Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
141 5.5 警告
Local 		xpdfreader project xpdf Glyph & Cog, LLC の Xpdf における境界外書き込みに関する脆弱性 New CWE-787
CWE-787
CVE-2024-4976 2025-01-30 11:48 2024-05-15 Show GitHub Exploit DB Packet Storm
142 5.4 警告
Network 		WebTechStreet Elementor Addon Elements WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-47366 2025-01-30 11:48 2024-10-6 Show GitHub Exploit DB Packet Storm
143 8.8 重要
Network 		デル Dell SupportAssist for Home PCs
Dell SupportAssist for Business PCs 		デルの Dell SupportAssist for Business PCs および Dell SupportAssist for Home PCs におけるリンク解釈に関する脆弱性 New CWE-59
CWE-61
CVE-2024-52535 2025-01-30 11:48 2024-12-25 Show GitHub Exploit DB Packet Storm
144 9.8 緊急
Network 		OpenImageIO project OpenImageIO OpenImageIO project の OpenImageIO における境界外書き込みに関する脆弱性 New CWE-120
CWE-787
CVE-2024-55194 2025-01-30 11:48 2024-12-6 Show GitHub Exploit DB Packet Storm
145 4.3 警告
Network 		Easy Social Feed Easy Social Feed WordPress 用 Easy Social Feed におけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2024-1213 2025-01-30 11:40 2024-03-21 Show GitHub Exploit DB Packet Storm
146 9.8 緊急
Network 		Metagauss Inc. registrationmagic Metagauss Inc. の WordPress 用 registrationmagic における脆弱性 New CWE-230
CWE-noinfo
CVE-2024-10508 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
147 4.3 警告
Network 		envothemes envo extra envothemes の WordPress 用 envo extra におけるユーザ制御の鍵による認証回避に関する脆弱性 New CWE-639
ユーザ制御の鍵による認証回避 		CVE-2024-10770 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
148 5.4 警告
Network 		Brainstorm Force Elementor Header & Footer Builder Brainstorm Force の WordPress 用 Elementor Header & Footer Builder におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-11230 2025-01-30 11:39 2024-12-23 Show GitHub Exploit DB Packet Storm
149 4.3 警告
Network 		bdthemes element pack bdthemes の WordPress 用 element pack における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-11852 2025-01-30 11:39 2024-12-22 Show GitHub Exploit DB Packet Storm
150 8.8 重要
Network 		- IBM の Security Verify Access における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2024-49803 2025-01-30 11:14 2024-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274611 - sco open_desktop
open_desktop_lite
openserver_enterprise_system
openserver_network_system
unix 		Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local users to gain root access. NVD-CWE-Other
CVE-1999-1305 2011-03-8 11:01 1994-11-30 Show GitHub Exploit DB Packet Storm
274612 - hp hp-ux Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges. NVD-CWE-Other
CVE-1999-1308 2011-03-8 11:01 1997-07-31 Show GitHub Exploit DB Packet Storm
274613 - hp hp-ux Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain privileges. NVD-CWE-Other
CVE-1999-1311 2011-03-8 11:01 1997-01-7 Show GitHub Exploit DB Packet Storm
274614 - apple mac_os_x
mac_os_x_server 		Heap-based buffer overflow in CoreText in Apple Mac OS X 10.5.6 allows remote attackers to execute arbitrary code via a crafted Unicode string. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0012 2011-03-7 14:00 2009-02-13 Show GitHub Exploit DB Packet Storm
274615 - clam_anti-virus clamav Integer overflow in the cli_scanpe function in libclamav in ClamAV before 0.92.1, as used in clamd, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a craf… CWE-189
Numeric Errors 		CVE-2008-0318 2011-03-7 14:00 2008-02-13 Show GitHub Exploit DB Packet Storm
274616 - opera opera_browser The Javascript SVG support in Opera before 9.10 does not properly validate object types in a createSVGTransformFromMatrix request, which allows remote attackers to execute arbitrary code via JavaScri… CWE-94
Code Injection 		CVE-2007-0127 2011-03-7 14:00 2007-01-9 Show GitHub Exploit DB Packet Storm
274617 - apple imovie
safari
mac_os_x 		Format string vulnerability in iMovie HD 6.0.3, and Safari in Apple Mac OS X 10.4 through 10.4.10, allows remote user-assisted attackers to cause a denial of service (crash) via format string specifi… CWE-134
Use of Externally-Controlled Format String 		CVE-2007-0646 2011-03-7 14:00 2007-02-1 Show GitHub Exploit DB Packet Storm
274618 - ibm websphere_application_server The Java Message Service (JMS) in IBM WebSphere Application Server (WAS) before 6.1.0.7 allows attackers to cause a denial of service via unknown vectors involving the "double release [of] a bytebuff… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-1944 2011-03-7 14:00 2007-04-11 Show GitHub Exploit DB Packet Storm
274619 - yahoo widgets Stack-based buffer overflow in the YDPCTL.YDPControl.1 (aka Yahoo! Installer Plugin for Widgets) ActiveX control before 2007.7.13.3 (20070620) in YDPCTL.dll in Yahoo! Widgets before 4.0.5 allows remo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-4034 2011-03-7 14:00 2007-07-28 Show GitHub Exploit DB Packet Storm
274620 - openldap openldap slapo-pcache (overlays/pcache.c) in slapd in OpenLDAP before 2.3.39, when running as a proxy-caching server, allocates memory using a malloc variant instead of calloc, which prevents an array from be… CWE-399
 Resource Management Errors 		CVE-2007-5708 2011-03-7 14:00 2007-10-31 Show GitHub Exploit DB Packet Storm