Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 8, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
101 4.3 警告
Network 		WPDeveloper embedpress WPDeveloper の WordPress 用 embedpress における不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2024-1803 2025-01-8 10:44 2024-05-23 Show GitHub Exploit DB Packet Storm
102 5.4 警告
Network 		WPDeveloper embedpress WPDeveloper の WordPress 用 embedpress におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2688 2025-01-8 10:44 2024-03-23 Show GitHub Exploit DB Packet Storm
103 5.4 警告
Network 		leevio happy addons for elementor leevio の WordPress 用 happy addons for elementor におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2787 2025-01-8 10:44 2024-04-9 Show GitHub Exploit DB Packet Storm
104 6.5 警告
Network 		GLPI-PROJECT.ORG GLPI GLPI-PROJECT.ORG の GLPI における SQL インジェクションの脆弱性 New CWE-89
CWE-89
CVE-2024-31456 2025-01-8 10:44 2024-05-7 Show GitHub Exploit DB Packet Storm
105 5.4 警告
Network 		leevio happy addons for elementor leevio の WordPress 用 happy addons for elementor におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-4391 2025-01-8 10:44 2024-05-16 Show GitHub Exploit DB Packet Storm
106 6.1 警告
Network 		imagerecycle imagerecycle pdf & image compression imagerecycle の WordPress 用 imagerecycle pdf & image compression におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-54266 2025-01-8 10:44 2024-12-13 Show GitHub Exploit DB Packet Storm
107 7.8 重要
Local 		インテル chipset device software インテルの chipset device software における脆弱性 New CWE-284
CWE-noinfo
CVE-2023-25174 2025-01-8 10:44 2023-03-4 Show GitHub Exploit DB Packet Storm
108 7.2 重要
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller における SQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2021-20451 2025-01-8 10:33 2024-05-3 Show GitHub Exploit DB Packet Storm
109 5.3 警告
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller におけるエンコードおよびエスケープに関する脆弱性 New CWE-116
CWE-117
CVE-2023-28952 2025-01-8 10:33 2023-03-29 Show GitHub Exploit DB Packet Storm
110 8.8 重要
Network 		- IBM の IBM Aspera Orchestrator における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2023-37407 2025-01-8 10:33 2023-07-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 8, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276821 - phpwebsite_development_team phpwebsite Vulnerability in phpWebSite before 0.7.9 related to running multiple instances in the same domain, which may allow attackers to gain administrative privileges. NVD-CWE-Other
CVE-2001-1363 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
276822 - project_purple autodns Vulnerability in autodns.pl for AutoDNS before 0.0.4 related to domain names that are not fully qualified. NVD-CWE-Other
CVE-2001-1364 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
276823 - osi_codes_inc. intragnat Vulnerability in IntraGnat before 1.4. NVD-CWE-Other
CVE-2001-1365 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
276824 - netscript_project netscript netscript before 1.6.3 parses dynamic variables, which could allow remote attackers to alter program behavior or obtain sensitive information. NVD-CWE-Other
CVE-2001-1366 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
276825 - conectiva
redhat 		linux tcl/tk package (tcltk) 8.3.1 searches for its libraries in the current working directory before other directories, which could allow local users to execute arbitrary code via a Trojan horse library t… NVD-CWE-Other
CVE-2001-1375 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
276826 - openbsd openssh The "echo simulation" traffic analysis countermeasure in OpenSSH before 2.9.9p2 sends an additional echo packet after the password and carriage return is entered, which could allow remote attackers t… NVD-CWE-Other
CVE-2001-1382 2008-09-6 05:26 2001-09-27 Show GitHub Exploit DB Packet Storm
276827 - aol instant_messenger Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote attackers to execute arbitrary web script or HTML via… NVD-CWE-Other
CVE-2001-1416 2008-09-6 05:26 2001-01-18 Show GitHub Exploit DB Packet Storm
276828 - surfcontrol superscout_web_filter SurfControl SuperScout only filters packets containing both an HTTP GET request and a Host header, which allows local users to bypass filtering by fragmenting packets so that no packet contains both … NVD-CWE-Other
CVE-2001-1465 2008-09-6 05:26 2002-02-26 Show GitHub Exploit DB Packet Storm
276829 - macromedia jrun Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote attackers to read arbitrary files and directories by a… NVD-CWE-Other
CVE-2001-1510 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
276830 - macromedia jrun JRun 3.0 and 3.1 running on JRun Web Server (JWS) and IIS allows remote attackers to read arbitrary JavaServer Pages (JSP) source code via a request URL containing the source filename ending in (1) "… NVD-CWE-Other
CVE-2001-1511 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm