Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
1661 8.8 重要
Local
マイクロソフト Xbox Gaming Services XBox ゲーム サービスの特権昇格の脆弱性 CWE-59
CWE-noinfo
CVE-2024-28916 2025-01-16 18:02 2024-03-22 Show GitHub Exploit DB Packet Storm
1662 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足
CVE-2024-56786 2025-01-16 18:00 2024-11-1 Show GitHub Exploit DB Packet Storm
1663 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足
CVE-2024-56771 2025-01-16 17:58 2024-10-21 Show GitHub Exploit DB Packet Storm
1664 5.5 警告
Local
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server&…
Windows Remote Access Connection Manager の情報漏えいの脆弱性 CWE-125
CWE-126
CVE-2024-28900 2025-01-16 17:57 2024-04-9 Show GitHub Exploit DB Packet Storm
1665 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足
CVE-2024-56770 2025-01-16 17:57 2024-12-11 Show GitHub Exploit DB Packet Storm
1666 6.8 警告
Physics
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window…
Windows rndismp6.sys のリモートでコードが実行される脆弱性 CWE-822
CWE-noinfo
CVE-2024-26252 2025-01-16 17:55 2024-04-9 Show GitHub Exploit DB Packet Storm
1667 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足
CVE-2024-56718 2025-01-16 17:54 2024-12-15 Show GitHub Exploit DB Packet Storm
1668 7.5 重要
Network
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window…
Windows Kerberos の特権の昇格の脆弱性 CWE-303
CWE-noinfo
CVE-2024-26248 2025-01-16 17:53 2024-04-9 Show GitHub Exploit DB Packet Storm
1669 7.8 重要
Local
Linux Linux Kernel Linux の Linux Kernel における二重解放に関する脆弱性 CWE-415
二重解放
CVE-2024-53213 2025-01-16 17:52 2024-11-24 Show GitHub Exploit DB Packet Storm
1670 7.8 重要
Local
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window…
Win32k の特権の昇格の脆弱性 CWE-416
CWE-noinfo
CVE-2024-26241 2025-01-16 17:51 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
71 - - - Missing Authorization vulnerability in Melodic Media Slide Banners allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Slide Banners: from n/a through 1.3. New CWE-862
 Missing Authorization
CVE-2025-25120 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
72 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alex Polonski Smart Countdown FX allows Stored XSS. This issue affects Smart Countdown FX: from n… New CWE-79
Cross-site Scripting
CVE-2025-25117 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
73 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in sudipto Link to URL / Post allows Blind SQL Injection. This issue affects Link to URL / Post: fro… New CWE-89
SQL Injection
CVE-2025-25116 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
74 - - - Cross-Site Request Forgery (CSRF) vulnerability in WP Spell Check WP Spell Check allows Cross Site Request Forgery. This issue affects WP Spell Check: from n/a through 9.21. New CWE-352
 Origin Validation Error
CVE-2025-25111 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
75 - - - Missing Authorization vulnerability in Metagauss Event Kikfyre allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Event Kikfyre: from n/a through 2.1.8. New CWE-862
 Missing Authorization
CVE-2025-25110 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
76 - - - Cross-Site Request Forgery (CSRF) vulnerability in sainwp OneStore Sites allows Cross Site Request Forgery. This issue affects OneStore Sites: from n/a through 0.1.1. New CWE-352
 Origin Validation Error
CVE-2025-25107 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
77 - - - Cross-Site Request Forgery (CSRF) vulnerability in FancyWP Starter Templates by FancyWP allows Cross Site Request Forgery. This issue affects Starter Templates by FancyWP: from n/a through 2.0.0. New CWE-352
 Origin Validation Error
CVE-2025-25106 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
78 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in coffeestudios Pop Up allows Stored XSS. This issue affects Pop Up: from n/a through 0.1. New CWE-79
Cross-site Scripting
CVE-2025-25105 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
79 - - - Cross-Site Request Forgery (CSRF) vulnerability in mraliende URL-Preview-Box allows Cross Site Request Forgery. This issue affects URL-Preview-Box: from n/a through 1.20. New CWE-352
 Origin Validation Error
CVE-2025-25104 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm
80 - - - Cross-Site Request Forgery (CSRF) vulnerability in bnielsen Indeed API allows Cross Site Request Forgery. This issue affects Indeed API: from n/a through 0.5. New CWE-352
 Origin Validation Error
CVE-2025-25103 2025-02-7 19:15 2025-02-7 Show GitHub Exploit DB Packet Storm