Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
821 5.5 警告
Local 		マイクロソフト Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2025 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21317 2025-01-23 13:46 2025-01-14 Show GitHub Exploit DB Packet Storm
822 9 緊急
Network 		フォーティネット FortiNAC フォーティネットの FortiNAC におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-31488 2025-01-23 13:43 2024-05-14 Show GitHub Exploit DB Packet Storm
823 8.8 重要
Network 		Mozilla Foundation
Debian		 Mozilla Thunderbird
Mozilla Firefox
Debian GNU/Linux 		Mozilla Foundation の Mozilla Firefox 等複数ベンダの製品における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2024-4777 2025-01-23 13:41 2024-05-14 Show GitHub Exploit DB Packet Storm
824 8.8 重要
Network 		フォーティネット FortiSOAR フォーティネットの FortiSOAR における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2023-23775 2025-01-23 13:35 2023-01-18 Show GitHub Exploit DB Packet Storm
825 4.3 警告
Network 		07fly 07FlyCms 07fly の 07FlyCms におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-57161 2025-01-23 12:46 2025-01-16 Show GitHub Exploit DB Packet Storm
826 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2025 		Internet Explorer のリモートでコードが実行される脆弱性 CWE-843
CWE-noinfo
CVE-2025-21326 2025-01-23 12:16 2025-01-14 Show GitHub Exploit DB Packet Storm
827 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microso… 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21319 2025-01-23 12:11 2025-01-14 Show GitHub Exploit DB Packet Storm
828 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Microsoft Windows 10
Microsoft Window… 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21316 2025-01-23 12:06 2025-01-14 Show GitHub Exploit DB Packet Storm
829 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox Mozilla Foundation の Mozilla Firefox における脆弱性 CWE-noinfo
情報不足 		CVE-2024-4774 2025-01-23 12:02 2024-05-14 Show GitHub Exploit DB Packet Storm
830 4.3 警告
Network 		フォーティネット FortiManager フォーティネットの FortiManager における脆弱性 CWE-200
CWE-noinfo
CVE-2024-33506 2025-01-23 12:00 2024-10-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275331 - katalog.hurricane katalog_stron_hurricane PHP remote file inclusion vulnerability in includes/moderation.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, when register_globals is enabled, allows remote attackers to execute arbitra… CWE-94
Code Injection 		CVE-2010-0678 2010-02-23 14:00 2010-02-23 Show GitHub Exploit DB Packet Storm
275332 - hyleos chemview Multiple stack-based buffer overflows in the HyleosChemView.HLChemView ActiveX control (HyleosChemView.ocx) in Hyleos ChemView 1.9.5.1 allow remote attackers to execute arbitrary code via a large num… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0679 2010-02-23 14:00 2010-02-23 Show GitHub Exploit DB Packet Storm
275333 - onnogroen com_webeecomment SQL injection vulnerability in the Webee Comments (com_webeecomment) component 1.1.1, 1.2, and 2.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the articleId parameter in… CWE-89
SQL Injection 		CVE-2009-4650 2010-02-23 14:00 2010-02-23 Show GitHub Exploit DB Packet Storm
275334 - onnogroen com_webeecomment Multiple cross-site scripting (XSS) vulnerabilities in the Webee Comments (com_webeecomment) component 1.1.1, 1.2, and 2.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML vi… CWE-79
Cross-site Scripting 		CVE-2009-4651 2010-02-23 14:00 2010-02-23 Show GitHub Exploit DB Packet Storm
275335 - novell edirectory Unspecified vulnerability in eMBox in Novell eDirectory 8.8 SP5 Patch 2 and earlier allows remote attackers to cause a denial of service (crash) via unknown a crafted SOAP request, a different issue … NVD-CWE-noinfo
CVE-2010-0666 2010-02-22 14:00 2010-02-20 Show GitHub Exploit DB Packet Storm
275336 - accellion secure_file_transfer_appliance Static code injection vulnerability in the administrative web interface in Accellion Secure File Transfer Appliance allows remote authenticated administrators to inject arbitrary shell commands by ap… CWE-94
Code Injection 		CVE-2009-4646 2010-02-22 14:00 2010-02-20 Show GitHub Exploit DB Packet Storm
275337 - k5n webcalendar Cross-site request forgery (CSRF) vulnerability in WebCalendar 1.2.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password via un… CWE-352
 Origin Validation Error 		CVE-2010-0638 2010-02-16 14:00 2010-02-16 Show GitHub Exploit DB Packet Storm
275338 - juniper odyssey_access_client Stack-based buffer overflow in dsInstallerService.dll in the Juniper Installer Service, as used in Juniper Odyssey Access Client 4.72.11421.0 and other products, allows remote attackers to execute ar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4643 2010-02-16 14:00 2010-02-16 Show GitHub Exploit DB Packet Storm
275339 - eicrasoft eicra_car_rental-script Multiple SQL injection vulnerabilities in index.php in Eicra Car Rental-Script, when the plugin_id parameter is 4, allow remote attackers to execute arbitrary SQL commands via the (1) users (username… CWE-89
SQL Injection 		CVE-2010-0631 2010-02-15 14:00 2010-02-13 Show GitHub Exploit DB Packet Storm
275340 - will_estes flex Unspecified vulnerability in Fast Lexical Analyzer Generator (flex) before 2.5.35 has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2010-0634 2010-02-15 14:00 2010-02-13 Show GitHub Exploit DB Packet Storm