Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
151 5.5 警告
Local 		xpdfreader project xpdf Glyph & Cog, LLC の Xpdf における境界外書き込みに関する脆弱性 CWE-787
CWE-787
CVE-2024-4976 2025-01-30 11:48 2024-05-15 Show GitHub Exploit DB Packet Storm
152 5.4 警告
Network 		WebTechStreet Elementor Addon Elements WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-47366 2025-01-30 11:48 2024-10-6 Show GitHub Exploit DB Packet Storm
153 8.8 重要
Network 		デル Dell SupportAssist for Home PCs
Dell SupportAssist for Business PCs 		デルの Dell SupportAssist for Business PCs および Dell SupportAssist for Home PCs におけるリンク解釈に関する脆弱性 CWE-59
CWE-61
CVE-2024-52535 2025-01-30 11:48 2024-12-25 Show GitHub Exploit DB Packet Storm
154 9.8 緊急
Network 		OpenImageIO project OpenImageIO OpenImageIO project の OpenImageIO における境界外書き込みに関する脆弱性 CWE-120
CWE-787
CVE-2024-55194 2025-01-30 11:48 2024-12-6 Show GitHub Exploit DB Packet Storm
155 4.3 警告
Network 		Easy Social Feed Easy Social Feed WordPress 用 Easy Social Feed におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-1213 2025-01-30 11:40 2024-03-21 Show GitHub Exploit DB Packet Storm
156 9.8 緊急
Network 		Metagauss Inc. registrationmagic Metagauss Inc. の WordPress 用 registrationmagic における脆弱性 CWE-230
CWE-noinfo
CVE-2024-10508 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
157 4.3 警告
Network 		envothemes envo extra envothemes の WordPress 用 envo extra におけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2024-10770 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
158 5.4 警告
Network 		Brainstorm Force Elementor Header & Footer Builder Brainstorm Force の WordPress 用 Elementor Header & Footer Builder におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-11230 2025-01-30 11:39 2024-12-23 Show GitHub Exploit DB Packet Storm
159 4.3 警告
Network 		bdthemes element pack bdthemes の WordPress 用 element pack における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-11852 2025-01-30 11:39 2024-12-22 Show GitHub Exploit DB Packet Storm
160 8.8 重要
Network 		- IBM の Security Verify Access における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-49803 2025-01-30 11:14 2024-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273871 - netwin dmail Buffer overflow in Netwin DMailWeb CGI program allows remote attackers to execute arbitrary commands via a long utoken parameter. NVD-CWE-Other
CVE-2000-0422 2016-10-18 11:06 2000-05-4 Show GitHub Exploit DB Packet Storm
273872 - true_north internet_anywhere_mail_server Internet Anywhere POP3 Mail Server 2.3.1 allows remote attackers to cause a denial of service (crash) via (1) LIST, (2) TOP, or (3) UIDL commands using letters as arguments. NVD-CWE-Other
CVE-1999-1500 2016-10-18 11:05 1999-10-1 Show GitHub Exploit DB Packet Storm
273873 - sgi irix (1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variable before executing system calls, which allows local users to execute arbitrary commands. NVD-CWE-Other
CVE-1999-1501 2016-10-18 11:05 1998-04-8 Show GitHub Exploit DB Packet Storm
273874 - id_software quake Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands via long (1) precache paths, (2) server name, (3) server address, or (4) argument to the map console… NVD-CWE-Other
CVE-1999-1502 2016-10-18 11:05 1998-04-8 Show GitHub Exploit DB Packet Storm
273875 - id_software quakeworld Buffer overflow in QuakeWorld 2.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary commands via a long initial connect packet. NVD-CWE-Other
CVE-1999-1505 2016-10-18 11:05 1998-04-7 Show GitHub Exploit DB Packet Storm
273876 - tek phaser_network_printer_740
phaser_network_printer_750
phaser_network_printer_750dp
phaser_network_printer_840
phaser_network_printer_930 		Web server in Tektronix PhaserLink Printer 840.0 and earlier allows a remote attacker to gain administrator access by directly calling undocumented URLs such as ncl_items.html and ncl_subjects.html. NVD-CWE-Other
CVE-1999-1508 2016-10-18 11:05 1999-11-16 Show GitHub Exploit DB Packet Storm
273877 - etype eserv Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. (dot dot) in a URL. NVD-CWE-Other
CVE-1999-1509 2016-10-18 11:05 1999-11-4 Show GitHub Exploit DB Packet Storm
273878 - 3com superstack_ii_hub Management information base (MIB) for a 3Com SuperStack II hub running software version 2.10 contains an object identifier (.1.3.6.1.4.1.43.10.4.2) that is accessible by a read-only community string,… NVD-CWE-Other
CVE-1999-1513 2016-10-18 11:05 1999-08-30 Show GitHub Exploit DB Packet Storm
273879 - tenfour tfs_gateway_smtp A buffer overflow in TenFour TFS Gateway SMTP mail server 3.2 allows an attacker to crash the mail server and possibly execute arbitrary code by offering more than 128 bytes in a MAIL FROM string. NVD-CWE-Other
CVE-1999-1516 2016-10-18 11:05 1999-09-2 Show GitHub Exploit DB Packet Storm
273880 - freebsd freebsd runtar in the Amanda backup system used in various UNIX operating systems executes tar with root privileges, which allows a user to overwrite or read arbitrary files by providing the target files to … NVD-CWE-Other
CVE-1999-1517 2016-10-18 11:05 1999-11-1 Show GitHub Exploit DB Packet Storm