Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1761	4.3	警告 Network	LadiPage	LadiPage	WordPress 用 LadiPage におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2023-4731	2025-01-16 15:12	2023-09-1	Show	GitHub Exploit DB Packet Storm

1762	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2023-52483	2025-01-16 15:09	2023-10-10	Show	GitHub Exploit DB Packet Storm

1763	4.3	警告 Network	LadiPage	LadiPage	WordPress 用 LadiPage におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2023-4629	2025-01-16 15:06	2023-08-30	Show	GitHub Exploit DB Packet Storm

1764	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2022-48628	2025-01-16 15:02	2022-12-21	Show	GitHub Exploit DB Packet Storm

1765	7.8	重要 Local	Huawei	Mate 20 Pro ファームウェア Mate 20 Pro (UD) ファームウェア Nova 5i ファームウェア	複数の Huawei 製品における脆弱性	CWE-269 CWE-noinfo	CVE-2020-9080	2025-01-16 14:55	2020-02-18	Show	GitHub Exploit DB Packet Storm

1766	7.2	重要 Network	FireBear Studio	Improved Import & Export	FireBear Studio の Magento 用 Improved Import & Export におけるブラインド XPath インジェクションの脆弱性	CWE-91 ブラインド XPath インジェクション	CVE-2024-25413	2025-01-16 14:52	2024-02-16	Show	GitHub Exploit DB Packet Storm

1767	5.4	警告 Network	LadiPage	LadiPage	WordPress 用 LadiPage におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2023-4728	2025-01-16 14:52	2023-09-1	Show	GitHub Exploit DB Packet Storm

1768	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2021-47437	2025-01-16 14:48	2021-09-25	Show	GitHub Exploit DB Packet Storm

1769	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2021-47469	2025-01-16 14:48	2021-10-14	Show	GitHub Exploit DB Packet Storm

1770	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2021-47505	2025-01-16 14:48	2021-12-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191	-		-	-	DNNGo xBlog v6.5.0 was discovered to contain a SQL injection vulnerability via the Categorys parameter at /DNNGo_xBlog/Resource_Service.aspx. New	-	CVE-2024-55212	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

192	-		-	-	An issue in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 allows attackers to terminate arbitrary process via executing a BYOVD (Bring Your Own Vulnerable Driver) attack. New	-	CVE-2024-51324	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

193	-		-	-	GeoNetwork is a catalog application to manage spatially referenced resources. In versions prior to 4.2.10 and 4.4.5, the search end-point response headers contain information about Elasticsearch soft… New	CWE-200 Information Exposure	CVE-2024-32037	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

194	-		-	-	Improper access control in the DRTM firmware could allow a privileged attacker to perform multiple driver initializations, resulting in stack memory corruption that could potentially lead to loss of … New	-	CVE-2023-31331	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

195	-		-	-	Improper handling of invalid nested page table entries in the IOMMU may allow a privileged attacker to induce page table entry (PTE) faults to bypass RMP checks in SEV-SNP, potentially leading to a l… New	-	CVE-2023-20582	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

196	-		-	-	Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks, potentially leading to a loss of guest memory integrity. New	-	CVE-2023-20581	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

197	-		-	-	Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability. New	-	CVE-2023-20515	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

198	5.4	MEDIUM Network	-	-	A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object type… New	-	CVE-2024-11831	2025-02-12 07:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

199	-		-	-	The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11 R0.22.1, V10 R1.54.0 through V10 R1.54.1, and V10 R1.42.6 and earlier could allow an unauthenticated … Update	-	CVE-2025-23094	2025-02-12 07:15	2025-02-7	Show	GitHub Exploit DB Packet Storm

200	-		-	-	NetMod VPN Client 5.3.1 is vulnerable to DLL injection, allowing an attacker to execute arbitrary code by placing a malicious DLL in a directory where the application loads dependencies. This vulnera… Update	-	CVE-2024-57426	2025-02-12 07:15	2025-02-7	Show	GitHub Exploit DB Packet Storm