Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 30, 2025, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
151	6.7	警告 Local	Telerik	Telerik UI for WinForms	Telerik の Telerik UI for WinForms における脆弱性 New	CWE-94 CWE-noinfo	CVE-2024-3892	2025-01-29 13:46	2024-05-15	Show	GitHub Exploit DB Packet Storm

152	5.4	警告 Network	creativethemes	blocksy companion	creativethemes の WordPress 用 blocksy companion におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4487	2025-01-29 13:46	2024-05-14	Show	GitHub Exploit DB Packet Storm

153	8.1	重要 Network	miniOrange	Miniorange OTP Verification with Firebase	miniOrange の WordPress 用 Miniorange OTP Verification with Firebase における重要な機能に対する認証の欠如に関する脆弱性 New	CWE-288 CWE-306	CVE-2024-9861	2025-01-29 13:46	2024-10-17	Show	GitHub Exploit DB Packet Storm

154	5.5	警告 Local	デル	Dell Grab	デルの Windows 用 Dell Grab におけるログファイルからの情報漏えいに関する脆弱性 New	CWE-532 ログファイルからの情報漏えい	CVE-2024-25957	2025-01-29 12:07	2024-03-26	Show	GitHub Exploit DB Packet Storm

155	5.4	警告 Network	HasThemes	HT Mega - Absolute Addons For Elementor	HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3989	2025-01-29 11:46	2024-05-14	Show	GitHub Exploit DB Packet Storm

156	5.4	警告 Network	creativethemes	blocksy	creativethemes の WordPress 用 blocksy におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4158	2025-01-29 11:46	2024-05-14	Show	GitHub Exploit DB Packet Storm

157	7.3	重要 Local	インテル	Quartus Prime	インテルの Quartus Prime における制御されていない検索パスの要素に関する脆弱性 New	CWE-427 CWE-427	CVE-2024-21777	2025-01-29 11:46	2024-05-16	Show	GitHub Exploit DB Packet Storm

158	7.3	重要 Local	インテル	Quartus Prime	インテルの Quartus Prime における制御されていない検索パスの要素に関する脆弱性 New	CWE-427 CWE-427	CVE-2024-21862	2025-01-29 11:46	2024-05-16	Show	GitHub Exploit DB Packet Storm

159	9.8	緊急 Network	クアルコム	(複数の製品)	キヤノン製スモールオフィス向け複合機およびレーザービームプリンターにおける複数の境界外書き込みの脆弱性 New	CWE-787 境界外書き込み	CVE-2024-12647 CVE-2024-12648 CVE-2024-12649	2025-01-29 11:42	2025-01-28	Show	GitHub Exploit DB Packet Storm

160	5.4	警告 Network	Extend Themes	colibri page builder	Extend Themes の WordPress 用 colibri page builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3337	2025-01-29 11:42	2024-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 30, 2025, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280431	-	digital	digital_openvms digital_openvms_axp	Vulnerability in loginout in Digital OpenVMS 7.1 and earlier allows unauthorized access when external authentication is enabled.	NVD-CWE-Other	CVE-1999-1558	2008-09-6 05:19	1998-07-16	Show	GitHub Exploit DB Packet Storm

280432	-	nullsoft	shoutcast_server	Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to gain administrative privileges on the server.	NVD-CWE-Other	CVE-1999-1561	2008-09-6 05:19	1999-08-20	Show	GitHub Exploit DB Packet Storm

280433	-	gftp	ftp_client	gFTP FTP client 1.13, and other versions before 2.0.0, records a password in plaintext in (1) the log window, or (2) in a log file.	NVD-CWE-Other	CVE-1999-1562	2008-09-6 05:19	1999-09-5	Show	GitHub Exploit DB Packet Storm

280434	-	nachuatec	d435 d445	Nachuatec D435 and D445 printer allows remote attackers to cause a denial of service via ICMP redirect storm.	NVD-CWE-Other	CVE-1999-1563	2008-09-6 05:19	2000-10-14	Show	GitHub Exploit DB Packet Storm

280435	-	freebsd	freebsd	FreeBSD 3.2 and possibly other versions allows a local user to cause a denial of service (panic) with a large number accesses of an NFS v3 mounted directory from a large number of processes.	NVD-CWE-Other	CVE-1999-1564	2008-09-6 05:19	1999-09-2	Show	GitHub Exploit DB Packet Storm

280436	-	earl_hood debian	man2html debian_linux	Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file.	NVD-CWE-Other	CVE-1999-1565	2008-09-6 05:19	1999-08-20	Show	GitHub Exploit DB Packet Storm

280437	-	intel	iparty	Buffer overflow in iParty server 1.2 and earlier allows remote attackers to cause a denial of service (crash) by connecting to default port 6004 and sending repeated extended characters.	NVD-CWE-Other	CVE-1999-1566	2008-09-6 05:19	1999-05-8	Show	GitHub Exploit DB Packet Storm

280438	-	sendmail sun	sendmail sunos	SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passin…	NVD-CWE-Other	CVE-1999-1580	2008-09-6 05:19	1995-08-23	Show	GitHub Exploit DB Packet Storm

280439	-	sun	openwindows sunos	Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root pr…	NVD-CWE-Other	CVE-1999-1584	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm

280440	-	wwwcount	wwwcount	Directory traversal vulnerability in Muhammad A. Muquit wwwcount (Count.cgi) 2.3 allows remote attackers to read arbitrary GIF files via ".." sequences in the image parameter, a different vulnerabili…	NVD-CWE-Other	CVE-1999-1590	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm