Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 3, 2025, 1:14 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1301 | 5.4 |
警告
Network |
Wpmet | ElementsKit Elementor addons | Wpmet の WordPress 用 ElementsKit Elementor addons におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2024-2042 | 2025-01-20 12:21 | 2024-03-16 | Show | GitHub Exploit DB Packet Storm |
| 1302 | 5.4 |
警告
Network |
Sonaar Music |
mp3 audio player for music radio & podcast |
Sonaar Music の WordPress 用 mp3 audio player for music, radio & podcast におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2024-10268 | 2025-01-20 12:21 | 2024-11-19 | Show | GitHub Exploit DB Packet Storm |
| 1303 | 4.3 |
警告
Network |
webinarpress | webinarpress | WordPress 用 webinarpress における認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2024-11271 | 2025-01-20 12:21 | 2024-11-15 | Show | GitHub Exploit DB Packet Storm |
| 1304 | 5.4 |
警告
Network |
wpextended | The Ultimate WordPress Toolkit - WP Extended | wpextended の WordPress 用 The Ultimate WordPress Toolkit - WP Extended におけるクロスサイトスクリプティングの脆弱性 |
CWE-79 CWE-862 |
CVE-2024-11916 | 2025-01-20 12:21 | 2024-11-27 | Show | GitHub Exploit DB Packet Storm |
| 1305 | 4.3 |
警告
Network |
Hire Web Xperts | Passwords Manager | Hire Web Xperts の WordPress 用 Passwords Manager における認証の欠如に関する脆弱性 |
CWE-862 CWE-89 |
CVE-2024-12614 | 2025-01-20 12:21 | 2024-12-13 | Show | GitHub Exploit DB Packet Storm |
| 1306 | 9.8 |
緊急
Network oretnom23 |
Laundry Shop Management System
|
oretnom23 の Laundry Shop Management System における SQL インジェクションの脆弱性
|
CWE-89
|
SQLインジェクション
CVE-2024-3465
|
2025-01-20 12:03 |
2024-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 1307 | 9.8 |
緊急
Network Shenzhen Tenda Technology Co.,Ltd. |
ac500 ファームウェア
|
Shenzhen Tenda Technology Co.,Ltd. の ac500 ファームウェアにおける境界外書き込みに関する脆弱性
|
CWE-121 |
CWE-787
CVE-2024-3907
|
2025-01-20 12:03 |
2024-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 1308 | 7.8 |
重要
Local |
Ivanti | secure access client | Ivanti の secure access client における脆弱性 |
CWE-267 CWE-Other |
CVE-2024-7571 | 2025-01-20 12:02 | 2024-11-12 | Show | GitHub Exploit DB Packet Storm |
| 1309 | 3.3 |
低
Local |
Ivanti | secure access client | Ivanti の secure access client における脆弱性 |
CWE-267 CWE-732 CWE-732 CWE-Other |
CVE-2024-9842 | 2025-01-20 12:02 | 2024-11-12 | Show | GitHub Exploit DB Packet Storm |
| 1310 | 7.8 |
重要
Local |
Linux | Linux Kernel | Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2024-53208 | 2025-01-20 11:59 | 2024-11-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Feb. 13, 2025, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 301 | 7.8 |
HIGH
Local |
- | - | Microsoft Excel Remote Code Execution Vulnerability New |
CWE-416
Use After Free |
CVE-2025-21386 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 302 | 7.8 |
HIGH
Local |
- | - | Microsoft Excel Information Disclosure Vulnerability New |
CWE-125
Out-of-bounds Read |
CVE-2025-21383 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 303 | 7.8 |
HIGH
Local |
- | - | Microsoft Excel Remote Code Execution Vulnerability New |
CWE-822
Untrusted Pointer Dereference |
CVE-2025-21381 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 304 | 7.1 |
HIGH
Adjacent |
- | - | DHCP Client Service Remote Code Execution Vulnerability New |
CWE-416
Use After Free |
CVE-2025-21379 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 305 | 6.5 |
MEDIUM
Network |
- | - | NTLM Hash Disclosure Spoofing Vulnerability New |
CWE-73
External Control of File Name or Path |
CVE-2025-21377 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 306 | 8.1 |
HIGH
Network |
- | - | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability New |
CWE-362 CWE-191 CWE-122 Race Condition Integer Underflow (Wrap or Wraparound) Heap-based Buffer Overflow |
CVE-2025-21376 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 307 | 7.8 |
HIGH
Local |
- | - | Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability New |
CWE-20 CWE-122 Improper Input Validation Heap-based Buffer Overflow |
CVE-2025-21375 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 308 | 7.8 |
HIGH
Local |
- | - | Windows Installer Elevation of Privilege Vulnerability New |
CWE-59
Link Following |
CVE-2025-21373 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 309 | 8.8 |
HIGH
Network |
- | - | Windows Telephony Service Remote Code Execution Vulnerability New |
CWE-122
Heap-based Buffer Overflow |
CVE-2025-21371 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 310 | 8.8 |
HIGH
Network |
- | - | Microsoft Digest Authentication Remote Code Execution Vulnerability New |
CWE-190 CWE-122 Integer Overflow or Wraparound Heap-based Buffer Overflow |
CVE-2025-21369 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |