Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1001	5.4	警告 Network	bdthemes	element pack	bdthemes の WordPress 用 element pack におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-32572	2025-01-22 16:35	2024-04-18	Show	GitHub Exploit DB Packet Storm

1002	5.4	警告 Network	webangon	the pack elementor addons	webangon の WordPress 用 the pack elementor addons におけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2024-32718	2025-01-22 16:35	2024-04-24	Show	GitHub Exploit DB Packet Storm

1003	5.4	警告 Network	Leap13	Premium Addons for Elementor	Leap13 の WordPress 用 Premium Addons for Elementor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-32791	2025-01-22 16:35	2024-04-24	Show	GitHub Exploit DB Packet Storm

1004	5.4	警告 Network	TYPO3 Association	TYPO3	TYPO3 Association の TYPO3 におけるクロスサイトスクリプティングの脆弱性	CWE-116 CWE-79 CWE-79	CVE-2024-34355	2025-01-22 16:35	2024-05-14	Show	GitHub Exploit DB Packet Storm

1005	7.5	重要 Network	BlackBerry	QNX Software Development Platform	BlackBerry の QNX Software Development Platform における境界外読み取りに関する脆弱性	CWE-125 CWE-125	CVE-2024-48855	2025-01-22 16:35	2024-10-8	Show	GitHub Exploit DB Packet Storm

1006	7.5	重要 Network	bdthemes	element pack	bdthemes の WordPress 用 element pack における脆弱性	CWE-noinfo 情報不足	CVE-2024-2966	2025-01-22 16:27	2024-04-11	Show	GitHub Exploit DB Packet Storm

1007	7.8	重要 Local	デル	repository manager	デルの repository manager におけるパストラバーサルの脆弱性	CWE-20 CWE-22	CVE-2024-28976	2025-01-22 16:26	2024-04-24	Show	GitHub Exploit DB Packet Storm

1008	7.1	重要 Local	sixlabors	imagesharp	sixlabors の imagesharp における解放済みメモリの使用に関する脆弱性	CWE-416 CWE-416	CVE-2024-27929	2025-01-22 16:24	2024-03-5	Show	GitHub Exploit DB Packet Storm

1009	5.4	警告 Network	exclusiveaddons	exclusive addons for elementor	exclusiveaddons の WordPress 用 exclusive addons for elementor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2751	2025-01-22 16:22	2024-05-2	Show	GitHub Exploit DB Packet Storm

1010	8.1	重要 Network	WonderCMS	WonderCMS	WonderCMS におけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 CWE-918	CVE-2024-27561	2025-01-22 16:22	2024-03-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274921	-	litespeed_technologies	litespeed_web_server	Cross-site scripting (XSS) vulnerability in admin/config/confMgr.php in LiteSpeed Web Server 2.1.5 allows remote attackers to inject arbitrary web script or HTML via the m parameter.	NVD-CWE-Other	CVE-2005-3695	2011-03-8 11:26	2005-11-21	Show	GitHub Exploit DB Packet Storm

274922	-	openttd	openttd	Multiple format string vulnerabilities in OpenTTD before 0.4.0.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.	NVD-CWE-Other	CVE-2005-2763	2011-03-8 11:25	2005-09-7	Show	GitHub Exploit DB Packet Storm

274923	-	openttd	openttd	Multiple buffer overflows in OpenTTD before 0.4.0.1 allow attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.	NVD-CWE-Other	CVE-2005-2764	2011-03-8 11:25	2005-09-22	Show	GitHub Exploit DB Packet Storm

274924	-	eric_fichot	downfile	Cross-site scripting (XSS) vulnerability in DownFile 1.3 allows remote attackers to inject arbitrary web script or HTML via the id parameter to (1) email.php,(2) index.php, (3) del.php, or (4) add_fo…	CWE-79 Cross-site Scripting	CVE-2005-2818	2011-03-8 11:25	2005-09-8	Show	GitHub Exploit DB Packet Storm

274925	-	ipswitch	imail_server ipswitch_collaboration_suite	The IMAP server in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to cause a denial of service (crash) via a long argument to the LIST command, which caus…	CWE-20 Improper Input Validation	CVE-2005-2923	2011-03-8 11:25	2005-12-7	Show	GitHub Exploit DB Packet Storm

274926	-	ipswitch	imail_server ipswitch_collaboration_suite	Format string vulnerability in the SMTP service in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to execute arbitrary code via format string specifiers t…	NVD-CWE-Other	CVE-2005-2931	2011-03-8 11:25	2005-12-7	Show	GitHub Exploit DB Packet Storm

274927	-	deluxebb	deluxebb	Multiple SQL injection vulnerabilities in DeluxeBB 1.0 and 1.0.5 allow remote attackers to execute arbitrary SQL commands via the (1) tid parameter to topic.php, the uid parameter to (2) misc.php or …	NVD-CWE-Other	CVE-2005-2989	2011-03-8 11:25	2005-09-20	Show	GitHub Exploit DB Packet Storm

274928	-	linecontrol	java_client	AuthInfo.java in LineContol Java Client (jlc) before 0.8.1 stores sensitive information such as user passwords in log files.	NVD-CWE-Other	CVE-2005-2990	2011-03-8 11:25	2005-09-20	Show	GitHub Exploit DB Packet Storm

274929	-	sun	solaris	Unspecified vulnerability in the "tl" driver in Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors.	NVD-CWE-Other	CVE-2005-3001	2011-03-8 11:25	2005-09-21	Show	GitHub Exploit DB Packet Storm

274930	-	xclusive-software	mccs	Multi-Computer Control System (MCCS) 1.0 allows remote attackers to cause a denial of service via a malformed UDP packet.	NVD-CWE-Other	CVE-2005-3002	2011-03-8 11:25	2005-09-21	Show	GitHub Exploit DB Packet Storm