Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1601	5.3	警告 Network	NetApp 日本電気 ISC, Inc.	Active IQ Unified Manager ESMPRO/ServerAgent NEC Multimedia OLAP for 映像分析サービス BIND	ISC, Inc. の BIND 等複数ベンダの製品における脆弱性	CWE-noinfo 情報不足	CVE-2023-5680	2025-01-17 13:18	2023-10-20	Show	GitHub Exploit DB Packet Storm

1602	7.5	重要 Network	日本電気 Fedora Project NetApp ISC, Inc.	ESMPRO/ServerAgent NEC Multimedia OLAP for 映像分析サービス Active IQ Unified Manager Fedora BIND	NetApp の Active IQ Unified Manager 等複数ベンダの製品における脆弱性	CWE-noinfo 情報不足	CVE-2023-5679	2025-01-17 13:13	2023-10-20	Show	GitHub Exploit DB Packet Storm

1603	7.5	重要 Network	日本電気 Fedora Project NetApp ISC, Inc.	ESMPRO/ServerAgent NEC Multimedia OLAP for 映像分析サービス Active IQ Unified Manager Fedora BIND	NetApp の Active IQ Unified Manager 等複数ベンダの製品における到達可能なアサーションに関する脆弱性	CWE-617 CWE-617	CVE-2023-5517	2025-01-17 13:12	2023-10-11	Show	GitHub Exploit DB Packet Storm

1604	7.5	重要 Network	Fedora Project 日本電気 ISC, Inc.	NEC Multimedia OLAP for 映像分析サービス Fedora ESMPRO/ServerAgent BIND	NetApp の ONTAP (旧 Clustered Data ONTAP) 等複数ベンダの製品における脆弱性	CWE-noinfo 情報不足	CVE-2023-4408	2025-01-17 13:10	2023-08-18	Show	GitHub Exploit DB Packet Storm

1605	9.8	緊急 Network	Apache Software Foundation	Apache Struts	Apache Struts 2 における外部からアクセス可能なファイルの脆弱性 (S2-066)	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2023-50164	2025-01-17 12:58	2023-12-8	Show	GitHub Exploit DB Packet Storm

1606	9.8	緊急 Network	Apache Software Foundation	hertzbeat	Apache Software Foundation の hertzbeat におけるインジェクションに関する脆弱性	CWE-74 CWE-74	CVE-2023-51388	2025-01-17 12:08	2023-12-18	Show	GitHub Exploit DB Packet Storm

1607	9.8	緊急 Network	Ivanti	Avalanche	Ivanti の Avalanche におけるパストラバーサルの脆弱性	CWE-22 CWE-22 CWE-288	CVE-2024-13179	2025-01-17 12:08	2025-01-14	Show	GitHub Exploit DB Packet Storm

1608	5.4	警告 Network	Themeisle	Orbit Fox	ThemeIsle の WordPress 用 Orbit Fox におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-13183	2025-01-17 12:08	2025-01-10	Show	GitHub Exploit DB Packet Storm

1609	4.3	警告 Network	Progress Software Corporation	MOVEit Transfer	Progress Software Corporation の MOVEit Transfer における脆弱性	CWE-778 CWE-Other	CVE-2024-2291	2025-01-17 12:08	2024-03-20	Show	GitHub Exploit DB Packet Storm

1610	4.8	警告 Network	MantisBT Group	MantisBT	MantisBT Group の MantisBT におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2024-34081	2025-01-17 12:08	2024-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
621	-		-	-	In the Linux kernel, the following vulnerability has been resolved: pfifo_tail_enqueue: Drop new packet when sch->limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifo_tail_enque…	-	CVE-2025-21702	2025-02-19 00:15	2025-02-19	Show	GitHub Exploit DB Packet Storm

622	6.3	MEDIUM Network	-	-	The Uncode Core plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.9.1.6. This is due to the software allowing users to execute an action that…	CWE-94 Code Injection	CVE-2024-13689	2025-02-19 00:15	2025-02-19	Show	GitHub Exploit DB Packet Storm

623	-		-	-	The Rapid Cache plugin for WordPress is vulnerable to Cache Poisoning in all versions up to, and including, 1.2.3. This is due to plugin storing HTTP headers in the cached data. This makes it possibl…	CWE-524 Use of Cache Containing Sensitive Information	CVE-2024-12314	2025-02-19 00:15	2025-02-18	Show	GitHub Exploit DB Packet Storm

624	4.3	MEDIUM Network	-	-	A vulnerability classified as problematic was found in Pix Software Vivaz 6.0.10. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be init…	CWE-352 CWE-862 Origin Validation Error Missing Authorization	CVE-2025-1358	2025-02-19 00:15	2025-02-17	Show	GitHub Exploit DB Packet Storm

625	-		-	-	libarchive through 3.7.7 has a heap-based buffer over-read in header_gnu_longlink in archive_read_support_format_tar.c via a TAR archive because it mishandles truncation in the middle of a GNU long l…	-	CVE-2024-57970	2025-02-19 00:15	2025-02-16	Show	GitHub Exploit DB Packet Storm

626	4.5	MEDIUM Local	-	-	Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability	CWE-601 Open Redirect	CVE-2025-21401	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

627	-		-	-	Directory Traversal vulnerability in FeMiner wms v.1.0 allows a remote attacker to obtain sensitive information via the databak.php component.	-	CVE-2025-25997	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

628	-		-	-	For a brief summary of Xapi terminology, see: https://xapi-project.github.io/xen-api/overview.html#object-model-overview Xapi contains functionality to backup and restore metadata about Virtual…	-	CVE-2024-31144	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

629	-		-	-	SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive information via the parameters date1, date2, id.	-	CVE-2025-25994	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

630	-		-	-	Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component.	-	CVE-2025-25990	2025-02-19 00:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed