Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
101	6.5	警告 Network	Apache Software Foundation	Ambari	Apache Software Foundation の Ambari における XML 外部エンティティの脆弱性 New	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2023-50380	2025-01-30 17:13	2023-12-7	Show	GitHub Exploit DB Packet Storm

102	7.5	重要 Network	HasThemes	HT Mega - Absolute Addons For Elementor	HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor における脆弱性 New	CWE-noinfo 情報不足	CVE-2023-6214	2025-01-30 17:13	2023-11-20	Show	GitHub Exploit DB Packet Storm

103	8.8	重要 Network	POSIMYTH	The Plus Addons for Elementor Page Builder	POSIMYTH の WordPress 用 The Plus Addons for Elementor Page Builder における脆弱性 New	CWE-noinfo 情報不足	CVE-2024-2203	2025-01-30 17:13	2024-03-27	Show	GitHub Exploit DB Packet Storm

104	5.4	警告 Network	Liferay	Digital Experience Platform Liferay Portal	Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-25152	2025-01-30 17:12	2024-02-21	Show	GitHub Exploit DB Packet Storm

105	5.5	警告 Local	デル	Dell Grab	デルの Windows 用 Dell Grab における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 New	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2024-25956	2025-01-30 17:12	2024-03-26	Show	GitHub Exploit DB Packet Storm

106	5.3	警告 Network	Liferay	Digital Experience Platform Liferay Portal	Liferay の Liferay Portal および Digital Experience Platform における脆弱性 New	CWE-201 CWE-Other	CVE-2024-26270	2025-01-30 17:12	2024-02-20	Show	GitHub Exploit DB Packet Storm

107	5.4	警告 Network	HasThemes	HT Mega - Absolute Addons For Elementor	HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2790	2025-01-30 17:12	2024-05-2	Show	GitHub Exploit DB Packet Storm

108	5.4	警告 Network	Extend Themes	colibri page builder	Extend Themes の WordPress 用 colibri page builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2839	2025-01-30 17:12	2024-04-2	Show	GitHub Exploit DB Packet Storm

109	5.4	警告 Network	HasThemes	HT Mega - Absolute Addons For Elementor	HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3308	2025-01-30 17:12	2024-05-2	Show	GitHub Exploit DB Packet Storm

110	7.2	重要 Network	mayurik	advocate office management system	mayurik の advocate office management system における SQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2024-3617	2025-01-30 17:12	2024-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280541	-	digital	ultrix	Vulnerability in /usr/bin/mail in DEC ULTRIX before 4.2 allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1415	2008-09-6 05:19	1991-08-23	Show	GitHub Exploit DB Packet Storm

280542	-	mirabilis	icq_web_front	ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("4…	NVD-CWE-Other	CVE-1999-1418	2008-09-6 05:19	1999-05-1	Show	GitHub Exploit DB Packet Storm

280543	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table e…	NVD-CWE-Other	CVE-1999-1424	2008-09-6 05:19	1997-11-10	Show	GitHub Exploit DB Packet Storm

280544	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.	NVD-CWE-Other	CVE-1999-1426	2008-09-6 05:19	1997-11-10	Show	GitHub Exploit DB Packet Storm

280545	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1427	2008-09-6 05:19	1997-11-10	Show	GitHub Exploit DB Packet Storm

280546	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is running with setgid bin privileges.	NVD-CWE-Other	CVE-1999-1428	2008-09-6 05:19	1997-11-10	Show	GitHub Exploit DB Packet Storm

280547	-	sun	sunos	Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.	NVD-CWE-Other	CVE-1999-1438	2008-09-6 05:19	1991-02-22	Show	GitHub Exploit DB Packet Storm

280548	-	sun	sunos	SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device.	NVD-CWE-Other	CVE-1999-1449	2008-09-6 05:19	1997-05-19	Show	GitHub Exploit DB Packet Storm

280549	-	cisco	ios	Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enab…	NVD-CWE-Other	CVE-1999-1466	2008-09-6 05:19	1992-12-10	Show	GitHub Exploit DB Packet Storm

280550	-	bsd	bsd	Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECOS field.	NVD-CWE-Other	CVE-1999-1471	2008-09-6 05:19	1989-01-1	Show	GitHub Exploit DB Packet Storm