Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1381 8.8 重要
Network 		Fedora Project
レッドハット
Debian
Net-SNMP		 Red Hat Enterprise Linux for Power
 little endian - Extended Update Support
Red Hat Enterprise Linux for IBM … 		Net-SNMP の Net-SNMP 等複数ベンダの製品における古典的バッファオーバーフローの脆弱性 CWE-120
CWE-120
CVE-2022-24805 2025-01-20 10:40 2022-02-10 Show GitHub Exploit DB Packet Storm
1382 6.5 警告
Network 		Fedora Project
レッドハット
Debian
Net-SNMP		 Red Hat Enterprise Linux for Power
 little endian - Extended Update Support
Red Hat Enterprise Linux for IBM … 		Net-SNMP の Net-SNMP 等複数ベンダの製品における NULL ポインタデリファレンスに関する脆弱性 CWE-476
CWE-476
CVE-2022-24808 2025-01-20 10:40 2022-02-10 Show GitHub Exploit DB Packet Storm
1383 8.8 重要
Local 		paddlepaddle paddlepaddle paddlepaddle における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-0815 2025-01-20 10:40 2024-03-7 Show GitHub Exploit DB Packet Storm
1384 6.1 警告
Network 		Ivanti connect secure
policy secure 		Ivanti の connect secure および policy secure におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-11004 2025-01-20 10:40 2024-11-12 Show GitHub Exploit DB Packet Storm
1385 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Stager アドビの Adobe Substance 3D Stager における境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2025-21128 2025-01-20 10:19 2025-01-14 Show GitHub Exploit DB Packet Storm
1386 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Stager アドビの Adobe Substance 3D Stager における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-21131 2025-01-20 10:19 2025-01-14 Show GitHub Exploit DB Packet Storm
1387 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-Other
その他 		CVE-2023-52580 2025-01-20 10:00 2023-09-15 Show GitHub Exploit DB Packet Storm
1388 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2024-35980 2025-01-20 10:00 2024-04-10 Show GitHub Exploit DB Packet Storm
1389 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-53166 2025-01-20 10:00 2024-11-29 Show GitHub Exploit DB Packet Storm
1390 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-53170 2025-01-20 10:00 2024-11-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 11, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
711 - - - A Host Header Injection vulnerability exists in CTFd 3.7.5, due to the application failing to properly validate or sanitize the Host header. An attacker can manipulate the Host header in HTTP request… - CVE-2025-23001 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
712 - - - A SQL injection vulnerability exists in the front-end of the website in ZZCMS <= 2023, which can be exploited without any authentication. This vulnerability could potentially allow attackers to gain … - CVE-2025-22957 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
713 - - - macrozheng mall-tiny 1.0.1 suffers from Insecure Permissions. The application's JWT signing keys are hardcoded and do not change. User information is explicitly written into the JWT and used for subs… - CVE-2024-57432 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
714 - - - OpenPanel v0.3.4 was discovered to contain an OS command injection vulnerability via the timezone parameter. - CVE-2024-53584 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
715 - - - SSH Communication Security PrivX versions between 18.0-36.0 implement insufficient validation on public key signatures when using native SSH connections via a proxy port. This allows an existing Priv… - CVE-2024-47857 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
716 - - - A Host Header Poisoning Open Redirect issue in slabiak Appointment Scheduler v.1.0.5 allows a remote attacker to redirect users to a malicious website, leading to potential credential theft, malware … - CVE-2024-42671 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
717 - - - O2OA 9.1.3 is vulnerable to Cross Site Scripting (XSS) in Meetings - Settings. - CVE-2025-22994 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
718 - - - An issue found in the Copy and View functions in the File Manager component of OpenPanel v0.3.4 allows attackers to execute a directory traversal via a crafted HTTP request. - CVE-2024-53582 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
719 - - - An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File Actions of File Manager. - CVE-2024-53537 2025-02-4 02:15 2025-02-1 Show GitHub Exploit DB Packet Storm
720 - - - The Ninja Tables WordPress plugin before 5.0.17 does not sanitize and escape a parameter before outputting it back in the page when importing a CSV, leading to a Cross Site Scripting vulnerability. - CVE-2024-12772 2025-02-4 02:15 2025-01-31 Show GitHub Exploit DB Packet Storm