Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
101 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. ac500 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の ac500 ファームウェアにおける境界外書き込みに関する脆弱性 New CWE-121
CWE-787
CVE-2024-3910 2025-01-22 14:42 2024-04-17 Show GitHub Exploit DB Packet Storm
102 5.4 警告
Network 		StylemixThemes MasterStudy LMS StylemixThemes の WordPress 用 MasterStudy LMS における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-3942 2025-01-22 14:42 2024-05-2 Show GitHub Exploit DB Packet Storm
103 7.5 重要
Network 		マイクロフォーカス株式会社 imanager マイクロフォーカス株式会社の imanager におけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
CWE-918
CVE-2024-3970 2025-01-22 14:42 2024-05-15 Show GitHub Exploit DB Packet Storm
104 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC8 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC8 ファームウェアにおける境界外書き込みに関する脆弱性 New CWE-121
CWE-787
CVE-2024-4066 2025-01-22 14:42 2024-04-23 Show GitHub Exploit DB Packet Storm
105 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. 4g300 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の 4g300 ファームウェアにおける境界外書き込みに関する脆弱性 New CWE-121
CWE-787
CVE-2024-4167 2025-01-22 14:42 2024-04-25 Show GitHub Exploit DB Packet Storm
106 5.4 警告
Network 		Autolab project Autolab Autolab project の Autolab におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-52585 2025-01-22 14:42 2024-11-18 Show GitHub Exploit DB Packet Storm
107 9.8 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla Foundation の Mozilla Firefox および Mozilla Thunderbird における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-3863 2025-01-22 14:26 2024-04-16 Show GitHub Exploit DB Packet Storm
108 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2024-57887 2025-01-22 14:23 2024-12-20 Show GitHub Exploit DB Packet Storm
109 7.8 重要
Local 		フォーティネット FortiWan フォーティネットの FortiWan における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2021-26115 2025-01-22 14:19 2021-07-7 Show GitHub Exploit DB Packet Storm
110 7.5 重要
Network 		フォーティネット FortiOS フォーティネットの FortiOS における境界外書き込みに関する脆弱性 New CWE-122
CWE-787
CVE-2020-12819 2025-01-22 14:17 2020-09-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
561 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TechMix Event Countdown Timer Plugin by TechMix allows Reflected XSS.This issue affects Event Cou… CWE-79
Cross-site Scripting 		CVE-2025-23699 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
562 - - - Cross-Site Request Forgery (CSRF) vulnerability in Iván R. Delgado Martínez WP Custom Google Search allows Stored XSS.This issue affects WP Custom Google Search: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23698 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
563 - - - Cross-Site Request Forgery (CSRF) vulnerability in Shabbos Commerce Shabbos and Yom Tov allows Stored XSS.This issue affects Shabbos and Yom Tov: from n/a through 1.9. CWE-352
 Origin Validation Error 		CVE-2025-23694 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
564 - - - Cross-Site Request Forgery (CSRF) vulnerability in Stanislaw Skonieczny Secure CAPTCHA allows Stored XSS.This issue affects Secure CAPTCHA: from n/a through 1.2. CWE-352
 Origin Validation Error 		CVE-2025-23693 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
565 - - - Cross-Site Request Forgery (CSRF) vulnerability in Artem Anikeev Slider for Writers allows Stored XSS.This issue affects Slider for Writers: from n/a through 1.3. CWE-352
 Origin Validation Error 		CVE-2025-23692 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
566 - - - Cross-Site Request Forgery (CSRF) vulnerability in Braulio Aquino García Send to Twitter allows Stored XSS.This issue affects Send to Twitter: from n/a through 1.7.2. CWE-352
 Origin Validation Error 		CVE-2025-23691 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
567 - - - Cross-Site Request Forgery (CSRF) vulnerability in ArtkanMedia Book a Place allows Stored XSS.This issue affects Book a Place: from n/a through 0.7.1. CWE-352
 Origin Validation Error 		CVE-2025-23690 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
568 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Poco Blogger Image Import allows Stored XSS.This issue affects Blogger Image Import: from 2.1 thr… CWE-79
Cross-site Scripting 		CVE-2025-23689 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
569 - - - Cross-Site Request Forgery (CSRF) vulnerability in DSmidgy HTTP to HTTPS link changer by Eyga.net allows Stored XSS.This issue affects HTTP to HTTPS link changer by Eyga.net: from n/a through 0.2.4. CWE-352
 Origin Validation Error 		CVE-2025-23677 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
570 - - - Cross-Site Request Forgery (CSRF) vulnerability in SandyIN Import Users to MailChimp allows Stored XSS.This issue affects Import Users to MailChimp: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23675 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm