Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 10, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
161	3.3	低 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性 New	CWE-noinfo 情報不足	CVE-2021-46971	2025-01-10 10:20	2021-03-16	Show	GitHub Exploit DB Packet Storm

162	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2021-46969	2025-01-10 10:16	2021-03-10	Show	GitHub Exploit DB Packet Storm

163	4.3	警告 Network	IBM	IBM App Connect Enterprise	IBM の IBM App Connect Enterprise における有効期限後または解放後のリソースの操作に関する脆弱性 New	CWE-324 CWE-672	CVE-2024-31894	2025-01-10 10:05	2024-05-22	Show	GitHub Exploit DB Packet Storm

164	5.4	警告 Network	IBM	IBM Planning Analytics Local	IBM の IBM Planning Analytics Local におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-31907	2025-01-10 10:05	2024-05-30	Show	GitHub Exploit DB Packet Storm

165	3.3	低 Local	IBM	IBM Aspera Console	IBM の IBM Aspera Console における脆弱性 New	CWE-525 CWE-Other	CVE-2022-43841	2025-01-10 10:04	2022-10-26	Show	GitHub Exploit DB Packet Storm

166	5.4	警告 Network	BoldThemes	Bold Page Builder	BoldThemes の WordPress 用 Bold Page Builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2736	2025-01-9 18:24	2024-04-10	Show	GitHub Exploit DB Packet Storm

167	5.4	警告 Network	BoldThemes	Bold Page Builder	BoldThemes の WordPress 用 Bold Page Builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3267	2025-01-9 18:24	2024-04-9	Show	GitHub Exploit DB Packet Storm

168	4.3	警告 Network	Leap13	Premium Addons for Elementor	Leap13 の WordPress 用 Premium Addons for Elementor における認証の欠如に関する脆弱性 New	CWE-862 CWE-862	CVE-2024-6824	2025-01-9 18:24	2024-08-8	Show	GitHub Exploit DB Packet Storm

169	5.4	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-7092	2025-01-9 18:24	2024-08-13	Show	GitHub Exploit DB Packet Storm

170	9.9	緊急 Network	Esri	Portal for ArcGIS	Esri の Portal for ArcGIS におけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2024-25693	2025-01-9 18:24	2024-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 10, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276441	-	authoria	authoria	Cross-site scripting (XSS) vulnerability in athcgi.exe in Authoria HR allows remote attackers to inject arbitrary web script or HTML via the command parameter.	CWE-79 Cross-site Scripting	CVE-2002-2348	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276442	-	phpbb	phpbbmod	phpinfo.php in phpBBmod 1.3.3 executes the phpinfo function, which allows remote attackers to obtain sensitive environment information.	CWE-200 Information Exposure	CVE-2002-2349	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276443	-	phpoutsourcing	zorum	Cross-site scripting (XSS) vulnerability in z_user_show.php in dbtreelistproperty_method.php in Zorum 2.4 allows remote attackers to inject arbitrary web script or HTML via the class parameter.	CWE-79 Cross-site Scripting	CVE-2002-2350	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276444	-	qualcomm	eudora	Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).	CWE-22 Path Traversal	CVE-2002-2351	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276445	-	aol	instant_messenger	AOL Instant Messenger (AIM) 4.7.2480 adds free.aol.com to the Trusted Sites Zone in Internet Explorer without user approval, which could allow code from free.aol.com to bypass intended access restric…	NVD-CWE-Other	CVE-2002-1591	2008-09-6 05:31	2002-04-8	Show	GitHub Exploit DB Packet Storm

276446	-	ibm	aix	Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers to execute arbitrary code.	NVD-CWE-Other	CVE-2002-1621	2008-09-6 05:31	2002-04-22	Show	GitHub Exploit DB Packet Storm

276447	-	oracle	application_server	SQL injection vulnerability in the query.xsql sample page in Oracle 9i Application Server (9iAS) allows remote attackers to execute arbitrary code via the sql parameter.	NVD-CWE-Other	CVE-2002-1631	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

276448	-	oracle	application_server_web_cache	Multiple buffer overflows in Oracle Web Cache for Oracle 9i Application Server (9iAS) allow remote attackers to execute arbitrary code via unknown vectors.	NVD-CWE-Other	CVE-2002-1641	2008-09-6 05:31	2002-05-27	Show	GitHub Exploit DB Packet Storm

276449	-	ibm	aix	Buffer overflow in lscfg of unknown versions of AIX has unknown impact.	NVD-CWE-Other	CVE-2002-1686	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

276450	-	ibm	aix	Buffer overflow in the diagnostics library in AIX allows local users to "cause data and instructions to be overwritten" via a long DIAGNOSTICS environment variable.	NVD-CWE-Other	CVE-2002-1687	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm