Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 12:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
171 6.1 警告
Network 		Razorpay Razorpay Payment Button Plugin Razorpay の WordPress 用 Razorpay Payment Button Plugin におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-10851 2025-01-20 15:42 2024-11-13 Show GitHub Exploit DB Packet Storm
172 9.8 緊急
Network 		oretnom23 computer laboratory management system oretnom23 の computer laboratory management system における SQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2024-3315 2025-01-20 15:27 2024-04-4 Show GitHub Exploit DB Packet Storm
173 6.1 警告
Network 		oretnom23 computer laboratory management system oretnom23 の computer laboratory management system におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3377 2025-01-20 15:27 2024-04-6 Show GitHub Exploit DB Packet Storm
174 5.4 警告
Network 		Argie Online courseware Argie の Online courseware におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3426 2025-01-20 15:27 2024-04-7 Show GitHub Exploit DB Packet Storm
175 8.8 重要
Network 		Ivanti connect secure Ivanti の connect secure における脆弱性 New CWE-602
CWE-Other
CVE-2024-9844 2025-01-20 15:27 2024-12-10 Show GitHub Exploit DB Packet Storm
176 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2025
Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Window… 		Windows CSC Service Elevation of Privilege Vulnerability New CWE-122
CWE-noinfo
CVE-2025-21378 2025-01-20 15:26 2025-01-14 Show GitHub Exploit DB Packet Storm
177 4.3 警告
Network 		WebTechStreet Elementor Addon Elements WebTechStreet の WordPress 用 Elementor Addon Elements における脆弱性 New CWE-200
CWE-noinfo
CVE-2024-8902 2025-01-20 15:16 2024-10-12 Show GitHub Exploit DB Packet Storm
178 8.8 重要
Network 		SimpleHelp Ltd SimpleHelp SimpleHelp Ltd の SimpleHelp における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-57726 2025-01-20 15:16 2025-01-15 Show GitHub Exploit DB Packet Storm
179 9.8 緊急
Network 		Progress Software Corporation MOVEit Transfer Progress Software Corporation の MOVEit Transfer における脆弱性 New CWE-287
CWE-noinfo
CVE-2024-5806 2025-01-20 15:16 2024-06-25 Show GitHub Exploit DB Packet Storm
180 7.5 重要
Network 		Couchbase, Inc. couchbase server Couchbase, Inc. の Couchbase Server における脆弱性 New CWE-200
CWE-noinfo
CVE-2024-23302 2025-01-20 15:15 2024-02-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274981 - squirrelmail gpg_plugin
squirrelmail 		Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin 2.1 for Squirrelmail allow remote attackers to execute arbitrary commands via unspecified vectors. NOTE: this information is based upon… NVD-CWE-Other
CVE-2007-3636 2008-11-15 15:53 2007-07-10 Show GitHub Exploit DB Packet Storm
274982 - microsoft register_server Unspecified vulnerability in Microsoft Register Server (REGSVR) allows attackers to cause a denial of service via a crafted DLL library. NVD-CWE-Other
CVE-2007-3658 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm
274983 - microsoft register_server Eleytt Security Laboratories Vulnerability Advisory: Denial of service conditions due to null dereference. NVD-CWE-Other
CVE-2007-3658 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm
274984 - freewrl freewrl Buffer overflow in the doBrowserAction function in FreeWRL 1.19.3 allows local users to execute arbitrary code via a crafted BROWSER environment variable. NOTE: it is not clear whether this issue cr… NVD-CWE-Other
CVE-2007-3659 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm
274985 - eltima_software virtual_serial_port Eltima Software Virtual Serial Port (VSPAX) ActiveX control (VSPort.DLL) allows remote attackers to cause a denial of service via certain function calls, as demonstrated via the (1) Attach, (2) Write… NVD-CWE-Other
CVE-2007-3661 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm
274986 - media_player_classic media_player_classic Media Player Classic (MPC) 6.4.9.0 allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted FLV file. NVD-CWE-Other
CVE-2007-3662 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm
274987 - eltima_software runservice Multiple unspecified vulnerabilities in Eltima Software RunService ActiveX control (RunService.dll) allow remote attackers to cause a denial of service via certain functions when "improperly used", a… NVD-CWE-Other
CVE-2007-3664 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm
274988 - symantec norton_ghost Multiple unspecified vulnerabilities in FileBackup.DLL in Symantec Norton Ghost 12.0 allow remote attackers to cause a denial of service via unspecified vectors involving the UpdateCatalog and other … NVD-CWE-Other
CVE-2007-3665 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm
274989 - symantec norton_ghost Buffer overflow in RemoteCommand.DLL in Symantec Norton Ghost 12.0 allows remote attackers to execute arbitrary code via the Connect function. NVD-CWE-Other
CVE-2007-3666 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm
274990 - microsoft windows_vista Unspecified vulnerability in the kernel in Microsoft Windows Vista has unspecified remote attack vectors and impact, as shown in the "0day IPO" presentation at SyScan'07. NVD-CWE-Other
CVE-2007-3671 2008-11-15 15:53 2007-07-11 Show GitHub Exploit DB Packet Storm