Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
141	4.3	警告 Network	LadiPage	LadiPage	WordPress 用 LadiPage における脆弱性 New	CWE-noinfo 情報不足	CVE-2023-4626	2025-01-22 10:35	2023-08-30	Show	GitHub Exploit DB Packet Storm

142	4.3	警告 Network	レッドハット	Red Hat 3scale	レッドハットの Red Hat 3scale における不十分なパーミッションまたは特権の不適切な処理に関する脆弱性 New	CWE-280 権限管理不備	CVE-2024-0560	2025-01-22 10:35	2024-02-28	Show	GitHub Exploit DB Packet Storm

143	5.4	警告 Network	bdthemes	prime slider	bdthemes の WordPress 用 prime slider におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1508	2025-01-22 10:35	2024-03-13	Show	GitHub Exploit DB Packet Storm

144	4.3	警告 Network	wobbie	mollie forms	wobbie の WordPress 用 mollie forms における脆弱性 New	CWE-noinfo 情報不足	CVE-2024-1645	2025-01-22 10:35	2024-03-11	Show	GitHub Exploit DB Packet Storm

145	5.4	警告 Network	POSIMYTH	The Plus Addons for Elementor Page Builder	POSIMYTH の WordPress 用 The Plus Addons for Elementor Page Builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3197	2025-01-22 10:35	2024-05-2	Show	GitHub Exploit DB Packet Storm

146	8.8	重要 Network	XWiki	xwiki	XWiki の xwiki における認証の欠如に関する脆弱性 New	CWE-862 CWE-862	CVE-2024-31983	2025-01-22 10:35	2024-04-10	Show	GitHub Exploit DB Packet Storm

147	6.1	警告 Network	PrestaShop	PrestaShop	PrestaShop におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-34716	2025-01-22 10:35	2024-05-14	Show	GitHub Exploit DB Packet Storm

148	9.8	緊急 Network	マイクロフォーカス株式会社	imanager	マイクロフォーカス株式会社の imanager におけるコマンドインジェクションの脆弱性 New	CWE-434 CWE-502 CWE-502 CWE-77 CWE-77	CVE-2024-3483	2025-01-22 10:35	2024-05-15	Show	GitHub Exploit DB Packet Storm

149	9.8	緊急 Network	マイクロフォーカス株式会社	imanager	マイクロフォーカス株式会社の imanager における危険なタイプのファイルの無制限アップロードに関する脆弱性 New	CWE-20 CWE-434	CVE-2024-3488	2025-01-22 10:35	2024-05-15	Show	GitHub Exploit DB Packet Storm

150	5.4	警告 Network	oretnom23	computer laboratory management system	oretnom23 の computer laboratory management system におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3695	2025-01-22 10:35	2024-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
621	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in mastersoftwaresolutions WP VTiger Synchronization allows Stored XSS.This issue affects WP VTiger Synchronization: from n/a through 1.1.1.	CWE-352 Origin Validation Error	CVE-2025-23455	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

622	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Myriad Solutionz Stars SMTP Mailer allows Reflected XSS.This issue affects Stars SMTP Mailer: fro…	CWE-79 Cross-site Scripting	CVE-2025-23453	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

623	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EditionGuard Dev Team EditionGuard for WooCommerce – eBook Sales with DRM allows Reflected XSS.Th…	CWE-79 Cross-site Scripting	CVE-2025-23452	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

624	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Scott Swezey Easy Tynt allows Cross Site Request Forgery.This issue affects Easy Tynt: from n/a through 0.2.5.1.	CWE-352 Origin Validation Error	CVE-2025-23445	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

625	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nasir Scroll Top Advanced allows Stored XSS.This issue affects Scroll Top Advanced: from n/a thro…	CWE-79 Cross-site Scripting	CVE-2025-23444	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

626	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in matias s Shockingly Big IE6 Warning allows Stored XSS.This issue affects Shockingly Big IE6 Warning: from n/a through 1.6.3.	CWE-352 Origin Validation Error	CVE-2025-23442	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

627	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MarvinLabs WP PT-Viewer allows Reflected XSS.This issue affects WP PT-Viewer: from n/a through 2.…	CWE-79 Cross-site Scripting	CVE-2025-23438	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

628	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Capa Wp-Scribd-List allows Stored XSS.This issue affects Wp-Scribd-List: from n/a through 1.2.	CWE-352 Origin Validation Error	CVE-2025-23436	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

629	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in David Marcucci Password Protect Plugin for WordPress allows Stored XSS.This issue affects Password Protect Plugin for WordPress: from n/a through 0.…	CWE-352 Origin Validation Error	CVE-2025-23435	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

630	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Albertolabs.com Easy EU Cookie law allows Stored XSS.This issue affects Easy EU Cookie law: from …	CWE-79 Cross-site Scripting	CVE-2025-23434	2025-01-17 05:15	2025-01-17	Show	GitHub Exploit DB Packet Storm