Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
171	5.5	警告 Local	xpdfreader project	xpdf	Glyph & Cog, LLC の Xpdf における再帰制御に関する脆弱性	CWE-674 CWE-674	CVE-2024-4568	2025-01-30 11:14	2024-05-6	Show	GitHub Exploit DB Packet Storm

172	5.4	警告 Network	bdthemes	element pack	bdthemes の WordPress 用 element pack におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2024-4643	2025-01-30 11:14	2024-08-2	Show	GitHub Exploit DB Packet Storm

173	4.4	警告 Local	デル	NativeEdge Orchestrator	デルの NativeEdge Orchestrator における誤った領域へのリソースの漏えいに関する脆弱性	CWE-378 CWE-668	CVE-2024-52543	2025-01-30 11:13	2024-12-25	Show	GitHub Exploit DB Packet Storm

174	9.8	緊急 Network	OpenImageIO project	OpenImageIO	OpenImageIO project の OpenImageIO における脆弱性	CWE-476 CWE-Other	CVE-2024-55193	2025-01-30 11:13	2024-12-6	Show	GitHub Exploit DB Packet Storm

175	9.8	緊急 Network	Projectworlds	online food ordering system	Projectworlds の online food ordering system における SQL インジェクションの脆弱性	CWE-89 CWE-89	CVE-2024-57328	2025-01-30 11:13	2025-01-23	Show	GitHub Exploit DB Packet Storm

176	5.3	警告 Network	Linkz.ai	Linkz.ai - Automatic link previews on hover	Linkz.ai の WordPress 用 Linkz.ai - Automatic link previews on hover における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-9586	2025-01-30 11:13	2024-10-11	Show	GitHub Exploit DB Packet Storm

177	4.3	警告 Network	WPMU DEV	forminator forms	WPMU DEV の WordPress 用 forminator forms におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2024-9351	2025-01-30 10:56	2024-10-17	Show	GitHub Exploit DB Packet Storm

178	7.1	重要 Local	デル	powerstoreos	デルの powerstoreos における引数の挿入または変更に関する脆弱性	CWE-88 引数の挿入または変更	CVE-2024-51532	2025-01-30 10:55	2024-12-19	Show	GitHub Exploit DB Packet Storm

179	5.4	警告 Network	Themeum	tutor lms elementor addons	Themeum の WordPress 用 tutor lms elementor addons におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2024-5576	2025-01-30 10:55	2024-08-20	Show	GitHub Exploit DB Packet Storm

180	5.4	警告 Network	POSIMYTH	The Plus Addons for Elementor Page Builder	POSIMYTH の WordPress 用 The Plus Addons for Elementor Page Builder におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4484	2025-01-30 10:50	2024-05-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
282941	-	khamil_landross_and_zack_jones	eftp	EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that o…	NVD-CWE-Other	CVE-2001-1110	2008-09-6 05:25	2001-09-12	Show	GitHub Exploit DB Packet Storm

282942	-	whitsoft_development	slimftpd	Directory traversal vulnerability in WhitSoft Development SlimFTPd 2.2 allows an attacker to read arbitrary files and directories via a ... (modified dot dot) in the CD command.	NVD-CWE-Other	CVE-2001-1131	2008-09-6 05:25	2001-08-21	Show	GitHub Exploit DB Packet Storm

282943	-	bsdi	bsd_os	Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service (reboot) in the kernel via a particular sequence of instructions.	NVD-CWE-Other	CVE-2001-1133	2008-09-6 05:25	2001-08-21	Show	GitHub Exploit DB Packet Storm

282944	-	ascii_nt	winwrapper_professional	Directory traversal vulnerability in ASCII NT WinWrapper Professional allows remote attackers to read arbitrary files via a .. (dot dot) in the server request.	NVD-CWE-Other	CVE-2001-1139	2008-09-6 05:25	2001-08-22	Show	GitHub Exploit DB Packet Storm

282945	-	argosoft	ftp_server	ArGoSoft FTP Server 1.2.2.2 uses weak encryption for user passwords, which allows an attacker with access to the password file to gain privileges.	NVD-CWE-Other	CVE-2001-1142	2008-09-6 05:25	2001-07-12	Show	GitHub Exploit DB Packet Storm

282946	-	ibm	db2_universal_database	IBM DB2 7.0 allows a remote attacker to cause a denial of service (crash) via a single byte to (1) db2ccs.exe on port 6790, or (2) db2jds.exe on port 6789.	NVD-CWE-Other	CVE-2001-1143	2008-09-6 05:25	2001-07-11	Show	GitHub Exploit DB Packet Storm

282947	-	andries_brouwer	util-linux	The PAM implementation in /bin/login of the util-linux package before 2.11 causes a password entry to be rewritten across multiple PAM calls, which could provide the credentials of one user to a diff…	NVD-CWE-Other	CVE-2001-1147	2008-09-6 05:25	2001-10-8	Show	GitHub Exploit DB Packet Storm

282948	-	panda	panda_antivirus_platinum	Panda Antivirus Platinum before 6.23.00 allows a remore attacker to cause a denial of service (crash) when a user selects an action for a malformed UPX packed executable file.	NVD-CWE-Other	CVE-2001-1149	2008-09-6 05:25	2001-08-21	Show	GitHub Exploit DB Packet Storm

282949	-	trend_micro	officescan virus_buster	Vulnerability in cgiWebupdate.exe in Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.5.2 through 3.5.4 allows remote attackers to read arbitrary files.	NVD-CWE-Other	CVE-2001-1150	2008-09-6 05:25	2001-08-22	Show	GitHub Exploit DB Packet Storm

282950	-	baltimore_technologies	websweeper	Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested…	NVD-CWE-Other	CVE-2001-1152	2008-09-6 05:25	2001-09-5	Show	GitHub Exploit DB Packet Storm