Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 30, 2025, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1031	8.8	重要 Network	フォーティネット	FortiClient	フォーティネットの Linux 用 FortiClient におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2023-45590	2025-01-21 08:49	2023-10-9	Show	GitHub Exploit DB Packet Storm

1032	5.4	警告 Network	Outlook.com	Microsoft Edge Chromium	Microsoft Edge for Android (Chromium ベース) の情報漏えいの脆弱性	CWE-359 CWE-noinfo	CVE-2024-29986	2025-01-21 08:49	2024-04-18	Show	GitHub Exploit DB Packet Storm

1033	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 CWE-noinfo	CVE-2025-21363	2025-01-21 08:49	2025-01-14	Show	GitHub Exploit DB Packet Storm

1034	7.8	重要 Local	マイクロソフト	Microsoft Windows 10 Microsoft Windows Server 2019 Microsoft Windows Server 2025 Microsoft Windows 11 Microsoft Windows Server&…	Windows Graphics コンポーネントの特権の昇格の脆弱性	CWE-122 CWE-190 CWE-noinfo	CVE-2025-21382	2025-01-21 08:49	2025-01-14	Show	GitHub Exploit DB Packet Storm

1035	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2012 Microsoft Windows 10 Microsoft Windows Server 2019 Microsoft Window…	Windows upnphost.dll のサービス拒否の脆弱性	CWE-400 CWE-noinfo	CVE-2025-21389	2025-01-21 08:49	2025-01-14	Show	GitHub Exploit DB Packet Storm

1036	8.8	重要 Network	wpextended	The Ultimate WordPress Toolkit - WP Extended	wpextended の WordPress 用 The Ultimate WordPress Toolkit - WP Extended における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-11816	2025-01-21 08:41	2024-11-26	Show	GitHub Exploit DB Packet Storm

1037	5.4	警告 Network	Jenkins プロジェクト	Build Monitor View	Jenkins プロジェクトの Jenkins 用 Build Monitor View におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-28156	2025-01-21 08:41	2024-03-6	Show	GitHub Exploit DB Packet Storm

1038	3.3	低 Local	Phiewer	Phiewer	Phiewer における信頼できない検索パスに関する脆弱性	CWE-426 信頼性のない検索パス	CVE-2024-53407	2025-01-21 08:37	2024-11-20	Show	GitHub Exploit DB Packet Storm

1039	8.8	重要 Network	Ivanti	connect secure	Ivanti の connect secure における解放済みメモリの使用に関する脆弱性	CWE-416 CWE-416	CVE-2024-9420	2025-01-20 18:27	2024-11-12	Show	GitHub Exploit DB Packet Storm

1040	7.1	重要 Local	Ivanti	secure access client	Ivanti の secure access client における脆弱性	CWE-267 CWE-Other	CVE-2024-8539	2025-01-20 18:26	2024-11-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 30, 2025, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276761	-	joe_kloss	robinhood	RHConsole in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request.	NVD-CWE-Other	CVE-2000-1154	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

276762	-	joe_kloss	robinhood	RHDaemon in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request.	NVD-CWE-Other	CVE-2000-1155	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

276763	-	nec	socks_5	Buffer overflow in socks5 server on Linux allows attackers to execute arbitrary commands via a long connection request.	NVD-CWE-Other	CVE-2000-1183	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

276764	-	i-soft	quikstore	Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "page" parameter.	NVD-CWE-Other	CVE-2000-1188	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

276765	-	btt_software	snmp_trap_watcher	Buffer overflow in BTT Software SNMP Trap Watcher 1.16 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string trap.	NVD-CWE-Other	CVE-2000-1192	2008-09-11 04:06	2001-08-31	Show	GitHub Exploit DB Packet Storm

276766	-	oracle	application_server	SQL injection vulnerability in mod_sql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the query string of the URL.	NVD-CWE-Other	CVE-2000-1236	2008-09-11 04:06	2000-12-31	Show	GitHub Exploit DB Packet Storm

276767	-	openssl freebsd	openssl freebsd	OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak …	NVD-CWE-Other	CVE-2000-0535	2008-09-11 04:05	2000-06-12	Show	GitHub Exploit DB Packet Storm

276768	-	microsoft	windows_2000 windows_nt	Windows NT and Windows 2000 hosts allow a remote attacker to cause a denial of service via malformed DCE/RPC SMBwriteX requests that contain an invalid data length.	NVD-CWE-Other	CVE-2000-0544	2008-09-11 04:05	2000-06-5	Show	GitHub Exploit DB Packet Storm

276769	-	sgi	mailx	Buffer overflow in mailx mail command (aka Mail) on Linux systems allows local users to gain privileges via a long -c (carbon copy) parameter.	NVD-CWE-Other	CVE-2000-0545	2008-09-11 04:05	2000-08-8	Show	GitHub Exploit DB Packet Storm

276770	-	lilikoi	ceilidh	Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field.	NVD-CWE-Other	CVE-2000-0554	2008-09-11 04:05	2000-06-8	Show	GitHub Exploit DB Packet Storm