Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
141 5.5 警告
Local 		xpdfreader project xpdf Glyph & Cog, LLC の Xpdf における境界外書き込みに関する脆弱性 New CWE-787
CWE-787
CVE-2024-4976 2025-01-30 11:48 2024-05-15 Show GitHub Exploit DB Packet Storm
142 5.4 警告
Network 		WebTechStreet Elementor Addon Elements WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-47366 2025-01-30 11:48 2024-10-6 Show GitHub Exploit DB Packet Storm
143 8.8 重要
Network 		デル Dell SupportAssist for Home PCs
Dell SupportAssist for Business PCs 		デルの Dell SupportAssist for Business PCs および Dell SupportAssist for Home PCs におけるリンク解釈に関する脆弱性 New CWE-59
CWE-61
CVE-2024-52535 2025-01-30 11:48 2024-12-25 Show GitHub Exploit DB Packet Storm
144 9.8 緊急
Network 		OpenImageIO project OpenImageIO OpenImageIO project の OpenImageIO における境界外書き込みに関する脆弱性 New CWE-120
CWE-787
CVE-2024-55194 2025-01-30 11:48 2024-12-6 Show GitHub Exploit DB Packet Storm
145 4.3 警告
Network 		Easy Social Feed Easy Social Feed WordPress 用 Easy Social Feed におけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2024-1213 2025-01-30 11:40 2024-03-21 Show GitHub Exploit DB Packet Storm
146 9.8 緊急
Network 		Metagauss Inc. registrationmagic Metagauss Inc. の WordPress 用 registrationmagic における脆弱性 New CWE-230
CWE-noinfo
CVE-2024-10508 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
147 4.3 警告
Network 		envothemes envo extra envothemes の WordPress 用 envo extra におけるユーザ制御の鍵による認証回避に関する脆弱性 New CWE-639
ユーザ制御の鍵による認証回避 		CVE-2024-10770 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
148 5.4 警告
Network 		Brainstorm Force Elementor Header & Footer Builder Brainstorm Force の WordPress 用 Elementor Header & Footer Builder におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-11230 2025-01-30 11:39 2024-12-23 Show GitHub Exploit DB Packet Storm
149 4.3 警告
Network 		bdthemes element pack bdthemes の WordPress 用 element pack における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-11852 2025-01-30 11:39 2024-12-22 Show GitHub Exploit DB Packet Storm
150 8.8 重要
Network 		- IBM の Security Verify Access における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2024-49803 2025-01-30 11:14 2024-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280561 - stalker stalker_internet_mail_server Stalker Internet Mail Server 1.6 allows a remote attacker to cause a denial of service (crash) via a long HELO command. NVD-CWE-Other
CVE-1999-1504 2008-09-6 05:19 1998-04-8 Show GitHub Exploit DB Packet Storm
280562 - sun sunos Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to access user bin. NVD-CWE-Other
CVE-1999-1506 2008-09-6 05:19 1990-01-29 Show GitHub Exploit DB Packet Storm
280563 - sgi irix /usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users. NVD-CWE-Other
CVE-1999-1554 2008-09-6 05:19 1990-10-31 Show GitHub Exploit DB Packet Storm
280564 - digital digital_openvms
digital_openvms_axp 		Vulnerability in loginout in Digital OpenVMS 7.1 and earlier allows unauthorized access when external authentication is enabled. NVD-CWE-Other
CVE-1999-1558 2008-09-6 05:19 1998-07-16 Show GitHub Exploit DB Packet Storm
280565 - nullsoft shoutcast_server Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to gain administrative privileges on the server. NVD-CWE-Other
CVE-1999-1561 2008-09-6 05:19 1999-08-20 Show GitHub Exploit DB Packet Storm
280566 - gftp ftp_client gFTP FTP client 1.13, and other versions before 2.0.0, records a password in plaintext in (1) the log window, or (2) in a log file. NVD-CWE-Other
CVE-1999-1562 2008-09-6 05:19 1999-09-5 Show GitHub Exploit DB Packet Storm
280567 - nachuatec d435
d445 		Nachuatec D435 and D445 printer allows remote attackers to cause a denial of service via ICMP redirect storm. NVD-CWE-Other
CVE-1999-1563 2008-09-6 05:19 2000-10-14 Show GitHub Exploit DB Packet Storm
280568 - freebsd freebsd FreeBSD 3.2 and possibly other versions allows a local user to cause a denial of service (panic) with a large number accesses of an NFS v3 mounted directory from a large number of processes. NVD-CWE-Other
CVE-1999-1564 2008-09-6 05:19 1999-09-2 Show GitHub Exploit DB Packet Storm
280569 - earl_hood
debian 		man2html
debian_linux 		Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NVD-CWE-Other
CVE-1999-1565 2008-09-6 05:19 1999-08-20 Show GitHub Exploit DB Packet Storm
280570 - intel iparty Buffer overflow in iParty server 1.2 and earlier allows remote attackers to cause a denial of service (crash) by connecting to default port 6004 and sending repeated extended characters. NVD-CWE-Other
CVE-1999-1566 2008-09-6 05:19 1999-05-8 Show GitHub Exploit DB Packet Storm