Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1741 4.8 警告
Network 		code-projects Local Storage Todo App code-projects の Local Storage Todo App におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CWE-94
CVE-2025-0228 2025-01-16 16:02 2025-01-5 Show GitHub Exploit DB Packet Storm
1742 6.1 警告
Network 		FreeScout FreeScout FreeScout におけるクロスサイトスクリプティングの脆弱性 CWE-74
CWE-79
CVE-2024-34697 2025-01-16 15:49 2024-05-14 Show GitHub Exploit DB Packet Storm
1743 6.3 警告
Network 		FreeScout FreeScout FreeScout におけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
CWE-1321
CVE-2024-34698 2025-01-16 15:49 2024-05-14 Show GitHub Exploit DB Packet Storm
1744 4.3 警告
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1502 2025-01-16 15:49 2024-03-21 Show GitHub Exploit DB Packet Storm
1745 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-2823 2025-01-16 15:49 2024-03-22 Show GitHub Exploit DB Packet Storm
1746 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-3144 2025-01-16 15:48 2024-04-2 Show GitHub Exploit DB Packet Storm
1747 6.5 警告
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-3553 2025-01-16 15:48 2024-05-2 Show GitHub Exploit DB Packet Storm
1748 9 緊急
Network 		FreeScout FreeScout FreeScout における OS コマンドインジェクションの脆弱性 CWE-78
CWE-78
CVE-2024-29185 2025-01-16 15:48 2024-03-22 Show GitHub Exploit DB Packet Storm
1749 7.8 重要
Local 		クアルコム Snapdragon 8cx Compute Platform ファームウェア
snapdragon 8cx gen 3 ファームウェア
QCA6391 ファームウェア
fastconnect 6900 ファームウェア
Snapdragon 8cx&nb… 		複数のクアルコム製品における境界外書き込みに関する脆弱性 CWE-120
CWE-787
CVE-2023-43540 2025-01-16 15:46 2023-09-19 Show GitHub Exploit DB Packet Storm
1750 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用 		CVE-2021-47554 2025-01-16 15:46 2021-11-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
641 - - - Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges. CWE-1390
 Weak Authentication 		CVE-2024-52541 2025-02-20 02:15 2025-02-20 Show GitHub Exploit DB Packet Storm
642 8.2 HIGH
Network 		- - IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploi… CWE-611
XXE 		CVE-2023-47160 2025-02-20 02:15 2025-02-20 Show GitHub Exploit DB Packet Storm
643 7.8 HIGH
Local 		microsoft 365_apps
excel
office
office_online_server 		Microsoft Excel Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2025-21387 2025-02-20 01:55 2025-02-12 Show GitHub Exploit DB Packet Storm
644 9.8 CRITICAL
Network 		tenda ac6_firmware Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function. CWE-120
Classic Buffer Overflow 		CVE-2025-25343 2025-02-20 01:41 2025-02-13 Show GitHub Exploit DB Packet Storm
645 5.8 MEDIUM
Network 		- - A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to bypass the configured rules and allow emails that should have been de… CWE-284
Improper Access Control 		CVE-2025-20153 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
646 4.1 MEDIUM
Network 		- - A vulnerability, which was classified as problematic, was found in lmxcms 1.41. Affected is an unknown function of the file db.inc.php of the component Maintenance. The manipulation leads to code inj… CWE-94
CWE-74
Code Injection
Injection 		CVE-2025-1465 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
647 8.0 HIGH
Network 		- - IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated attacker to conduct formula injection. An attacker could execute arbitrary commands on the sys… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-45084 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
648 6.5 MEDIUM
Network 		- - IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated user to modify restricted content due to incorrect authorization checks. CWE-863
 Incorrect Authorization 		CVE-2024-45081 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
649 6.1 MEDIUM
Network 		- - A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack agains… CWE-79
Cross-site Scripting 		CVE-2025-20211 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm
650 4.4 MEDIUM
Local 		- - A vulnerability in the debug shell of Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series could allow an authenticated, local attacker to access sensitive information on an affected device. To ex… CWE-200
Information Exposure 		CVE-2025-20158 2025-02-20 01:15 2025-02-20 Show GitHub Exploit DB Packet Storm