Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1141	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2023-52662	2025-01-21 10:21	2023-12-4	Show	GitHub Exploit DB Packet Storm

1142	2.3	低 Local	フォーティネット	FortiManager FortiAnalyzer-BigData FortiAnalyzer	複数のフォーティネット製品におけるパストラバーサルの脆弱性	CWE-22 CWE-23	CVE-2024-35274	2025-01-21 10:01	2024-11-12	Show	GitHub Exploit DB Packet Storm

1143	6.5	警告 Network	Jenkins プロジェクト	MQ Notifier Plugin	Jenkins プロジェクトの Jenkins 用 MQ Notifier Plugin における脆弱性	CWE-noinfo 情報不足	CVE-2024-28154	2025-01-21 09:59	2024-03-6	Show	GitHub Exploit DB Packet Storm

1144	7.2	重要 Network	SimpleHelp Ltd	SimpleHelp	SimpleHelp Ltd の SimpleHelp におけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2024-57728	2025-01-21 09:51	2025-01-15	Show	GitHub Exploit DB Packet Storm

1145	8.8	重要 Network	FlyCms project	FlyCms	sunkaifei の FlyCms におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 CWE-352	CVE-2024-22939	2025-01-21 08:55	2024-02-29	Show	GitHub Exploit DB Packet Storm

1146	5.4	警告 Network	Primitiv Media	PJ News Ticker	Primitiv Media の WordPress 用 PJ News Ticker におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-25094	2025-01-21 08:55	2024-02-29	Show	GitHub Exploit DB Packet Storm

1147	5.4	警告 Network	bajorat-media	PB oEmbed HTML5 Audio - with Cache Support	bajorat-media の WordPress 用 PB oEmbed HTML5 Audio - with Cache Support におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-25098	2025-01-21 08:55	2024-02-29	Show	GitHub Exploit DB Packet Storm

1148	8.8	重要 Network	フォーティネット	FortiClient	フォーティネットの Linux 用 FortiClient におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2023-45590	2025-01-21 08:49	2023-10-9	Show	GitHub Exploit DB Packet Storm

1149	5.4	警告 Network	Outlook.com	Microsoft Edge Chromium	Microsoft Edge for Android (Chromium ベース) の情報漏えいの脆弱性	CWE-359 CWE-noinfo	CVE-2024-29986	2025-01-21 08:49	2024-04-18	Show	GitHub Exploit DB Packet Storm

1150	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 CWE-noinfo	CVE-2025-21363	2025-01-21 08:49	2025-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
101	-		-	-	An issue found in the Copy and View functions in the File Manager component of OpenPanel v0.3.4 allows attackers to execute a directory traversal via a crafted HTTP request. New	-	CVE-2024-53582	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

102	-		-	-	An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File Actions of File Manager. New	-	CVE-2024-53537	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

103	-		-	-	Qualisys C++ SDK commit a32a21a was discovered to contain multiple stack buffer overflows via the GetCurrentFrame, SaveCapture, and LoadProject functions. New	-	CVE-2024-53320	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

104	-		-	-	A heap buffer overflow in the XML Text Escaping component of Qualisys C++ SDK commit a32a21a allows attackers to cause Denial of Service (DoS) via escaping special XML characters. New	-	CVE-2024-53319	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

105	6.4	MEDIUM Network	-	-	IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 Standard Edition is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed a… New	CWE-79 Cross-site Scripting	CVE-2024-49807	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

106	5.4	MEDIUM Network	-	-	IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 Standard Edition is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitr… New	CWE-79 Cross-site Scripting	CVE-2024-47116	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

107	4.8	MEDIUM Network	-	-	IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 Standard Edition is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary … New	CWE-79 Cross-site Scripting	CVE-2024-47103	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

108	4.3	MEDIUM Network	-	-	IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 Standard Edition EBICS server could allow an authenticated user to obtain sensitive filename information due to an obse… New	CWE-203 Information Exposure Through Discrepancy	CVE-2024-45089	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

109	4.8	MEDIUM Network	-	-	IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 Standard Edition is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary … New	CWE-79 Cross-site Scripting	CVE-2024-40696	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm

110	-		-	-	Grafana is an open-source platform for monitoring and observability. The Grafana Alerting VictorOps integration was not properly protected and could be exposed to users with Viewer permission. Fixe… New	-	CVE-2024-11741	2025-02-1 01:15	2025-02-1	Show	GitHub Exploit DB Packet Storm