Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1001 5.4 警告
Network 		bdthemes element pack bdthemes の WordPress 用 element pack におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-32572 2025-01-22 16:35 2024-04-18 Show GitHub Exploit DB Packet Storm
1002 5.4 警告
Network 		webangon the pack elementor addons webangon の WordPress 用 the pack elementor addons におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2024-32718 2025-01-22 16:35 2024-04-24 Show GitHub Exploit DB Packet Storm
1003 5.4 警告
Network 		Leap13 Premium Addons for Elementor Leap13 の WordPress 用 Premium Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-32791 2025-01-22 16:35 2024-04-24 Show GitHub Exploit DB Packet Storm
1004 5.4 警告
Network 		TYPO3 Association TYPO3 TYPO3 Association の TYPO3 におけるクロスサイトスクリプティングの脆弱性 CWE-116
CWE-79
CWE-79
CVE-2024-34355 2025-01-22 16:35 2024-05-14 Show GitHub Exploit DB Packet Storm
1005 7.5 重要
Network 		BlackBerry QNX Software Development Platform BlackBerry の QNX Software Development Platform における境界外読み取りに関する脆弱性 CWE-125
CWE-125
CVE-2024-48855 2025-01-22 16:35 2024-10-8 Show GitHub Exploit DB Packet Storm
1006 7.5 重要
Network 		bdthemes element pack bdthemes の WordPress 用 element pack における脆弱性 CWE-noinfo
情報不足 		CVE-2024-2966 2025-01-22 16:27 2024-04-11 Show GitHub Exploit DB Packet Storm
1007 7.8 重要
Local 		デル repository manager デルの repository manager におけるパストラバーサルの脆弱性 CWE-20
CWE-22
CVE-2024-28976 2025-01-22 16:26 2024-04-24 Show GitHub Exploit DB Packet Storm
1008 7.1 重要
Local 		sixlabors imagesharp sixlabors の imagesharp における解放済みメモリの使用に関する脆弱性 CWE-416
CWE-416
CVE-2024-27929 2025-01-22 16:24 2024-03-5 Show GitHub Exploit DB Packet Storm
1009 5.4 警告
Network 		exclusiveaddons exclusive addons for elementor exclusiveaddons の WordPress 用 exclusive addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2751 2025-01-22 16:22 2024-05-2 Show GitHub Exploit DB Packet Storm
1010 8.1 重要
Network 		WonderCMS WonderCMS WonderCMS におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
CWE-918
CVE-2024-27561 2025-01-22 16:22 2024-03-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275431 - pedro_lineu_orso sarg Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent… CWE-79
Cross-site Scripting 		CVE-2008-7250 2010-01-5 02:31 2009-12-31 Show GitHub Exploit DB Packet Storm
275432 - mailsite mailsite LDAP3A.exe in MailSite 8.0.4 allows remote attackers to cause a denial of service (heap memory corruption and daemon crash) via unspecified vectors, as demonstrated by a certain module in VulnDisco P… CWE-399
 Resource Management Errors 		CVE-2009-4479 2010-01-4 14:00 2009-12-31 Show GitHub Exploit DB Packet Storm
275433 - tversity tversity Buffer overflow in MediaServer.exe in TVersity 1.6 allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by the vd_tversity module in VulnDisco Pack Professional … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4482 2010-01-4 14:00 2009-12-31 Show GitHub Exploit DB Packet Storm
275434 - sergey_lyubka mongoose Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending ::$DATA to the URI. CWE-200
Information Exposure 		CVE-2009-4530 2010-01-4 14:00 2010-01-1 Show GitHub Exploit DB Packet Storm
275435 - nanwich faq_ask Open redirect vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via un… NVD-CWE-Other
CVE-2009-4534 2010-01-4 14:00 2010-01-1 Show GitHub Exploit DB Packet Storm
275436 - zabbix zabbix The zbx_get_next_field function in libs/zbxcommon/str.c in Zabbix Server before 1.6.8 allows remote attackers to cause a denial of service (crash) via a request that lacks expected separators, which … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4501 2010-01-1 14:00 2010-01-1 Show GitHub Exploit DB Packet Storm
275437 - zabbix zabbix The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary command… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-4502 2010-01-1 14:00 2010-01-1 Show GitHub Exploit DB Packet Storm
275438 - tatsuhiro_tsujikawa aria2 Buffer overflow in DHTRoutingTableDeserializer.cc in aria2 0.15.3, 1.2.0, and other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unkno… NVD-CWE-noinfo
CVE-2009-3575 2009-12-31 16:04 2009-10-8 Show GitHub Exploit DB Packet Storm
275439 - dag.wieers dstat Untrusted search path vulnerability in dstat before r3199 allows local users to gain privileges via a Trojan horse Python module in the current working directory, a different vulnerability than CVE-2… NVD-CWE-Other
CVE-2009-4081 2009-12-31 16:04 2009-11-29 Show GitHub Exploit DB Packet Storm
275440 - azeotech daqfactory Buffer overflow in the web service in AzeoTech DAQFactory 5.77 might allow remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Pr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4480 2009-12-31 14:00 2009-12-31 Show GitHub Exploit DB Packet Storm