Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1571	5.9	警告 Network	Devolutions	Devolutions Remote Desktop Manager	Devolutions の Devolutions Remote Desktop Manager における不完全なクリーンアップに関する脆弱性	CWE-459 不完全なクリーンアップ	CVE-2024-2403	2025-01-17 15:01	2024-03-13	Show	GitHub Exploit DB Packet Storm

1572	5.4	警告 Network	Wpmet	ElementsKit Elementor addons	Wpmet の WordPress 用 ElementsKit Elementor addons におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3650	2025-01-17 15:01	2024-05-2	Show	GitHub Exploit DB Packet Storm

1573	7.8	重要 Local	Progress Software Corporation	telerik reporting	Progress Software Corporation の telerik reporting における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 CWE-502	CVE-2024-4200	2025-01-17 15:00	2024-05-15	Show	GitHub Exploit DB Packet Storm

1574	6.5	警告 Network	Progress Software Corporation	telerik reporting	Progress Software Corporation の telerik reporting における XML 外部エンティティの脆弱性	CWE-611 CWE-611	CVE-2024-4357	2025-01-17 15:00	2024-05-15	Show	GitHub Exploit DB Packet Storm

1575	5.3	警告 Network	BoldGrid	W3 Total Cache	BoldGrid の WordPress 用 W3 Total Cache における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-12006	2025-01-17 15:00	2024-12-1	Show	GitHub Exploit DB Packet Storm

1576	5.3	警告 Network	vyperlang	vyper	vyperlang の Python 用 vyper における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2024-24564	2025-01-17 15:00	2024-02-26	Show	GitHub Exploit DB Packet Storm

1577	6.1	警告 Network	sfu	open journal systems	sfu の open journal systems におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-25436	2025-01-17 15:00	2024-03-1	Show	GitHub Exploit DB Packet Storm

1578	5.3	警告 Network	vyperlang	vyper	vyperlang の Python 用 vyper における脆弱性	CWE-119 CWE-noinfo	CVE-2024-26149	2025-01-17 15:00	2024-02-26	Show	GitHub Exploit DB Packet Storm

1579	7.3	重要 Network	MantisBT Group	MantisBT	MantisBT Group の MantisBT における脆弱性	CWE-305 CWE-620 CWE-Other	CVE-2024-34077	2025-01-17 15:00	2024-05-14	Show	GitHub Exploit DB Packet Storm

1580	5.4	警告 Network	Vanderbilt	redcap	Vanderbilt の redcap におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2024-56376	2025-01-17 15:00	2024-12-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 21, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
571	7.3	HIGH Network	-	-	A vulnerability was found in NUUO Camera up to 20250203. It has been declared as critical. This vulnerability affects the function print_file of the file /handle_config.php. The manipulation of the a…	CWE-77 CWE-74 Command Injection Injection	CVE-2025-1338	2025-02-16 20:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

572	3.5	LOW Network	-	-	A vulnerability was found in Eastnets PaymentSafe 2.5.26.0. It has been classified as problematic. This affects an unknown part of the component BIC Search. The manipulation leads to cross site scrip…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-1337	2025-02-16 20:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

573	4.3	MEDIUM Network	-	-	A vulnerability has been found in CmsEasy 7.7.7.9 and classified as problematic. Affected by this vulnerability is the function deleteimg_action in the library lib/admin/image_admin.php. The manipula…	CWE-22 Path Traversal	CVE-2025-1336	2025-02-16 18:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

574	3.3	LOW Local	-	-	A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function sys_device_close/sys_device_control/sys_device_find/sys_device_init/sys_de…	-	CVE-2025-1115	2025-02-16 18:15	2025-02-8	Show	GitHub Exploit DB Packet Storm

575	4.3	MEDIUM Network	-	-	A vulnerability, which was classified as problematic, was found in CmsEasy 7.7.7.9. Affected is the function deleteimg_action in the library lib/admin/file_admin.php. The manipulation of the argument…	CWE-22 Path Traversal	CVE-2025-1335	2025-02-16 13:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

576	-		-	-	DataSourceResource.java in the SpagoBI API support in Knowage Server in KNOWAGE before 8.1.30 does not ensure that java:comp/env/jdbc/ occurs at the beginning of a JNDI Name.	-	CVE-2024-57971	2025-02-16 13:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

577	2.4	LOW Network	-	-	A vulnerability has been found in FastCMS up to 0.1.5 and classified as problematic. This vulnerability affects unknown code of the file /fastcms.html#/template/menu of the component Template Menu. T…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-1332	2025-02-16 10:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

578	-		-	-	StrongKey FIDO Server before 4.15.1 treats a non-discoverable (namedcredential) flow as a discoverable transaction.	-	CVE-2025-26788	2025-02-16 01:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

579	-		-	-	The Web GUI configuration panel of Hirsch (formerly Identiv and Viscount) Enterphone MESH through 2024 ships with default credentials (username freedom, password viscount). The administrator is not p…	-	CVE-2025-26793	2025-02-16 00:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

580	5.4	MEDIUM Network	-	-	The Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and in…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-13834	2025-02-16 00:15	2025-02-16	Show	GitHub Exploit DB Packet Storm