Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1131	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における例外的な状態のチェックに関する脆弱性	CWE-754 例外的な状態における不適切なチェック	CVE-2024-56692	2025-01-21 10:37	2024-11-1	Show	GitHub Exploit DB Packet Storm

1132	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2024-56369	2025-01-21 10:36	2024-12-14	Show	GitHub Exploit DB Packet Storm

1133	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-55916	2025-01-21 10:34	2024-12-9	Show	GitHub Exploit DB Packet Storm

1134	7.8	重要 Local	eza.rocks	eza	eza.rocks の eza における古典的バッファオーバーフローの脆弱性	CWE-120 CWE-120	CVE-2024-25817	2025-01-21 10:34	2024-03-6	Show	GitHub Exploit DB Packet Storm

1135	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2024-35983	2025-01-21 10:32	2024-04-29	Show	GitHub Exploit DB Packet Storm

1136	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-53237	2025-01-21 10:31	2024-11-14	Show	GitHub Exploit DB Packet Storm

1137	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2023-52582	2025-01-21 10:29	2023-09-18	Show	GitHub Exploit DB Packet Storm

1138	4.3	警告 Network	アップル	iOS visionos watchOS iPadOS	複数のアップル製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2024-54535	2025-01-21 10:27	2024-10-28	Show	GitHub Exploit DB Packet Storm

1139	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-Other その他	CVE-2024-35975	2025-01-21 10:26	2024-04-7	Show	GitHub Exploit DB Packet Storm

1140	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2024-26748	2025-01-21 10:24	2024-02-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
31	-		-	-	This vulnerability allows network-adjacent attackers to create a denial-of-service condition on affected installations of Pioneer DMH-WT7600NEX devices. Authentication is not required to exploit this… New	-	CVE-2024-23930	2025-02-1 01:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

32	-		-	-	In its default configuration, the affected product transmits plain-text patient data to a hard-coded public IP address when a patient is hooked up to the monitor. This could lead to a leakage of conf… New	-	CVE-2025-0683	2025-02-1 01:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

33	-		-	-	The affected product sends out remote access requests to a hard-coded IP address, bypassing existing device network settings to do so. This could serve as a backdoor and lead to a malicious actor bei… New	-	CVE-2025-0626	2025-02-1 01:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

34	6.1	MEDIUM Network	wallosapp	wallos	Cross Site Scripting vulnerability in Wallos v.2.41.0 allows a remote attacker to execute arbitrary code via the profile picture function. Update	CWE-79 Cross-site Scripting	CVE-2024-57386	2025-02-1 01:13	2025-01-24	Show	GitHub Exploit DB Packet Storm

35	5.4	MEDIUM Network	theeventscalendar	the_events_calendar	The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Event Calendar Link Widget through the html_tag attribute in all versions up to, and including, 6.9.0… Update	CWE-79 Cross-site Scripting	CVE-2024-12118	2025-02-1 01:12	2025-01-23	Show	GitHub Exploit DB Packet Storm

36	5.4	MEDIUM Network	videowhisper	broadcast_live_video	The Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisper_hls' shortcode in all versi… Update	CWE-79 Cross-site Scripting	CVE-2024-12504	2025-02-1 01:05	2025-01-23	Show	GitHub Exploit DB Packet Storm

37	6.5	MEDIUM Network	tainacan	tainacan	The Tainacan plugin for WordPress is vulnerable to SQL Injection via the 'collection_id' parameter in all versions up to, and including, 0.21.12 due to insufficient escaping on the user supplied para… Update	CWE-89 SQL Injection	CVE-2024-13236	2025-02-1 01:03	2025-01-23	Show	GitHub Exploit DB Packet Storm

38	5.4	MEDIUM Network	pluginus	meta_data_and_taxonomies_filter	The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mdf_results_by_ajax' shortcode in all versions up to, and including, 1.3… Update	CWE-79 Cross-site Scripting	CVE-2024-13340	2025-02-1 01:02	2025-01-23	Show	GitHub Exploit DB Packet Storm

39	5.4	MEDIUM Network	cliptakes	cliptakes	The Cliptakes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'cliptakes_input_email' shortcode in all versions up to, and including, 1.3.4 due to insufficient inpu… Update	CWE-79 Cross-site Scripting	CVE-2024-13389	2025-02-1 00:59	2025-01-23	Show	GitHub Exploit DB Packet Storm

40	7.5	HIGH Network	-	-	IBM Security Verify Directory 10.0 through 10.0.3 is vulnerable to a denial of service when sending an LDAP extended operation. New	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2024-45650	2025-02-1 00:15	2025-02-1	Show	GitHub Exploit DB Packet Storm