Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 8, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
101	4.3	警告 Network	WPDeveloper	embedpress	WPDeveloper の WordPress 用 embedpress における不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2024-1803	2025-01-8 10:44	2024-05-23	Show	GitHub Exploit DB Packet Storm

102	5.4	警告 Network	WPDeveloper	embedpress	WPDeveloper の WordPress 用 embedpress におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2688	2025-01-8 10:44	2024-03-23	Show	GitHub Exploit DB Packet Storm

103	5.4	警告 Network	leevio	happy addons for elementor	leevio の WordPress 用 happy addons for elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2787	2025-01-8 10:44	2024-04-9	Show	GitHub Exploit DB Packet Storm

104	6.5	警告 Network	GLPI-PROJECT.ORG	GLPI	GLPI-PROJECT.ORG の GLPI における SQL インジェクションの脆弱性 New	CWE-89 CWE-89	CVE-2024-31456	2025-01-8 10:44	2024-05-7	Show	GitHub Exploit DB Packet Storm

105	5.4	警告 Network	leevio	happy addons for elementor	leevio の WordPress 用 happy addons for elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4391	2025-01-8 10:44	2024-05-16	Show	GitHub Exploit DB Packet Storm

106	6.1	警告 Network	imagerecycle	imagerecycle pdf & image compression	imagerecycle の WordPress 用 imagerecycle pdf & image compression におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-54266	2025-01-8 10:44	2024-12-13	Show	GitHub Exploit DB Packet Storm

107	7.8	重要 Local	インテル	chipset device software	インテルの chipset device software における脆弱性 New	CWE-284 CWE-noinfo	CVE-2023-25174	2025-01-8 10:44	2023-03-4	Show	GitHub Exploit DB Packet Storm

108	7.2	重要 Network	IBM	IBM Cognos Controller	IBM の IBM Cognos Controller における SQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2021-20451	2025-01-8 10:33	2024-05-3	Show	GitHub Exploit DB Packet Storm

109	5.3	警告 Network	IBM	IBM Cognos Controller	IBM の IBM Cognos Controller におけるエンコードおよびエスケープに関する脆弱性 New	CWE-116 CWE-117	CVE-2023-28952	2025-01-8 10:33	2023-03-29	Show	GitHub Exploit DB Packet Storm

110	8.8	重要 Network		-	IBM の IBM Aspera Orchestrator における OS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2023-37407	2025-01-8 10:33	2023-07-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 8, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275781	-	gnocatan-develop	gnocatan	Multiple buffer overflows in gnocatan 0.6.1 and earlier allow attackers to execute arbitrary code.	NVD-CWE-Other	CVE-2003-0433	2008-09-6 05:34	2003-07-24	Show	GitHub Exploit DB Packet Storm

275782	-	yuuichi_teranishi	eldav	eldav WebDAV client for Emacs, version 0.7.2 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.	NVD-CWE-Other	CVE-2003-0438	2008-09-6 05:34	2003-07-24	Show	GitHub Exploit DB Packet Storm

275783	-	webfs	webfs	Buffer overflow in webfs before 1.17.1 allows remote attackers to execute arbitrary code via an HTTP request with a long Request-URI.	NVD-CWE-Other	CVE-2003-0445	2008-09-6 05:34	2003-07-24	Show	GitHub Exploit DB Packet Storm

275784	-	xblockout	xbl	Multiple buffer overflows in xbl before 1.0k allow local users to gain privileges via certain long command line arguments.	NVD-CWE-Other	CVE-2003-0451	2008-09-6 05:34	2003-08-7	Show	GitHub Exploit DB Packet Storm

275785	-	gunnar_ritter	osh	Buffer overflows in osh before 1.7-11 allow local users to execute arbitrary code and bypass shell restrictions via (1) long environment variables or (2) long "file redirections."	NVD-CWE-Other	CVE-2003-0452	2008-09-6 05:34	2003-08-7	Show	GitHub Exploit DB Packet Storm

275786	-	joe_rumsey	xgalaga	Multiple buffer overflows in xgalaga 2.0.34 and earlier allow local users to gain privileges via a long HOME environment variable.	NVD-CWE-Other	CVE-2003-0454	2008-09-6 05:34	2003-08-7	Show	GitHub Exploit DB Packet Storm

275787	-	hp	nonstop_seeview_server_gateway	Unknown vulnerability in HP NonStop Server D40.00 through D48.03, and G01.00 through G06.20, allows local users to gain additional privileges.	NVD-CWE-Other	CVE-2003-0458	2008-09-6 05:34	2003-08-18	Show	GitHub Exploit DB Packet Storm

275788	-	michael_c._toren	tcptraceroute	tcptraceroute 1.4 and earlier does not fully drop privileges after obtaining a file descriptor for capturing packets, which may allow local users to gain access to the descriptor via a separate vulne…	NVD-CWE-Other	CVE-2003-0489	2008-09-6 05:34	2003-08-7	Show	GitHub Exploit DB Packet Storm

275789	-	proftpd_project	proftpd	SQL injection vulnerability in the PostgreSQL authentication module (mod_sql_postgres) for ProFTPD before 1.2.9rc1 allows remote attackers to execute arbitrary SQL and gain privileges by bypassing au…	NVD-CWE-Other	CVE-2003-0500	2008-09-6 05:34	2003-08-7	Show	GitHub Exploit DB Packet Storm

275790	-	apple	safari	Apple Safari allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Safari to s…	NVD-CWE-Other	CVE-2003-0514	2008-09-6 05:34	2004-04-15	Show	GitHub Exploit DB Packet Storm