Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1251 5.4 警告
Network 		Contao contao Contao におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-28190 2025-01-20 15:15 2024-04-9 Show GitHub Exploit DB Packet Storm
1252 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2025
Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Window… 		Windows CSC サービスの情報漏えいの脆弱性 CWE-125
CWE-125
CVE-2025-21374 2025-01-20 15:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1253 6.5 警告
Network 		Brizy brizy Brizy の WordPress 用 brizy におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-1165 2025-01-20 15:14 2024-02-26 Show GitHub Exploit DB Packet Storm
1254 5.4 警告
Network 		Brizy brizy Brizy の WordPress 用 brizy におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1291 2025-01-20 15:14 2024-03-13 Show GitHub Exploit DB Packet Storm
1255 5.4 警告
Network 		Themeisle Orbit Fox ThemeIsle の WordPress 用 Orbit Fox におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1323 2025-01-20 15:14 2024-02-27 Show GitHub Exploit DB Packet Storm
1256 4.3 警告
Network 		zestard admin side data storage for contact form 7 zestard の WordPress 用 admin side data storage for contact form 7 におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-1777 2025-01-20 15:14 2024-02-23 Show GitHub Exploit DB Packet Storm
1257 9.1 緊急
Network 		WPvivid Migration
 Backup
 Staging 		WPvivid の WordPress 用 Migration, Backup, Staging における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-1982 2025-01-20 15:14 2024-02-29 Show GitHub Exploit DB Packet Storm
1258 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2025
Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Window… 		Windows テレフォニー サービスのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2025-21411 2025-01-20 15:12 2025-01-14 Show GitHub Exploit DB Packet Storm
1259 7.8 重要
Local 		マイクロソフト Microsoft Outlook
Microsoft Office 		Microsoft Outlook のリモートでコードが実行される脆弱性 CWE-641
CWE-noinfo
CVE-2025-21361 2025-01-20 15:10 2025-01-14 Show GitHub Exploit DB Packet Storm
1260 6.5 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) の情報漏えいの脆弱性 CWE-200
CWE-359
CWE-noinfo
CVE-2024-29987 2025-01-20 15:06 2024-04-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 4, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277291 - luca_deri ntop ntop running in web mode allows remote attackers to read arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-2000-0705 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277292 - luca_deri ntop Buffer overflows in ntop running in web mode allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2000-0706 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277293 - university_of_massachusetts scheme umb-scheme 3.2-11 for Red Hat Linux is installed with world-writeable files. NVD-CWE-Other
CVE-2000-0714 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277294 - kirk_bauer
conectiva 		diskcheck
linux 		DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite arbitrary files via a symlink attack on a temporary file. CWE-59
Link Following 		CVE-2000-0715 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277295 - zope zope Zope before 2.2.1 does not properly restrict access to the getRoles method, which allows users who can edit DTML to add or modify roles by modifying the roles list that is included in a request. NVD-CWE-Other
CVE-2000-0725 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277296 - netbsd
openbsd
redhat 		netbsd
openbsd
linux 		Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name. NVD-CWE-Other
CVE-2000-0750 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277297 - checkpoint firewall-1 Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote attackers to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests. NVD-CWE-Other
CVE-2000-0779 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277298 - xchat xchat IRC Xchat client versions 1.4.2 and earlier allows remote attackers to execute arbitrary commands by encoding shell metacharacters into a URL which XChat uses to launch a web browser. NVD-CWE-Other
CVE-2000-0787 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277299 - suse suse_linux String parsing error in rpc.kstatd in the linuxnfs or knfsd packages in SuSE and possibly other Linux systems allows remote attackers to gain root privileges. NVD-CWE-Other
CVE-2000-0800 2008-09-11 04:05 2000-10-20 Show GitHub Exploit DB Packet Storm
277300 - sgi irix The default installation of IRIX Performance Copilot allows remote attackers to access sensitive system information via the pmcd daemon. NVD-CWE-Other
CVE-2000-0283 2008-09-11 04:04 2000-04-12 Show GitHub Exploit DB Packet Storm