Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1771	4.7	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における Time-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2023-52478	2025-01-16 14:48	2023-10-6	Show	GitHub Exploit DB Packet Storm

1772	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における二重解放に関する脆弱性	CWE-415 CWE-416	CVE-2023-52851	2025-01-16 14:48	2023-10-31	Show	GitHub Exploit DB Packet Storm

1773	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-35786	2025-01-16 14:48	2024-03-5	Show	GitHub Exploit DB Packet Storm

1774	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-36882	2025-01-16 14:48	2024-05-5	Show	GitHub Exploit DB Packet Storm

1775	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-36924	2025-01-16 14:48	2024-03-10	Show	GitHub Exploit DB Packet Storm

1776	7.8	重要 Local	Debian Linux	Linux Kernel Debian GNU/Linux	Linux の Linux Kernel 等複数ベンダの製品における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2024-36940	2025-01-16 14:48	2024-03-29	Show	GitHub Exploit DB Packet Storm

1777	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2024-56716	2025-01-16 14:48	2024-12-15	Show	GitHub Exploit DB Packet Storm

1778	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2024-56717	2025-01-16 14:48	2024-12-15	Show	GitHub Exploit DB Packet Storm

1779	9.8	緊急 Network	IDocView	IDocView	IDocView におけるコマンドインジェクションの脆弱性	CWE-77 CWE-77	CVE-2024-24377	2025-01-16 14:42	2024-02-16	Show	GitHub Exploit DB Packet Storm

1780	6.1	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4448	2025-01-16 14:42	2024-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
281	7.6	HIGH Adjacent	-	-	A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer usin… New	CWE-787 Out-of-bounds Write	CVE-2025-0624	2025-02-20 04:15	2025-02-20	Show	GitHub Exploit DB Packet Storm

282	-		-	-	The OWL Carousel Slider WordPress plugin through 2.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used ag… Update	-	CVE-2024-13627	2025-02-20 04:15	2025-02-17	Show	GitHub Exploit DB Packet Storm

283	-		-	-	The Track Logins WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks Update	-	CVE-2024-13608	2025-02-20 04:15	2025-02-17	Show	GitHub Exploit DB Packet Storm

284	8.8	HIGH Network	-	-	A command injection flaw was found in the text editor Emacs. It could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by … Update	-	CVE-2025-1244	2025-02-20 04:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

285	6.5	MEDIUM Network	progress	telerik_document_processing_libraries	In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205), using .NET Standard 2.0, the contents of a file at an arbitrary path can be exported to RTF. Update	CWE-552 Files or Directories Accessible to External Parties	CVE-2024-11629	2025-02-20 04:09	2025-02-13	Show	GitHub Exploit DB Packet Storm

286	5.4	MEDIUM Network	anisha	wazifa_system	A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0. Affected is the function searchuser of the file /search_resualts.php. The manipulation of the argument fir… Update	CWE-79 Cross-site Scripting	CVE-2025-1209	2025-02-20 04:04	2025-02-13	Show	GitHub Exploit DB Packet Storm

287	8.8	HIGH Network	anisha	wazifa_system	A vulnerability classified as critical was found in code-projects Wazifa System 1.0. Affected by this vulnerability is an unknown functionality of the file /controllers/control.php. The manipulation … Update	CWE-89 SQL Injection	CVE-2025-1210	2025-02-20 04:03	2025-02-13	Show	GitHub Exploit DB Packet Storm

288	9.8	CRITICAL Network	dlink	dir-853_firmware	D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetDynamicDNSSettings module. Update	CWE-787 Out-of-bounds Write	CVE-2025-25744	2025-02-20 04:02	2025-02-13	Show	GitHub Exploit DB Packet Storm

289	7.2	HIGH Network	dlink	dir-853_firmware	D-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the SetVirtualServerSettings module. Update	CWE-77 Command Injection	CVE-2025-25743	2025-02-20 04:02	2025-02-13	Show	GitHub Exploit DB Packet Storm

290	9.8	CRITICAL Network	dlink	dir-853_firmware	D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the AccountPassword parameter in the SetSysEmailSettings module. Update	CWE-787 Out-of-bounds Write	CVE-2025-25742	2025-02-20 04:02	2025-02-13	Show	GitHub Exploit DB Packet Storm