Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1311 5.3 警告
Network 		IBM Jazz Foundation IBM の Jazz Foundation における脆弱性 CWE-266
CWE-noinfo
CVE-2023-26280 2025-01-20 11:59 2023-02-21 Show GitHub Exploit DB Packet Storm
1312 4.3 警告
Network 		Stranger Studios Paid Memberships Pro Stranger Studios の WordPress 用 Paid Memberships Pro におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-3215 2025-01-20 11:58 2024-05-2 Show GitHub Exploit DB Packet Storm
1313 9.8 緊急
Network 		Argie Online courseware Argie の Online courseware における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3417 2025-01-20 11:58 2024-04-7 Show GitHub Exploit DB Packet Storm
1314 9.8 緊急
Network 		Argie Online courseware Argie の Online courseware における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3422 2025-01-20 11:58 2024-04-7 Show GitHub Exploit DB Packet Storm
1315 9.8 緊急
Network 		Argie Online courseware Argie の Online courseware における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3425 2025-01-20 11:58 2024-04-7 Show GitHub Exploit DB Packet Storm
1316 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-35985 2025-01-20 11:56 2024-04-22 Show GitHub Exploit DB Packet Storm
1317 7 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-47088 2025-01-20 11:54 2021-12-25 Show GitHub Exploit DB Packet Storm
1318 5.4 警告
Network 		Livemesh Livemesh Addons for Elementor Livemesh の WordPress 用 Livemesh Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1461 2025-01-20 11:52 2024-04-9 Show GitHub Exploit DB Packet Storm
1319 5.4 警告
Network 		Livemesh Livemesh Addons for Elementor Livemesh の WordPress 用 Livemesh Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1466 2025-01-20 11:52 2024-04-9 Show GitHub Exploit DB Packet Storm
1320 9.1 緊急
Network 		Zephyr Project Zephyr Zephyr Project の Zephyr における脆弱性 CWE-20
CWE-noinfo
CVE-2024-1638 2025-01-20 11:52 2024-02-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274811 - raidenhttpd raidenhttpd Cross-site scripting (XSS) vulnerability in RaidenHTTPD 2.0.19 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the ulang parameter. CWE-79
Cross-site Scripting 		CVE-2008-0622 2011-03-8 12:05 2008-02-6 Show GitHub Exploit DB Packet Storm
274812 - adobe robohelp Cross-site scripting (XSS) vulnerability in files created by Adobe RoboHelp 6 and 7, possibly involving use of a (1) WebHelp5 (WebHelp5Ext) or (2) WildFire (WildFireExt) extension, allows remote atta… CWE-79
Cross-site Scripting 		CVE-2008-0642 2011-03-8 12:05 2008-02-15 Show GitHub Exploit DB Packet Storm
274813 - deluge_team
rasterbar_software 		deluge
libtorrent 		The bdecode_recursive function in include/libtorrent/bencode.hpp in Rasterbar Software libtorrent before 0.12.1, as used in Deluge before 0.5.8.3 and other products, allows context-dependent attacker… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0646 2011-03-8 12:05 2008-02-8 Show GitHub Exploit DB Packet Storm
274814 - novell challenge_response_client
novell_client_for_windows 		Novell Challenge Response Client (LCM) 2.7.5 and earlier, as used with Novell Client for Windows 4.91 SP4, allows users with physical access to a locked system to obtain contents of the clipboard by … NVD-CWE-Other
CVE-2008-0663 2011-03-8 12:05 2008-02-8 Show GitHub Exploit DB Packet Storm
274815 - wordpress wordpress The XML-RPC implementation (xmlrpc.php) in WordPress before 2.3.3, when registration is enabled, allows remote attackers to edit posts of other blog users via unknown vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-0664 2011-03-8 12:05 2008-02-8 Show GitHub Exploit DB Packet Storm
274816 - gnome gnumeric The excel_read_HLINK function in plugins/excel/ms-excel-read.c in Gnome Office Gnumeric before 1.8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file containing … CWE-189
Numeric Errors 		CVE-2008-0668 2011-03-8 12:05 2008-02-12 Show GitHub Exploit DB Packet Storm
274817 - print_manager_plus client_billing_and_authentication Stack-based buffer overflow in PQCore.exe in Print Manager Plus 2008 Client Billing and Authentication 7.0.127.16 allows remote attackers to cause a denial of service (service outage) via a series of… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0693 2011-03-8 12:05 2008-02-12 Show GitHub Exploit DB Packet Storm
274818 - ibm os_400 Cross-site scripting (XSS) vulnerability in the HTTP Server in IBM OS/400 V5R3M0 and V5R4M0 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header. CWE-79
Cross-site Scripting 		CVE-2008-0694 2011-03-8 12:05 2008-02-12 Show GitHub Exploit DB Packet Storm
274819 - ibm db2 IBM DB2 UDB before 8.2 Fixpak 16 does not properly check authorization for the ALTER TABLE statement, which has unknown impact and attack vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-0696 2011-03-8 12:05 2008-02-12 Show GitHub Exploit DB Packet Storm
274820 - ibm db2 Unspecified vulnerability in DB2PD in IBM DB2 UDB before 8.2 Fixpak 16 allows local users to gain root privileges via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-0697 2011-03-8 12:05 2008-02-12 Show GitHub Exploit DB Packet Storm