Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
141 5.5 警告
Local
xpdfreader project xpdf Glyph & Cog, LLC の Xpdf における境界外書き込みに関する脆弱性 New CWE-787
CWE-787
CVE-2024-4976 2025-01-30 11:48 2024-05-15 Show GitHub Exploit DB Packet Storm
142 5.4 警告
Network
WebTechStreet Elementor Addon Elements WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-47366 2025-01-30 11:48 2024-10-6 Show GitHub Exploit DB Packet Storm
143 8.8 重要
Network
デル Dell SupportAssist for Home PCs
Dell SupportAssist for Business PCs
デルの Dell SupportAssist for Business PCs および Dell SupportAssist for Home PCs におけるリンク解釈に関する脆弱性 New CWE-59
CWE-61
CVE-2024-52535 2025-01-30 11:48 2024-12-25 Show GitHub Exploit DB Packet Storm
144 9.8 緊急
Network
OpenImageIO project OpenImageIO OpenImageIO project の OpenImageIO における境界外書き込みに関する脆弱性 New CWE-120
CWE-787
CVE-2024-55194 2025-01-30 11:48 2024-12-6 Show GitHub Exploit DB Packet Storm
145 4.3 警告
Network
Easy Social Feed Easy Social Feed WordPress 用 Easy Social Feed におけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反
CVE-2024-1213 2025-01-30 11:40 2024-03-21 Show GitHub Exploit DB Packet Storm
146 9.8 緊急
Network
Metagauss Inc. registrationmagic Metagauss Inc. の WordPress 用 registrationmagic における脆弱性 New CWE-230
CWE-noinfo
CVE-2024-10508 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
147 4.3 警告
Network
envothemes envo extra envothemes の WordPress 用 envo extra におけるユーザ制御の鍵による認証回避に関する脆弱性 New CWE-639
ユーザ制御の鍵による認証回避
CVE-2024-10770 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
148 5.4 警告
Network
Brainstorm Force Elementor Header & Footer Builder Brainstorm Force の WordPress 用 Elementor Header & Footer Builder におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-11230 2025-01-30 11:39 2024-12-23 Show GitHub Exploit DB Packet Storm
149 4.3 警告
Network
bdthemes element pack bdthemes の WordPress 用 element pack における認証の欠如に関する脆弱性 New CWE-862
認証の欠如
CVE-2024-11852 2025-01-30 11:39 2024-12-22 Show GitHub Exploit DB Packet Storm
150 8.8 重要
Network
- IBM の Security Verify Access における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション
CVE-2024-49803 2025-01-30 11:14 2024-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280001 - novell netmail
netmail_xe
Multiple buffer overflows in Novell NetMail (NIMS) 3.0.3 before 3.0.3C allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) WebAdmin or (2) ModWeb. NVD-CWE-Other
CVE-2002-0996 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280002 - novell netmail
netmail_xe
Buffer overflows in IMAP Agent (imapd) for Novell NetMail (NIMS) 3.0.3 before 3.0.3A allows remote attackers to cause a denial of service. NVD-CWE-Other
CVE-2002-0997 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280003 - analogx simpleserver_shout Buffer overflow in AnalogX SimpleServer:Shout 1.0 allows remote attackers to cause a denial of service and execute arbitrary code via a long request to TCP port 8001. NVD-CWE-Other
CVE-2002-1000 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280004 - analogx proxy Buffer overflows in AnalogX Proxy before 4.12 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long HTTP request to TCP port 6588 or (2) a SOCKS 4A r… NVD-CWE-Other
CVE-2002-1001 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280005 - novell emframe Buffer overflow in Novell iManager (eMFrame 1.2.1) allows remote attackers to cause a denial of service (crash) via a long user name. NVD-CWE-Other
CVE-2002-1002 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280006 - mywebserver mywebserver Buffer overflow in MyWebServer 1.02 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request. NVD-CWE-Other
CVE-2002-1003 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280007 - argosoft argosoft_mail_server Directory traversal vulnerability in webmail feature of ArGoSoft Mail Server Plus or Pro 1.8.1.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in a URL. NVD-CWE-Other
CVE-2002-1004 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280008 - bbc_education betsie Cross-site scripting (XSS) vulnerability in BBC Education Text to Speech Internet Enhancer (Betsie) 1.5.11 and earlier allows remote attackers to execute arbitrary web script via parserl.pl. NVD-CWE-Other
CVE-2002-1006 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280009 - blackboard blackboard Cross-site scripting vulnerabilities in Blackboard 5 allow remote attackers to execute arbitrary web script via (1) the course_id parameter in a link to login.pl, (2) the CTID parameter in ProcessInf… NVD-CWE-Other
CVE-2002-1007 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
280010 - summit_computer_networks lil_http_server Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via a request to urlc… NVD-CWE-Other
CVE-2002-1008 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm