Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1081	5.4	警告 Network	POSIMYTH	The Plus Addons for Elementor Page Builder	POSIMYTH の WordPress 用 The Plus Addons for Elementor Page Builder におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3197	2025-01-22 10:35	2024-05-2	Show	GitHub Exploit DB Packet Storm

1082	8.8	重要 Network	XWiki	xwiki	XWiki の xwiki における認証の欠如に関する脆弱性	CWE-862 CWE-862	CVE-2024-31983	2025-01-22 10:35	2024-04-10	Show	GitHub Exploit DB Packet Storm

1083	6.1	警告 Network	PrestaShop	PrestaShop	PrestaShop におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2024-34716	2025-01-22 10:35	2024-05-14	Show	GitHub Exploit DB Packet Storm

1084	9.8	緊急 Network	マイクロフォーカス株式会社	imanager	マイクロフォーカス株式会社の imanager におけるコマンドインジェクションの脆弱性	CWE-434 CWE-502 CWE-502 CWE-77 CWE-77	CVE-2024-3483	2025-01-22 10:35	2024-05-15	Show	GitHub Exploit DB Packet Storm

1085	9.8	緊急 Network	マイクロフォーカス株式会社	imanager	マイクロフォーカス株式会社の imanager における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-20 CWE-434	CVE-2024-3488	2025-01-22 10:35	2024-05-15	Show	GitHub Exploit DB Packet Storm

1086	5.4	警告 Network	oretnom23	computer laboratory management system	oretnom23 の computer laboratory management system におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3695	2025-01-22 10:35	2024-04-12	Show	GitHub Exploit DB Packet Storm

1087	7.3	重要 Local	マイクロソフト	Microsoft Visual Studio	Visual Studio の特権の昇格の脆弱性	CWE-284 CWE-noinfo	CVE-2025-21405	2025-01-22 10:09	2025-01-14	Show	GitHub Exploit DB Packet Storm

1088	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Microsoft Access	Microsoft Access のリモートコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2025-21366	2025-01-22 10:06	2025-01-14	Show	GitHub Exploit DB Packet Storm

1089	8.4	重要 Local	マイクロソフト	Microsoft Office Microsoft Office Online Server Microsoft Excel Microsoft 365 Apps	Microsoft Excel のリモートでコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2025-21362	2025-01-22 09:48	2025-01-14	Show	GitHub Exploit DB Packet Storm

1090	7.8	重要 Local	マイクロソフト	Microsoft AutoUpdate	Microsoft AutoUpdate (MAU) の特権昇格の脆弱性	CWE-269 CWE-noinfo	CVE-2025-21360	2025-01-22 09:43	2025-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277581	-	trend_micro	interscan_viruswall	InterScan VirusWall for Solaris doesn't scan files for viruses when a single HTTP request includes two GET commands.	NVD-CWE-Other	CVE-1999-0378	2008-09-9 21:34	1999-02-22	Show	GitHub Exploit DB Packet Storm

277582	-	acc	tigris	ACC Tigris allows public access without a login.	NVD-CWE-Other	CVE-1999-0383	2008-09-9 21:34	1999-02-2	Show	GitHub Exploit DB Packet Storm

277583	-	datalynx	suguard	DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root.	NVD-CWE-Other	CVE-1999-0388	2008-09-9 21:34	1999-01-1	Show	GitHub Exploit DB Packet Storm

277584	-	debian	debian_linux	Buffer overflow in the bootp server in the Debian Linux netstd package.	NVD-CWE-Other	CVE-1999-0389	2008-09-9 21:34	1999-01-3	Show	GitHub Exploit DB Packet Storm

277585	-	redhat suse	linux suse_linux	Buffer overflow in Dosemu Slang library in Linux.	NVD-CWE-Other	CVE-1999-0390	2008-09-9 21:34	1999-01-4	Show	GitHub Exploit DB Packet Storm

277586	-	backweb_technologies	backweb_polite_agent_protocol	A race condition in the BackWeb Polite Agent Protocol allows an attacker to spoof a BackWeb server.	NVD-CWE-Other	CVE-1999-0395	2008-09-9 21:34	1999-01-1	Show	GitHub Exploit DB Packet Storm

277587	-	debian freebsd redhat suse	debian_linux freebsd linux suse_linux	A buffer overflow in lsof allows local users to obtain root privilege.	NVD-CWE-Other	CVE-1999-0405	2008-09-9 21:34	1999-02-18	Show	GitHub Exploit DB Packet Storm

277588	-	sun	cobalt_raq	Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server.	NVD-CWE-Other	CVE-1999-0408	2008-09-9 21:34	1999-02-25	Show	GitHub Exploit DB Packet Storm

277589	-	suse	suse_linux	Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access.	NVD-CWE-Other	CVE-1999-0409	2008-09-9 21:34	1999-03-4	Show	GitHub Exploit DB Packet Storm

277590	-	sgi	irix	A buffer overflow in the SGI X server allows local users to gain root access through the X server font path.	NVD-CWE-Other	CVE-1999-0413	2008-09-9 21:34	1999-03-1	Show	GitHub Exploit DB Packet Storm