1) "Name" or (2… NVD-CWE-Other
CVE-2002-1009 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280012 - lotus domino_r4 Lotus Domino R4 allows remote attackers to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasse… NVD-CWE-Other
CVE-2002-1010 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280013 - ibm tivoli_management_framework Buffer overflow in web server for Tivoli Management Framework (TMF) Endpoint 3.6.x through 3.7.1, before Fixpack 2, allows remote attackers to cause a denial of service or execute arbitrary code via … NVD-CWE-Other
CVE-2002-1011 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280014 - ibm tivoli_management_framework Buffer overflow in web server for Tivoli Management Framework (TMF) ManagedNode 3.6.x through 3.7.1 allows remote attackers to cause a denial of service or execute arbitrary code via a long HTTP GET … NVD-CWE-Other
CVE-2002-1012 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280015 - inktomi media-ixt
traffic_edge
traffic_server 		Buffer overflow in traffic_manager for Inktomi Traffic Server 4.0.18 through 5.2.2, Traffic Edge 1.1.2 and 1.5.0, and Media-IXT 3.0.4 allows local users to gain root privileges via a long -path argum… NVD-CWE-Other
CVE-2002-1013 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280016 - realnetworks realjukebox_2
realjukebox_2_plus
realone_player 		Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long val… NVD-CWE-Other
CVE-2002-1014 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280017 - realnetworks realjukebox_2
realjukebox_2_plus
realone_player 		RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary script in the Local computer zone by inserting the script into the skin.ini fil… NVD-CWE-Other
CVE-2002-1015 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280018 - adobe digital_editions Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files. NVD-CWE-Other
CVE-2002-1016 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280019 - adobe digital_editions Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption Challenge, and using the appropriate hash function to generate the a… NVD-CWE-Other
CVE-2002-1017 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280020 - working_resources_inc. badblue BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte. NVD-CWE-Other
CVE-2002-1021 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm