Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 21, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
161 5.4 警告
Network 		Livemesh Livemesh Addons for Elementor Livemesh の WordPress 用 Livemesh Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1458 2025-01-20 15:02 2024-04-9 Show GitHub Exploit DB Packet Storm
162 5.4 警告
Network 		Livemesh Livemesh Addons for Elementor Livemesh の WordPress 用 Livemesh Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1465 2025-01-20 15:02 2024-04-9 Show GitHub Exploit DB Packet Storm
163 4.3 警告
Network 		StylemixThemes MasterStudy LMS StylemixThemes の WordPress 用 MasterStudy LMS における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-1904 2025-01-20 15:02 2024-04-9 Show GitHub Exploit DB Packet Storm
164 5.4 警告
Network 		Livemesh Livemesh Addons for Elementor Livemesh の WordPress 用 Livemesh Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2539 2025-01-20 15:02 2024-04-10 Show GitHub Exploit DB Packet Storm
165 8.8 重要
Network 		Apache Software Foundation Apache Pulsar Apache Software Foundation の Apache Pulsar における入力確認に関する脆弱性 New CWE-20
CWE-552
CVE-2024-27894 2025-01-20 15:02 2024-03-12 Show GitHub Exploit DB Packet Storm
166 5.4 警告
Network 		Apache Software Foundation Apache Pulsar Apache Software Foundation の Apache Pulsar における不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2024-28098 2025-01-20 15:02 2024-03-12 Show GitHub Exploit DB Packet Storm
167 7.5 重要
Network 		Sonaar Music mp3 audio player for music
 radio & podcast 		Sonaar Music の WordPress 用 mp3 audio player for music, radio & podcast における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-31343 2025-01-20 15:02 2024-04-10 Show GitHub Exploit DB Packet Storm
168 8.8 重要
Network 		マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Windows Server 2008
Microsoft Window… 		Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 New CWE-197
CWE-noinfo
CVE-2024-30009 2025-01-20 15:01 2024-05-14 Show GitHub Exploit DB Packet Storm
169 6.7 警告
Local 		フォーティネット FortiAnalyzer-BigData
FortiAnalyzer
FortiManager 		複数のフォーティネット製品における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2024-32118 2025-01-20 14:53 2024-11-12 Show GitHub Exploit DB Packet Storm
170 6.7 警告
Local 		フォーティネット FortiManager フォーティネットの FortiManager におけるコードインジェクションの脆弱性 New CWE-1336
CWE-94
CVE-2023-47542 2025-01-20 14:50 2023-11-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 21, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
581 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: Bluetooth: iso: Fix circular lock in iso_conn_big_sync This fixes the circular locking dependency warning below, by reworking iso… CWE-667
 Improper Locking 		CVE-2024-54191 2025-01-17 01:21 2025-01-11 Show GitHub Exploit DB Packet Storm
582 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: block: Fix potential deadlock while freezing queue and acquiring sysfs_lock For storing a value to a queue attribute, the queue_a… CWE-667
 Improper Locking 		CVE-2024-53689 2025-01-17 01:21 2025-01-11 Show GitHub Exploit DB Packet Storm
583 - - - 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/doAdminAction.php?act=editShop&shopId. - CVE-2024-57611 2025-01-17 01:15 2025-01-17 Show GitHub Exploit DB Packet Storm
584 - - - 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaWorkReport/edit.html - CVE-2024-57161 2025-01-17 01:15 2025-01-17 Show GitHub Exploit DB Packet Storm
585 - - - 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaTask/edit.html. - CVE-2024-57160 2025-01-17 01:15 2025-01-17 Show GitHub Exploit DB Packet Storm
586 - - - 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaWorkReport/add.html. - CVE-2024-57159 2025-01-17 01:15 2025-01-17 Show GitHub Exploit DB Packet Storm
587 - - - A vulnerability, which was classified as critical, has been found in Fanli2012 native-php-cms 1.0. This issue affects some unknown processing of the file /fladmin/article_dodel.php. The manipulation … - CVE-2025-0490 2025-01-17 01:15 2025-01-16 Show GitHub Exploit DB Packet Storm
588 - - - A vulnerability classified as critical was found in Fanli2012 native-php-cms 1.0. This vulnerability affects unknown code of the file /fladmin/friendlink_dodel.php. The manipulation of the argument i… - CVE-2025-0489 2025-01-17 01:15 2025-01-16 Show GitHub Exploit DB Packet Storm
589 - - - A vulnerability classified as critical has been found in Fanli2012 native-php-cms 1.0. This affects an unknown part of the file product_list.php. The manipulation of the argument cat leads to sql inj… - CVE-2025-0488 2025-01-17 01:15 2025-01-16 Show GitHub Exploit DB Packet Storm
590 - - - TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "sHour" parameter in setWiFiScheduleCfg. - CVE-2024-57022 2025-01-17 01:15 2025-01-16 Show GitHub Exploit DB Packet Storm