Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
101 7.8 重要
Local
インテル graphics performance analyzers インテルの graphics performance analyzers における制御されていない検索パスの要素に関する脆弱性 New CWE-427
CWE-427
CVE-2023-41961 2025-01-24 11:54 2023-10-12 Show GitHub Exploit DB Packet Storm
102 7.8 重要
Local
インテル graphics performance analyzers インテルの graphics performance analyzers における不適切なデフォルトパーミッションに関する脆弱性 New CWE-276
CWE-276
CVE-2023-43629 2025-01-24 11:54 2023-10-12 Show GitHub Exploit DB Packet Storm
103 7.8 重要
Local
インテル graphics performance analyzers インテルの graphics performance analyzers における制御されていない検索パスの要素に関する脆弱性 New CWE-427
CWE-427
CVE-2024-21788 2025-01-24 11:54 2024-05-16 Show GitHub Exploit DB Packet Storm
104 7.5 重要
Network
F5 Networks BIG-IP Application Security Manager (ASM)
BIG-IP Advanced Web Application Firewall (WAF)
F5 Networks の BIG-IP Advanced Web Application Firewall (WAF) および BIG-IP Application Security Manager (ASM) におけるバッファサイズの計算の誤りに関する脆弱性 New CWE-131
CWE-131
CVE-2024-23805 2025-01-24 11:45 2024-02-14 Show GitHub Exploit DB Packet Storm
105 5.4 警告
Network
Themeisle otter blocks ThemeIsle の WordPress 用 otter blocks におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-2841 2025-01-24 11:32 2024-03-29 Show GitHub Exploit DB Packet Storm
106 5.4 警告
Network
properfraction profilepress properfraction の WordPress 用 profilepress におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-3210 2025-01-24 11:32 2024-04-10 Show GitHub Exploit DB Packet Storm
107 9.8 緊急
Network
ZyXEL NAS 326 ファームウェア
NAS 542 ファームウェア
ZyXEL の NAS 326 ファームウェアおよび NAS 542 ファームウェアにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 New CWE-434
危険なタイプのファイルの無制限アップロード
CVE-2024-29974 2025-01-24 11:32 2024-06-4 Show GitHub Exploit DB Packet Storm
108 8.8 重要
Network
webangon the pack elementor addons webangon の WordPress 用 the pack elementor addons におけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル
CVE-2024-38768 2025-01-24 11:32 2024-08-1 Show GitHub Exploit DB Packet Storm
109 5.4 警告
Network
themelooks enter addons themelooks の WordPress 用 enter addons におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-43225 2025-01-24 11:31 2024-08-12 Show GitHub Exploit DB Packet Storm
110 4.8 警告
Network
webangon the pack elementor addons webangon の WordPress 用 the pack elementor addons におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-47383 2025-01-24 11:31 2024-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
401 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Content Mirror allows Reflected XSS. This issue affects Content Mirror: from n/a through… New CWE-79
Cross-site Scripting
CVE-2025-23769 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
402 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound InFunding allows Reflected XSS. This issue affects InFunding: from n/a through 1.0. New CWE-79
Cross-site Scripting
CVE-2025-23768 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
403 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Pootle button allows Reflected XSS. This issue affects Pootle button: from n/a through 1… New CWE-79
Cross-site Scripting
CVE-2025-23758 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
404 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound CMC MIGRATE allows Reflected XSS. This issue affects CMC MIGRATE: from n/a through 0.0.3. New CWE-79
Cross-site Scripting
CVE-2025-23746 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
405 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Easy Filtering allows Reflected XSS. This issue affects Easy Filtering: from n/a through… New CWE-79
Cross-site Scripting
CVE-2025-23732 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
406 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kiro G. Formatted post allows Reflected XSS. This issue affects Formatted post: from n/a through … New CWE-79
Cross-site Scripting
CVE-2025-23709 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
407 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Jet Skinner for BuddyPress allows Reflected XSS. This issue affects Jet Skinner for Budd… New CWE-79
Cross-site Scripting
CVE-2025-23706 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
408 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Matthew Blackford, LimeSquare Pty Ltd Lime Developer Login allows Reflected XSS. This issue affec… New CWE-79
Cross-site Scripting
CVE-2025-23701 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
409 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound MACME allows Reflected XSS. This issue affects MACME: from n/a through 1.2. New CWE-79
Cross-site Scripting
CVE-2025-23683 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
410 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Preloader Quotes allows Reflected XSS. This issue affects Preloader Quotes: from n/a thr… New CWE-79
Cross-site Scripting
CVE-2025-23682 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm