Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1141 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2023-52662 2025-01-21 10:21 2023-12-4 Show GitHub Exploit DB Packet Storm
1142 2.3
Local 		フォーティネット FortiManager
FortiAnalyzer-BigData
FortiAnalyzer 		複数のフォーティネット製品におけるパストラバーサルの脆弱性 CWE-22
CWE-23
CVE-2024-35274 2025-01-21 10:01 2024-11-12 Show GitHub Exploit DB Packet Storm
1143 6.5 警告
Network 		Jenkins プロジェクト MQ Notifier Plugin Jenkins プロジェクトの Jenkins 用 MQ Notifier Plugin における脆弱性 CWE-noinfo
情報不足 		CVE-2024-28154 2025-01-21 09:59 2024-03-6 Show GitHub Exploit DB Packet Storm
1144 7.2 重要
Network 		SimpleHelp Ltd SimpleHelp SimpleHelp Ltd の SimpleHelp におけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2024-57728 2025-01-21 09:51 2025-01-15 Show GitHub Exploit DB Packet Storm
1145 8.8 重要
Network 		FlyCms project FlyCms sunkaifei の FlyCms におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
CWE-352
CVE-2024-22939 2025-01-21 08:55 2024-02-29 Show GitHub Exploit DB Packet Storm
1146 5.4 警告
Network 		Primitiv Media PJ News Ticker Primitiv Media の WordPress 用 PJ News Ticker におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-25094 2025-01-21 08:55 2024-02-29 Show GitHub Exploit DB Packet Storm
1147 5.4 警告
Network 		bajorat-media PB oEmbed HTML5 Audio - with Cache Support bajorat-media の WordPress 用 PB oEmbed HTML5 Audio - with Cache Support におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-25098 2025-01-21 08:55 2024-02-29 Show GitHub Exploit DB Packet Storm
1148 8.8 重要
Network 		フォーティネット FortiClient フォーティネットの Linux 用 FortiClient におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2023-45590 2025-01-21 08:49 2023-10-9 Show GitHub Exploit DB Packet Storm
1149 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge for Android (Chromium ベース) の情報漏えいの脆弱性 CWE-359
CWE-noinfo
CVE-2024-29986 2025-01-21 08:49 2024-04-18 Show GitHub Exploit DB Packet Storm
1150 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
CWE-noinfo
CVE-2025-21363 2025-01-21 08:49 2025-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278411 - storebackup
suse 		storebackup
suse_linux 		StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2) recovered by storeBackupRecover.pl, which could cause files to be re… NVD-CWE-Other
CVE-2005-3148 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278412 - weex weex Format string vulnerability in the Log_Flush function in Weex 2.6.1.5, 2.6.1, and possibly other versions allows remote FTP servers to execute arbitrary code via format strings in filenames. NVD-CWE-Other
CVE-2005-3150 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278413 - blender blender Buffer overflow in blenderplay in Blender Player 2.37a allows attackers to execute arbitrary code via a long command line argument. NVD-CWE-Other
CVE-2005-3151 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278414 - mailenable mailenable_enterprise
mailenable_professional 		Buffer overflow in the W3C logging for MailEnable Enterprise 1.1 and Professional 1.6 allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-3155 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278415 - php_fusion php_fusion Multiple SQL injection vulnerabilities in photogallery.php in PHP-Fusion allow remote attackers to execute arbitrary SQL commands via the (1) album and (2) photo parameters. NVD-CWE-Other
CVE-2005-3160 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278416 - polipo polipo Unspecified vulnerability in Polipo 0.9.8 and earlier allows attackers to read files outside of the web root. NVD-CWE-Other
CVE-2005-3163 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278417 - mediawiki mediawiki Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.4.9 allow remote attackers to inject arbitrary web script or HTML via (1) <math> tags or (2) Extension or <nowiki> sections t… NVD-CWE-Other
CVE-2005-3165 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278418 - mediawiki mediawiki Unspecified vulnerability in "edit submission handling" for MediaWiki 1.4.x before 1.4.10 and 1.3.x before 1.3.16 allows remote attackers to cause a denial of service (corruption of the previous subm… NVD-CWE-Other
CVE-2005-3166 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278419 - mediawiki mediawiki Incomplete blacklist vulnerability in MediaWiki before 1.4.11 does not properly remove certain CSS inputs (HTML inline style attributes) that are processed as active content by Internet Explorer, whi… NVD-CWE-Other
CVE-2005-3167 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
278420 - microsoft windows_2000 The SECEDIT command on Microsoft Windows 2000 before Update Rollup 1 for SP4, when using a security template to set Access Control Lists (ACLs) on folders, does not apply ACLs on folders that are lis… NVD-CWE-Other
CVE-2005-3168 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm