Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
101 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. ac500 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の ac500 ファームウェアにおける境界外書き込みに関する脆弱性 New CWE-121
CWE-787
CVE-2024-3910 2025-01-22 14:42 2024-04-17 Show GitHub Exploit DB Packet Storm
102 5.4 警告
Network 		StylemixThemes MasterStudy LMS StylemixThemes の WordPress 用 MasterStudy LMS における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-3942 2025-01-22 14:42 2024-05-2 Show GitHub Exploit DB Packet Storm
103 7.5 重要
Network 		マイクロフォーカス株式会社 imanager マイクロフォーカス株式会社の imanager におけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
CWE-918
CVE-2024-3970 2025-01-22 14:42 2024-05-15 Show GitHub Exploit DB Packet Storm
104 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC8 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC8 ファームウェアにおける境界外書き込みに関する脆弱性 New CWE-121
CWE-787
CVE-2024-4066 2025-01-22 14:42 2024-04-23 Show GitHub Exploit DB Packet Storm
105 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. 4g300 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の 4g300 ファームウェアにおける境界外書き込みに関する脆弱性 New CWE-121
CWE-787
CVE-2024-4167 2025-01-22 14:42 2024-04-25 Show GitHub Exploit DB Packet Storm
106 5.4 警告
Network 		Autolab project Autolab Autolab project の Autolab におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-52585 2025-01-22 14:42 2024-11-18 Show GitHub Exploit DB Packet Storm
107 9.8 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla Foundation の Mozilla Firefox および Mozilla Thunderbird における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-3863 2025-01-22 14:26 2024-04-16 Show GitHub Exploit DB Packet Storm
108 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2024-57887 2025-01-22 14:23 2024-12-20 Show GitHub Exploit DB Packet Storm
109 7.8 重要
Local 		フォーティネット FortiWan フォーティネットの FortiWan における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2021-26115 2025-01-22 14:19 2021-07-7 Show GitHub Exploit DB Packet Storm
110 7.5 重要
Network 		フォーティネット FortiOS フォーティネットの FortiOS における境界外書き込みに関する脆弱性 New CWE-122
CWE-787
CVE-2020-12819 2025-01-22 14:17 2020-09-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
591 - - - Cross-Site Request Forgery (CSRF) vulnerability in Sam Burdge WP Background Tile allows Stored XSS.This issue affects WP Background Tile: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23573 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
592 - - - Cross-Site Request Forgery (CSRF) vulnerability in Dave Konopka, Martin Scharm UpDownUpDown allows Stored XSS.This issue affects UpDownUpDown: from n/a through 1.1. CWE-352
 Origin Validation Error 		CVE-2025-23572 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
593 - - - Cross-Site Request Forgery (CSRF) vulnerability in Kelvin Ng Shortcode in Comment allows Stored XSS.This issue affects Shortcode in Comment: from n/a through 1.1.1. CWE-352
 Origin Validation Error 		CVE-2025-23569 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
594 - - - Cross-Site Request Forgery (CSRF) vulnerability in Intuitive Design GDReseller allows Stored XSS.This issue affects GDReseller: from n/a through 1.6. CWE-352
 Origin Validation Error 		CVE-2025-23567 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
595 - - - Cross-Site Request Forgery (CSRF) vulnerability in Syed Amir Hussain Custom Post allows Stored XSS.This issue affects Custom Post: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23566 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
596 - - - Cross-Site Request Forgery (CSRF) vulnerability in Elke Hinze, Plumeria Web Design Web Testimonials allows Stored XSS.This issue affects Web Testimonials: from n/a through 1.2. CWE-352
 Origin Validation Error 		CVE-2025-23560 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
597 - - - Cross-Site Request Forgery (CSRF) vulnerability in Stepan Stepasyuk MemeOne allows Stored XSS.This issue affects MemeOne: from n/a through 2.0.5. CWE-352
 Origin Validation Error 		CVE-2025-23559 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
598 - - - Cross-Site Request Forgery (CSRF) vulnerability in digfish Geotagged Media allows Stored XSS.This issue affects Geotagged Media: from n/a through 0.3.0. CWE-352
 Origin Validation Error 		CVE-2025-23558 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
599 - - - Cross-Site Request Forgery (CSRF) vulnerability in Kathleen Malone Find Your Reps allows Stored XSS.This issue affects Find Your Reps: from n/a through 1.2. CWE-352
 Origin Validation Error 		CVE-2025-23557 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
600 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Peter Shaw LH Login Page allows Reflected XSS.This issue affects LH Login Page: from n/a through … CWE-79
Cross-site Scripting 		CVE-2025-23547 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm