Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 12:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
151 8.8 重要
Network 		マイクロソフト Microsoft SQL Server SQL Server Native Client OLE DB プロバイダーのリモート コード実行に対する脆弱性 New CWE-190
CWE-noinfo
CVE-2024-21428 2025-01-20 17:09 2024-07-9 Show GitHub Exploit DB Packet Storm
152 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office 		Microsoft Excel のセキュリティ機能のバイパスの脆弱性 New CWE-502
CWE-noinfo
CVE-2025-21364 2025-01-20 17:09 2025-01-14 Show GitHub Exploit DB Packet Storm
153 4.3 警告
Network 		LadiPage LadiPage WordPress 用 LadiPage におけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2023-4628 2025-01-20 17:07 2023-08-30 Show GitHub Exploit DB Packet Storm
154 8.8 重要
Network 		マイクロソフト Microsoft SQL Server SQL Server Native Client OLE DB プロバイダーのリモート コード実行に対する脆弱性 New CWE-122
CWE-noinfo
CVE-2024-21415 2025-01-20 17:06 2024-07-9 Show GitHub Exploit DB Packet Storm
155 7.8 重要
Local 		マイクロソフト Microsoft Access
Microsoft 365 Apps
Microsoft Office 		Microsoft Access のリモート コードが実行される脆弱性 New CWE-416
CWE-noinfo
CVE-2024-49142 2025-01-20 17:01 2024-12-10 Show GitHub Exploit DB Packet Storm
156 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス 		CVE-2024-57881 2025-01-20 16:59 2024-12-18 Show GitHub Exploit DB Packet Storm
157 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外書き込みに関する脆弱性 New CWE-787
境界外書き込み 		CVE-2024-56615 2025-01-20 16:58 2024-11-25 Show GitHub Exploit DB Packet Storm
158 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2024-56627 2025-01-20 16:58 2024-12-1 Show GitHub Exploit DB Packet Storm
159 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) のなりすましの脆弱性 New CWE-451
CWE-noinfo
CVE-2024-30055 2025-01-20 16:57 2024-05-10 Show GitHub Exploit DB Packet Storm
160 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外書き込みに関する脆弱性 New CWE-787
境界外書き込み 		CVE-2024-56626 2025-01-20 16:57 2024-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
601 - - - Cross-Site Request Forgery (CSRF) vulnerability in Oren hahiashvili add custom google tag manager allows Stored XSS.This issue affects add custom google tag manager: from n/a through 1.0.3. CWE-352
 Origin Validation Error 		CVE-2025-23537 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
602 - - - Cross-Site Request Forgery (CSRF) vulnerability in Adrian Moreno WP Lyrics allows Stored XSS.This issue affects WP Lyrics: from n/a through 0.4.1. CWE-352
 Origin Validation Error 		CVE-2025-23533 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
603 - - - Cross-Site Request Forgery (CSRF) vulnerability in Regios MyAnime Widget allows Privilege Escalation.This issue affects MyAnime Widget: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23532 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
604 - - - Cross-Site Request Forgery (CSRF) vulnerability in Yonatan Reinberg of Social Ink Custom Post Type Lockdown allows Privilege Escalation.This issue affects Custom Post Type Lockdown: from n/a through … CWE-352
 Origin Validation Error 		CVE-2025-23530 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
605 - - - Incorrect Privilege Assignment vulnerability in Wouter Dijkstra DD Roles allows Privilege Escalation.This issue affects DD Roles: from n/a through 4.1. CWE-266
 Incorrect Privilege Assignment 		CVE-2025-23528 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
606 - - - Missing Authorization vulnerability in Sanjaysolutions Loginplus allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Loginplus: from n/a through 1.2. CWE-862
 Missing Authorization 		CVE-2025-23514 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
607 - - - Cross-Site Request Forgery (CSRF) vulnerability in Joshua Wieczorek Bible Embed allows Stored XSS.This issue affects Bible Embed: from n/a through 0.0.4. CWE-352
 Origin Validation Error 		CVE-2025-23513 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
608 - - - Cross-Site Request Forgery (CSRF) vulnerability in Viktoria Rei Bauer WP-BlackCheck allows Stored XSS.This issue affects WP-BlackCheck: from n/a through 2.7.2. CWE-352
 Origin Validation Error 		CVE-2025-23511 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
609 - - - Cross-Site Request Forgery (CSRF) vulnerability in Zaantar WordPress Logging Service allows Stored XSS.This issue affects WordPress Logging Service: from n/a through 1.5.4. CWE-352
 Origin Validation Error 		CVE-2025-23510 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
610 - - - Cross-Site Request Forgery (CSRF) vulnerability in EdesaC Extra Options – Favicons allows Stored XSS.This issue affects Extra Options – Favicons: from n/a through 1.1.0. CWE-352
 Origin Validation Error 		CVE-2025-23508 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm