Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 21, 2025, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
101	5.4	警告 Network	VillaTheme	Thank You Page Customizer for WooCommerce - Increase Your Sales	VillaTheme の WordPress 用 Thank You Page Customizer for WooCommerce - Increase Your Sales における認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2024-1687	2025-01-20 17:17	2024-02-27	Show	GitHub Exploit DB Packet Storm

102	8.8	重要 Local	マイクロソフト	Microsoft Windows 11	Windows 仮想化ベースのセキュリティ (VBS) エンクレーブの特権昇格の脆弱性 New	CWE-20 CWE-noinfo	CVE-2025-21370	2025-01-20 17:14	2025-01-14	Show	GitHub Exploit DB Packet Storm

103	7.5	重要 Network	MailCleaner	MailCleaner	MailCleaner における認証の欠如に関する脆弱性 Update	CWE-862 認証の欠如	CVE-2019-1010246	2025-01-20 17:12	2019-01-21	Show	GitHub Exploit DB Packet Storm

104	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性 New	CWE-121 CWE-noinfo	CVE-2024-28928	2025-01-20 17:11	2024-07-9	Show	GitHub Exploit DB Packet Storm

105	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性 New	CWE-190 CWE-noinfo	CVE-2024-21428	2025-01-20 17:09	2024-07-9	Show	GitHub Exploit DB Packet Storm

106	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office	Microsoft Excel のセキュリティ機能のバイパスの脆弱性 New	CWE-502 CWE-noinfo	CVE-2025-21364	2025-01-20 17:09	2025-01-14	Show	GitHub Exploit DB Packet Storm

107	4.3	警告 Network	LadiPage	LadiPage	WordPress 用 LadiPage におけるクロスサイトリクエストフォージェリの脆弱性 New	CWE-352 同一生成元ポリシー違反	CVE-2023-4628	2025-01-20 17:07	2023-08-30	Show	GitHub Exploit DB Packet Storm

108	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性 New	CWE-122 CWE-noinfo	CVE-2024-21415	2025-01-20 17:06	2024-07-9	Show	GitHub Exploit DB Packet Storm

109	7.8	重要 Local	マイクロソフト	Microsoft Access Microsoft 365 Apps Microsoft Office	Microsoft Access のリモートコードが実行される脆弱性 New	CWE-416 CWE-noinfo	CVE-2024-49142	2025-01-20 17:01	2024-12-10	Show	GitHub Exploit DB Packet Storm

110	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 New	CWE-476 NULL ポインタデリファレンス	CVE-2024-57881	2025-01-20 16:59	2024-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 21, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
521	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Myriad Solutionz Stars SMTP Mailer allows Reflected XSS.This issue affects Stars SMTP Mailer: fro…	CWE-79 Cross-site Scripting	CVE-2025-23453	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

522	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EditionGuard Dev Team EditionGuard for WooCommerce – eBook Sales with DRM allows Reflected XSS.Th…	CWE-79 Cross-site Scripting	CVE-2025-23452	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

523	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Scott Swezey Easy Tynt allows Cross Site Request Forgery.This issue affects Easy Tynt: from n/a through 0.2.5.1.	CWE-352 Origin Validation Error	CVE-2025-23445	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

524	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nasir Scroll Top Advanced allows Stored XSS.This issue affects Scroll Top Advanced: from n/a thro…	CWE-79 Cross-site Scripting	CVE-2025-23444	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

525	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in matias s Shockingly Big IE6 Warning allows Stored XSS.This issue affects Shockingly Big IE6 Warning: from n/a through 1.6.3.	CWE-352 Origin Validation Error	CVE-2025-23442	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

526	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MarvinLabs WP PT-Viewer allows Reflected XSS.This issue affects WP PT-Viewer: from n/a through 2.…	CWE-79 Cross-site Scripting	CVE-2025-23438	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

527	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Capa Wp-Scribd-List allows Stored XSS.This issue affects Wp-Scribd-List: from n/a through 1.2.	CWE-352 Origin Validation Error	CVE-2025-23436	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

528	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in David Marcucci Password Protect Plugin for WordPress allows Stored XSS.This issue affects Password Protect Plugin for WordPress: from n/a through 0.…	CWE-352 Origin Validation Error	CVE-2025-23435	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

529	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Albertolabs.com Easy EU Cookie law allows Stored XSS.This issue affects Easy EU Cookie law: from …	CWE-79 Cross-site Scripting	CVE-2025-23434	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

530	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AlTi5 AlT Report allows Reflected XSS.This issue affects AlT Report: from n/a through 1.12.0.	CWE-79 Cross-site Scripting	CVE-2025-23432	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm