Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1201 7.8 重要
Local 		マイクロソフト Microsoft Access
Microsoft 365 Apps
Microsoft Office 		Microsoft Access のリモート コードが実行される脆弱性 CWE-416
CWE-noinfo
CVE-2024-49142 2025-01-20 17:01 2024-12-10 Show GitHub Exploit DB Packet Storm
1202 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-57881 2025-01-20 16:59 2024-12-18 Show GitHub Exploit DB Packet Storm
1203 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2024-56615 2025-01-20 16:58 2024-11-25 Show GitHub Exploit DB Packet Storm
1204 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2024-56627 2025-01-20 16:58 2024-12-1 Show GitHub Exploit DB Packet Storm
1205 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) のなりすましの脆弱性 CWE-451
CWE-noinfo
CVE-2024-30055 2025-01-20 16:57 2024-05-10 Show GitHub Exploit DB Packet Storm
1206 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2024-56626 2025-01-20 16:57 2024-12-1 Show GitHub Exploit DB Packet Storm
1207 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における配列インデックスの検証に関する脆弱性 CWE-129
配列インデックスの不適切な検証 		CVE-2024-56598 2025-01-20 16:54 2024-10-29 Show GitHub Exploit DB Packet Storm
1208 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel におけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2024-54680 2025-01-20 16:52 2024-12-19 Show GitHub Exploit DB Packet Storm
1209 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel におけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2024-54460 2025-01-20 16:52 2024-12-12 Show GitHub Exploit DB Packet Storm
1210 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel におけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2024-54683 2025-01-20 16:52 2024-12-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
61 - - - The Python standard library functions `urllib.parse.urlsplit` and `urlparse` accepted domain names that included square brackets which isn't valid according to RFC 3986. Square brackets are only mean… New - CVE-2025-0938 2025-02-1 05:15 2025-02-1 Show GitHub Exploit DB Packet Storm
62 - - - The issue was addressed with improved bounds checks. This issue is fixed in GarageBand 10.4.12. Processing a maliciously crafted image may lead to arbitrary code execution. New - CVE-2024-44142 2025-02-1 05:15 2025-01-31 Show GitHub Exploit DB Packet Storm
63 - - - In some cases, the ktrace facility will log the contents of kernel structures to userspace. In one such case, ktrace dumps a variable-sized sockaddr to userspace. There, the full sockaddr is copied… New - CVE-2025-0662 2025-02-1 05:15 2025-01-30 Show GitHub Exploit DB Packet Storm
64 - - - A floating-point exception (FPE) vulnerability exists in the AP4_TfraAtom::AP4_TfraAtom function in Bento4. New - CVE-2024-57513 2025-02-1 05:15 2025-01-30 Show GitHub Exploit DB Packet Storm
65 4.3 MEDIUM
Network 		visualmodo borderless The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'remove_zi… New CWE-862
 Missing Authorization 		CVE-2024-11583 2025-02-1 05:03 2025-01-30 Show GitHub Exploit DB Packet Storm
66 7.2 HIGH
Network 		visualmodo borderless The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.5.9 via the 'wr… New CWE-94
Code Injection 		CVE-2024-11600 2025-02-1 05:02 2025-01-30 Show GitHub Exploit DB Packet Storm
67 4.3 MEDIUM
Network 		seventhqueen typer_core The Typer Core plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.6 via the 'elementor-template' shortcode due to insufficient restrictions on which … New NVD-CWE-noinfo
CVE-2024-12102 2025-02-1 05:01 2025-01-30 Show GitHub Exploit DB Packet Storm
68 6.1 MEDIUM
Network 		wpmessiah ai_image_alt_text_generator_for_wp The Ai Image Alt Text Generator for WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.0.2 due to insufficient in… New CWE-79
Cross-site Scripting 		CVE-2024-12177 2025-02-1 04:49 2025-01-30 Show GitHub Exploit DB Packet Storm
69 7.5 HIGH
Network 		wpmessiah safe_ai_malware_protection_for_wp The Safe Ai Malware Protection for WP plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_db() function in all versions up to, and includ… New CWE-862
 Missing Authorization 		CVE-2024-12269 2025-02-1 04:44 2025-01-30 Show GitHub Exploit DB Packet Storm
70 6.5 MEDIUM
Network 		villatheme w2s The W2S – Migrate WooCommerce to Shopify plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.2.1 via the 'viw2s_view_log' AJAX action. This makes it poss… New NVD-CWE-noinfo
CVE-2024-12861 2025-02-1 04:01 2025-01-30 Show GitHub Exploit DB Packet Storm