Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 21, 2025, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
141	6.1	警告 Network	oretnom23	computer laboratory management system	oretnom23 の computer laboratory management system におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3377	2025-01-20 15:27	2024-04-6	Show	GitHub Exploit DB Packet Storm

142	5.4	警告 Network	Argie	Online courseware	Argie の Online courseware におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3426	2025-01-20 15:27	2024-04-7	Show	GitHub Exploit DB Packet Storm

143	8.8	重要 Network	Ivanti	connect secure	Ivanti の connect secure における脆弱性 New	CWE-602 CWE-Other	CVE-2024-9844	2025-01-20 15:27	2024-12-10	Show	GitHub Exploit DB Packet Storm

144	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Window…	Windows CSC Service Elevation of Privilege Vulnerability New	CWE-122 CWE-noinfo	CVE-2025-21378	2025-01-20 15:26	2025-01-14	Show	GitHub Exploit DB Packet Storm

145	4.3	警告 Network	WebTechStreet	Elementor Addon Elements	WebTechStreet の WordPress 用 Elementor Addon Elements における脆弱性 New	CWE-200 CWE-noinfo	CVE-2024-8902	2025-01-20 15:16	2024-10-12	Show	GitHub Exploit DB Packet Storm

146	8.8	重要 Network	SimpleHelp Ltd	SimpleHelp	SimpleHelp Ltd の SimpleHelp における脆弱性 New	CWE-noinfo 情報不足	CVE-2024-57726	2025-01-20 15:16	2025-01-15	Show	GitHub Exploit DB Packet Storm

147	9.8	緊急 Network	Progress Software Corporation	MOVEit Transfer	Progress Software Corporation の MOVEit Transfer における脆弱性 New	CWE-287 CWE-noinfo	CVE-2024-5806	2025-01-20 15:16	2024-06-25	Show	GitHub Exploit DB Packet Storm

148	7.5	重要 Network	Couchbase, Inc.	couchbase server	Couchbase, Inc. の Couchbase Server における脆弱性 New	CWE-200 CWE-noinfo	CVE-2024-23302	2025-01-20 15:15	2024-02-29	Show	GitHub Exploit DB Packet Storm

149	5.4	警告 Network	Contao	contao	Contao におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-28190	2025-01-20 15:15	2024-04-9	Show	GitHub Exploit DB Packet Storm

150	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Window…	Windows CSC サービスの情報漏えいの脆弱性 New	CWE-125 CWE-125	CVE-2025-21374	2025-01-20 15:15	2025-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274981	-	squirrelmail	gpg_plugin squirrelmail	Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin 2.1 for Squirrelmail allow remote attackers to execute arbitrary commands via unspecified vectors. NOTE: this information is based upon…	NVD-CWE-Other	CVE-2007-3636	2008-11-15 15:53	2007-07-10	Show	GitHub Exploit DB Packet Storm

274982	-	microsoft	register_server	Unspecified vulnerability in Microsoft Register Server (REGSVR) allows attackers to cause a denial of service via a crafted DLL library.	NVD-CWE-Other	CVE-2007-3658	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274983	-	microsoft	register_server	Eleytt Security Laboratories Vulnerability Advisory: Denial of service conditions due to null dereference.	NVD-CWE-Other	CVE-2007-3658	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274984	-	freewrl	freewrl	Buffer overflow in the doBrowserAction function in FreeWRL 1.19.3 allows local users to execute arbitrary code via a crafted BROWSER environment variable. NOTE: it is not clear whether this issue cr…	NVD-CWE-Other	CVE-2007-3659	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274985	-	eltima_software	virtual_serial_port	Eltima Software Virtual Serial Port (VSPAX) ActiveX control (VSPort.DLL) allows remote attackers to cause a denial of service via certain function calls, as demonstrated via the (1) Attach, (2) Write…	NVD-CWE-Other	CVE-2007-3661	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274986	-	media_player_classic	media_player_classic	Media Player Classic (MPC) 6.4.9.0 allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted FLV file.	NVD-CWE-Other	CVE-2007-3662	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274987	-	eltima_software	runservice	Multiple unspecified vulnerabilities in Eltima Software RunService ActiveX control (RunService.dll) allow remote attackers to cause a denial of service via certain functions when "improperly used", a…	NVD-CWE-Other	CVE-2007-3664	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274988	-	symantec	norton_ghost	Multiple unspecified vulnerabilities in FileBackup.DLL in Symantec Norton Ghost 12.0 allow remote attackers to cause a denial of service via unspecified vectors involving the UpdateCatalog and other …	NVD-CWE-Other	CVE-2007-3665	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274989	-	symantec	norton_ghost	Buffer overflow in RemoteCommand.DLL in Symantec Norton Ghost 12.0 allows remote attackers to execute arbitrary code via the Connect function.	NVD-CWE-Other	CVE-2007-3666	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274990	-	microsoft	windows_vista	Unspecified vulnerability in the kernel in Microsoft Windows Vista has unspecified remote attack vectors and impact, as shown in the "0day IPO" presentation at SyScan'07.	NVD-CWE-Other	CVE-2007-3671	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed