Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
151 5.5 警告
Local 		xpdfreader project xpdf Glyph & Cog, LLC の Xpdf における境界外書き込みに関する脆弱性 CWE-787
CWE-787
CVE-2024-4976 2025-01-30 11:48 2024-05-15 Show GitHub Exploit DB Packet Storm
152 5.4 警告
Network 		WebTechStreet Elementor Addon Elements WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-47366 2025-01-30 11:48 2024-10-6 Show GitHub Exploit DB Packet Storm
153 8.8 重要
Network 		デル Dell SupportAssist for Home PCs
Dell SupportAssist for Business PCs 		デルの Dell SupportAssist for Business PCs および Dell SupportAssist for Home PCs におけるリンク解釈に関する脆弱性 CWE-59
CWE-61
CVE-2024-52535 2025-01-30 11:48 2024-12-25 Show GitHub Exploit DB Packet Storm
154 9.8 緊急
Network 		OpenImageIO project OpenImageIO OpenImageIO project の OpenImageIO における境界外書き込みに関する脆弱性 CWE-120
CWE-787
CVE-2024-55194 2025-01-30 11:48 2024-12-6 Show GitHub Exploit DB Packet Storm
155 4.3 警告
Network 		Easy Social Feed Easy Social Feed WordPress 用 Easy Social Feed におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-1213 2025-01-30 11:40 2024-03-21 Show GitHub Exploit DB Packet Storm
156 9.8 緊急
Network 		Metagauss Inc. registrationmagic Metagauss Inc. の WordPress 用 registrationmagic における脆弱性 CWE-230
CWE-noinfo
CVE-2024-10508 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
157 4.3 警告
Network 		envothemes envo extra envothemes の WordPress 用 envo extra におけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2024-10770 2025-01-30 11:40 2024-11-9 Show GitHub Exploit DB Packet Storm
158 5.4 警告
Network 		Brainstorm Force Elementor Header & Footer Builder Brainstorm Force の WordPress 用 Elementor Header & Footer Builder におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-11230 2025-01-30 11:39 2024-12-23 Show GitHub Exploit DB Packet Storm
159 4.3 警告
Network 		bdthemes element pack bdthemes の WordPress 用 element pack における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-11852 2025-01-30 11:39 2024-12-22 Show GitHub Exploit DB Packet Storm
160 8.8 重要
Network 		- IBM の Security Verify Access における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-49803 2025-01-30 11:14 2024-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 11, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
281411 - rob_flynn gaim Buffer overflow in Gaim 0.10.3 and earlier using the OSCAR protocol allows remote attackers to conduct a denial of service and possibly execute arbitrary commands via a long HTML tag. NVD-CWE-Other
CVE-2000-1172 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
281412 - microsys cyberpatrol Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sn… NVD-CWE-Other
CVE-2000-1173 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
281413 - jan_hubicka koules Buffer overflow in Koules 1.4 allows local users to execute arbitrary commands via a long command line argument. NVD-CWE-Other
CVE-2000-1175 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
281414 - yabb yabb Directory traversal vulnerability in YaBB search.pl CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catsearch" form field. NVD-CWE-Other
CVE-2000-1176 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
281415 - bb4 big_brother_network_monitor bb-hist.sh, bb-histlog.sh, bb-hostsvc.sh, bb-rep.sh, bb-replog.sh, and bb-ack.sh in Big Brother (BB) before 1.5d3 allows remote attackers to determine the existence of files and user ID's by specifyi… NVD-CWE-Other
CVE-2000-1177 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
281416 - itserv_incorporated ridewaypn The telnet proxy in RideWay PN proxy server allows remote attackers to cause a denial of service via a flood of connections that contain malformed requests. NVD-CWE-Other
CVE-2000-1185 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
281417 - argosoft ftp_server Argosoft FRP server 1.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to the (1) USER or (2) CWD commands. NVD-CWE-Other
CVE-2000-1194 2008-09-6 05:22 2001-08-31 Show GitHub Exploit DB Packet Storm
281418 - checkpoint firewall-1 Check Point FireWall-1 allows remote attackers to cause a denial of service (high CPU) via a flood of packets to port 264. NVD-CWE-Other
CVE-2000-1201 2008-09-6 05:22 2001-08-31 Show GitHub Exploit DB Packet Storm
281419 - zope zope Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activ… NVD-CWE-Other
CVE-2000-1211 2008-09-6 05:22 2000-12-16 Show GitHub Exploit DB Packet Storm
281420 - gnu g\+\+
gcc 		The -ftrapv compiler option in gcc and g++ 3.3.3 and earlier does not handle all types of integer overflows, which may leave applications vulnerable to vulnerabilities related to overflows. NVD-CWE-Other
CVE-2000-1219 2008-09-6 05:22 2000-11-1 Show GitHub Exploit DB Packet Storm