Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1531 7.5 重要
Network 		Huawei EMUI
HarmonyOS 		Huawei の EMUI および HarmonyOS における脆弱性 CWE-840
CWE-noinfo
CVE-2024-56438 2025-01-17 16:20 2024-12-26 Show GitHub Exploit DB Packet Storm
1532 5.5 警告
Local 		クアルコム qam8775p ファームウェア
QCA6595 ファームウェア
sa8650p ファームウェア
sa8540p ファームウェア
QAM8295P ファームウェア
qamsrv1h ファームウェア
QCA6696 ファームウェア
sa7775p ファームウェア
sa87… 		複数のクアルコム製品における境界外読み取りに関する脆弱性 CWE-125
CWE-126
CVE-2024-45559 2025-01-17 16:18 2024-09-2 Show GitHub Exploit DB Packet Storm
1533 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-47341 2025-01-17 16:18 2021-07-14 Show GitHub Exploit DB Packet Storm
1534 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. FH1202 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の FH1202 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2986 2025-01-17 16:17 2024-03-27 Show GitHub Exploit DB Packet Storm
1535 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. FH1202 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の FH1202 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2985 2025-01-17 16:17 2024-03-27 Show GitHub Exploit DB Packet Storm
1536 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29227 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1537 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29233 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1538 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29235 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1539 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-56603 2025-01-17 16:15 2024-10-15 Show GitHub Exploit DB Packet Storm
1540 5.3 警告
Network 		ThimPress LearnPress ThimPress の WordPress 用 LearnPress における脆弱性 CWE-284
CWE-noinfo
CVE-2024-11868 2025-01-17 16:14 2024-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
881 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Johannes van Poelgeest Admin Options Pages allows Reflected XSS. This issue affects Admin Options… CWE-79
Cross-site Scripting 		CVE-2025-23905 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
882 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Essential WP Real Estate allows Reflected XSS. This issue affects Essential WP Real Esta… CWE-79
Cross-site Scripting 		CVE-2025-23857 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
883 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in michelem NoFollow Free allows Reflected XSS. This issue affects NoFollow Free: from n/a through 1… CWE-79
Cross-site Scripting 		CVE-2025-23853 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
884 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Coronavirus (COVID-19) Outbreak Data Widgets allows Reflected XSS. This issue affects Co… CWE-79
Cross-site Scripting 		CVE-2025-23851 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
885 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wassereimer Easy Code Placement allows Reflected XSS. This issue affects Easy Code Placement: fro… CWE-79
Cross-site Scripting 		CVE-2025-23790 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
886 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tahminajannat URL Shortener | Conversion Tracking | AB Testing | WooCommerce allows Reflected X… CWE-79
Cross-site Scripting 		CVE-2025-23789 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
887 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Easy Filter allows Reflected XSS. This issue affects Easy Filter: from n/a through 1.10. CWE-79
Cross-site Scripting 		CVE-2025-23788 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
888 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Easy Bet allows Reflected XSS. This issue affects Easy Bet: from n/a through 1.0.7. CWE-79
Cross-site Scripting 		CVE-2025-23787 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
889 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DuoGeek Email to Download allows Reflected XSS. This issue affects Email to Download: from n/a th… CWE-79
Cross-site Scripting 		CVE-2025-23786 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm
890 - - - Missing Authorization vulnerability in Murali Push Notification for Post and BuddyPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Push Notification f… CWE-862
 Missing Authorization 		CVE-2025-23771 2025-02-14 22:15 2025-02-14 Show GitHub Exploit DB Packet Storm