Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1	7.5	重要 Network	インテル Fedora Project	Intel Wireless for Open Source Fedora	インテルの Intel Wireless for Open Source 等複数ベンダの製品における初期化に関する脆弱性 New	CWE-665 不適切な初期化	CVE-2024-28084	2025-01-10 18:32	2024-03-3	Show	GitHub Exploit DB Packet Storm

2	2.7	低 Network	Mitel Networks Corporation	MiCollab	Mitel Networks Corporation の MiCollab におけるパストラバーサルの脆弱性 New	CWE-22 CWE-22	CVE-2024-55550	2025-01-10 18:30	2024-12-10	Show	GitHub Exploit DB Packet Storm

3	5.4	警告 Network	Leap13	Premium Addons for Elementor	Leap13 の WordPress 用 Premium Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4378	2025-01-10 18:30	2024-05-23	Show	GitHub Exploit DB Packet Storm

4	6.5	警告 Network	Wpmet	elementskit	Wpmet の WordPress 用 elementskit におけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2024-43996	2025-01-10 18:30	2024-09-23	Show	GitHub Exploit DB Packet Storm

5	5.4	警告 Network	FastLine Media LLC	Beaver Builder	FastLine Media LLC の WordPress 用 Beaver Builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4430	2025-01-10 18:30	2024-05-14	Show	GitHub Exploit DB Packet Storm

6	5.4	警告 Network	ThimPress	LearnPress	ThimPress の WordPress 用 LearnPress におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4971	2025-01-10 18:29	2024-05-22	Show	GitHub Exploit DB Packet Storm

7	6.4	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3333	2025-01-10 18:27	2024-04-17	Show	GitHub Exploit DB Packet Storm

8	6.4	警告 Network	Leap13	Premium Addons for Elementor	Leap13 の WordPress 用 Premium Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3647	2025-01-10 18:27	2024-05-2	Show	GitHub Exploit DB Packet Storm

9	6.4	警告 Network	Royal Elementor Addons	Royal Elementor Addons and Templates	Royal Elementor Addons の WordPress 用 Royal Elementor Addons and Templates におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3675	2025-01-10 18:27	2024-05-2	Show	GitHub Exploit DB Packet Storm

10	6.5	警告 Network	ZITADEL	ZITADEL	ZITADEL における脆弱性 New	CWE-200 CWE-noinfo	CVE-2024-39683	2025-01-10 18:27	2024-07-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
81	-	-	-	Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful Browsing.This issue affects Basic HTTP Authentication: from 7.X-1.0 before 7.X-1.4. New	-	CVE-2024-13291	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

82	-	-	-	Incorrect Authorization vulnerability in Drupal OhDear Integration allows Forceful Browsing.This issue affects OhDear Integration: from 0.0.0 before 2.0.4. New	-	CVE-2024-13290	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

83	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Cookiebot + GTM allows Cross-Site Scripting (XSS).This issue affects Cookiebot + GTM: from… New	-	CVE-2024-13289	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

84	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Facets allows Cross-Site Scripting (XSS).This issue affects Facets: from 0.0.0 before 2.0.… New	-	CVE-2024-13283	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

85	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Open Social allows Cross-Site Scripting (XSS).This issue affects Open Social: from 0.0.0 b… New	-	CVE-2024-13273	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

86	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal View Password allows Cross-Site Scripting (XSS).This issue affects View Password: from 0.0… New	-	CVE-2024-13262	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

87	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal TacJS allows Cross-Site Scripting (XSS).This issue affects TacJS: from 0.0.0 before 6.5.0. New	-	CVE-2024-13252	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

88	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Coffee allows Cross-Site Scripting (XSS).This issue affects Coffee: from 0.0.0 before 1.4.… New	-	CVE-2024-13247	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

89	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal CKEditor 4 LTS - WYSIWYG HTML editor allows Cross-Site Scripting (XSS).This issue affects … New	-	CVE-2024-13245	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

90	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Typogrify allows Cross-Site Scripting (XSS).This issue affects Typogrify: from 0.0.0 befor… New	-	CVE-2024-13238	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm