Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1351 4.3 警告
Network 		LadiPage LadiPage WordPress 用 LadiPage におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2023-4729 2025-01-20 11:15 2023-09-1 Show GitHub Exploit DB Packet Storm
1352 6.5 警告
Network 		WebTechStreet Elementor Addon Elements WebTechStreet の WordPress 用 Elementor Addon Elements におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-1358 2025-01-20 11:06 2024-03-13 Show GitHub Exploit DB Packet Storm
1353 5.4 警告
Network 		WebTechStreet Elementor Addon Elements WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1391 2025-01-20 11:06 2024-03-13 Show GitHub Exploit DB Packet Storm
1354 8.8 重要
Network 		Metagauss Inc. registrationmagic Metagauss Inc. の WordPress 用 registrationmagic における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-1990 2025-01-20 11:06 2024-04-9 Show GitHub Exploit DB Packet Storm
1355 5.3 警告
Network 		PrestaShop PrestaShop PrestaShop におけるパストラバーサルの脆弱性 CWE-22
CWE-22
CVE-2024-26129 2025-01-20 11:06 2024-02-19 Show GitHub Exploit DB Packet Storm
1356 6.5 警告
Network 		Contao contao Contao における脆弱性 CWE-200
CWE-noinfo
CVE-2024-28235 2025-01-20 11:06 2024-04-9 Show GitHub Exploit DB Packet Storm
1357 9.8 緊急
Network 		Argie Online courseware Argie の Online courseware における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3418 2025-01-20 11:06 2024-04-7 Show GitHub Exploit DB Packet Storm
1358 9.8 緊急
Network 		Argie Online courseware Argie の Online courseware における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3420 2025-01-20 11:06 2024-04-7 Show GitHub Exploit DB Packet Storm
1359 9.8 緊急
Network 		oretnom23 Laundry Shop Management System oretnom23 の Laundry Shop Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3445 2025-01-20 11:06 2024-04-8 Show GitHub Exploit DB Packet Storm
1360 7.8 重要
Local 		Ivanti connect secure
policy secure 		Ivanti の connect secure および policy secure における脆弱性 CWE-267
CWE-426
CWE-426
CWE-Other
CVE-2024-47906 2025-01-20 11:06 2024-11-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
301 - - - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Initialize denominator defaults to 1 [WHAT & HOW] Variables, used as denominators and maybe not assigned to othe… New - CVE-2024-57950 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
302 5.3 MEDIUM
Network 		- - A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, lea… New CWE-407
 Inefficient Algorithmic Complexity 		CVE-2024-12243 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
303 5.3 MEDIUM
Network 		- - A flaw in libtasn1 causes inefficient handling of specific certificate data. When processing a large number of elements in a certificate, libtasn1 takes much longer than expected, which can slow down… New CWE-407
 Inefficient Algorithmic Complexity 		CVE-2024-12133 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
304 - - - In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Assign job pointer to NULL before signaling the fence In commit e4b5ccd392b9 ("drm/v3d: Ensure job pointer is set to NUL… New - CVE-2025-21688 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
305 5.4 MEDIUM
Network 		- - A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object type… New CWE-79
Cross-site Scripting 		CVE-2024-11831 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
306 - - - Missing certificate validation in Devolutions Remote Desktop Manager on macOS, iOS, Android, Linux allows an attacker to intercept and modify encrypted communications via a man-in-the-middle attack. … New - CVE-2024-11621 2025-02-11 01:15 2025-02-10 Show GitHub Exploit DB Packet Storm
307 - - - Forever KidsWatch Call Me KW50 R36_YDR_A3PW_GM7S_V1.0_2019_07_15_16.19.24_cob_h, and Forever KidsWatch Call Me 2 KW60 R36CW_YDE_S4_A29_2_V1.0_2023.05.24_22.49.44_cob_b have a Hardcoded password vulne… Update - CVE-2024-36556 2025-02-11 01:15 2025-02-7 Show GitHub Exploit DB Packet Storm
308 - - - Forever KidsWatch Call Me KW-50 R36_YDR_A3PW_GM7S_V1.0_2019_07_15_16.19.24_cob_h is vulnerable to MITM attack. Update - CVE-2024-36553 2025-02-11 01:15 2025-02-7 Show GitHub Exploit DB Packet Storm
309 3.1 LOW
Network 		- - A vulnerability was found in GNU Binutils 2.43. It has been classified as problematic. This affects the function xstrdup of the file libiberty/xmalloc.c of the component ld. The manipulation leads to… New CWE-404
CWE-401
 Improper Resource Shutdown or Release
 Missing Release of Memory after Effective Lifetime 		CVE-2025-1149 2025-02-11 00:15 2025-02-11 Show GitHub Exploit DB Packet Storm
310 - - - A vulnerability exists in the VideONet product included in the listed System 800xA versions, where VideONet is used.  An attacker who successfully exploited the vulnerability could, in the worst cas… New CWE-256
Plaintext Storage of a Password  		CVE-2024-10334 2025-02-11 00:15 2025-02-11 Show GitHub Exploit DB Packet Storm