Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1581	6.8	警告 Physics	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 10 Microsoft Windows 11 Microsoft Windows Server 2019	Windows モバイルブロードバンドドライバーのリモートコード実行に対する脆弱性	CWE-190 CWE-noinfo	CVE-2024-30021	2025-01-17 15:00	2024-05-14	Show	GitHub Exploit DB Packet Storm

1582	6.5	警告 Network	マイクロソフト	Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows Server 2012 Microso…	DHCP Server サービスのサービス拒否の脆弱性	CWE-400 CWE-noinfo	CVE-2024-30019	2025-01-17 14:51	2024-05-14	Show	GitHub Exploit DB Packet Storm

1583	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Window…	Windows ルーティングとリモートアクセスサービス (RRAS) のリモートでコードが実行される脆弱性	CWE-197 CWE-noinfo	CVE-2024-30014	2025-01-17 14:49	2024-05-14	Show	GitHub Exploit DB Packet Storm

1584	8.1	重要 Network	マイクロソフト	Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Window…	Lightweight Directory Access Protocol (LDAP) クライアントのリモートでコードが実行される脆弱性	CWE-362 競合状態	CVE-2024-49124	2025-01-17 14:41	2024-12-10	Show	GitHub Exploit DB Packet Storm

1585	8.1	重要 Network	マイクロソフト	Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Window…	Microsoft Message Queuing (MSMQ) のリモートでコードが実行される脆弱性	CWE-362 CWE-416	CVE-2024-49122	2025-01-17 14:37	2024-12-10	Show	GitHub Exploit DB Packet Storm

1586	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows Server 2025 Microso…	Windows ルーティングとリモートアクセスサービス (RRAS) のリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-49125	2025-01-17 14:32	2024-12-10	Show	GitHub Exploit DB Packet Storm

1587	9.8	緊急 Network	72crm	Wukong CRM	72crm の Wukong CRM における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 CWE-502	CVE-2024-23052	2025-01-17 14:28	2024-02-29	Show	GitHub Exploit DB Packet Storm

1588	6.1	警告 Network	Meow Apps	ai engine	Meow Apps の WordPress 用 ai engine におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-0378	2025-01-17 14:03	2024-03-2	Show	GitHub Exploit DB Packet Storm

1589	3.3	低 Local	IBM	IBM TXSeries for Multiplatforms	IBM の IBM TXSeries for Multiplatforms における脆弱性	CWE-525 CWE-Other	CVE-2024-22343	2025-01-17 13:53	2024-05-9	Show	GitHub Exploit DB Packet Storm

1590	6.5	警告 Network	IBM	IBM Aspera Faspex	IBM の IBM Aspera Faspex におけるエンコードおよびエスケープに関する脆弱性	CWE-116 CWE-644	CVE-2022-22399	2025-01-17 13:52	2022-07-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
21	-	-	-	Honeywell OneWireless Wireless Device Manager (WDM) for the following versions R310.x, R320.x, R321.x, R322.1, R322.2, R323.x, R330.1 contains a command injection vulnerability. An attacker who is … New	-	CVE-2023-5878	2025-02-7 00:15	2025-02-7	Show	GitHub Exploit DB Packet Storm

22	-	-	-	The Lite UI of Apache ShardingSphere ElasticJob-UI allows an attacker to perform RCE by constructing a special JDBC URL of H2 database. This issue affects Apache ShardingSphere ElasticJob-UI version … New	CWE-913 Improper Control of Dynamically-Managed Code Resources	CVE-2022-31764	2025-02-7 00:15	2025-02-7	Show	GitHub Exploit DB Packet Storm

23	-	-	-	The The CURCY – Multi Currency for WooCommerce – The best free currency exchange plugin – Run smoothly on WooCommerce 9.x plugin for WordPress is vulnerable to arbitrary shortcode execution via the g… New	CWE-94 Code Injection	CVE-2024-13487	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

24	-	-	-	The LikeBot WordPress plugin through 0.85 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS… New	-	CVE-2025-0522	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

25	-	-	-	OpenPLC_V3 contains an arbitrary file upload vulnerability, which could be leveraged for malvertising or phishing campaigns. New	-	CVE-2025-1066	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

26	-	-	-	A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New	-	CVE-2024-57085	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

27	-	-	-	A prototype pollution in the lib.createUploader function of @rpldy/uploader v1.8.1 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New	-	CVE-2024-57082	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

28	-	-	-	A prototype pollution in the lib.fromQuery function of underscore-contrib v0.3.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New	-	CVE-2024-57081	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

29	-	-	-	A prototype pollution in the lib.deepMerge function of @zag-js/core v0.50.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload. New	-	CVE-2024-57079	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

30	-	-	-	The latest version of utils-extend (1.0.8) is vulnerable to Prototype Pollution through the entry function(s) lib.extend. An attacker can supply a payload with Object.prototype setter to introduce or… New	-	CVE-2024-57077	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm