Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1821 6.5 警告
Network 		マイクロソフト Microsoft Defender for Endpoint Windows Defender Information Disclosure Vulnerability CWE-612
CWE-Other
CVE-2024-49071 2025-01-16 13:40 2024-12-12 Show GitHub Exploit DB Packet Storm
1822 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2021-47016 2025-01-16 13:39 2021-04-6 Show GitHub Exploit DB Packet Storm
1823 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-Other
その他 		CVE-2021-47043 2025-01-16 13:39 2021-03-22 Show GitHub Exploit DB Packet Storm
1824 7.1 重要
Adjacent 		マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 11 		Windows Hyper-V のセキュリティ機能のバイパスの脆弱性 CWE-20
CWE-noinfo
CVE-2024-20659 2025-01-16 13:31 2024-10-8 Show GitHub Exploit DB Packet Storm
1825 7.5 重要
Network 		oretnom23 lost and found information system Oretnom23 の lost and found information system における SQL インジェクションの脆弱性 CWE-89
CWE-89
CVE-2023-33677 2025-01-16 12:32 2023-05-22 Show GitHub Exploit DB Packet Storm
1826 4.3 警告
Network 		Basixonline NEX-Forms Basixonline の WordPress 用 NEX-Forms における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1130 2025-01-16 12:32 2024-02-29 Show GitHub Exploit DB Packet Storm
1827 5.4 警告
Network 		IdeaBox Creations PowerPack Addons for Elementor IdeaBox Creations の WordPress 用 PowerPack Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1411 2025-01-16 12:32 2024-02-29 Show GitHub Exploit DB Packet Storm
1828 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-3143 2025-01-16 12:32 2024-04-2 Show GitHub Exploit DB Packet Storm
1829 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. W15E ファームウェア Shenzhen Tenda Technology Co.,Ltd. の W15E ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4123 2025-01-16 12:32 2024-04-24 Show GitHub Exploit DB Packet Storm
1830 9.8 緊急
Network 		ThimPress LearnPress ThimPress の WordPress 用 LearnPress における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-4434 2025-01-16 12:32 2024-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279851 - - - Cross-site scripting (XSS) vulnerability in the control panel in aeDating 3.2 allows remote attackers to inject arbitrary web script or HTML. NVD-CWE-Other
CVE-2005-1085 2008-09-6 05:48 2005-05-2 Show GitHub Exploit DB Packet Storm
279852 - dc\+\+ dc\+\+ Unknown vulnerability in DC++ before 0.674 allows attackers to append data to arbitrary files. NVD-CWE-Other
CVE-2005-1089 2008-09-6 05:48 2005-04-11 Show GitHub Exploit DB Packet Storm
279853 - - - Maxthon 1.2.0 and 1.2.1 allows remote attackers to bypass the security ID and use restricted plugin API functions via script that includes the max.src file into the source page. NVD-CWE-Other
CVE-2005-1091 2008-09-6 05:48 2005-05-2 Show GitHub Exploit DB Packet Storm
279854 - light_speed_technology deluxeftp Lightspeed DeluxeFTP 6.01 stores usernames and passwords in plaintext in sites.xml, which is world-readable, which allows local users to gain privileges. NVD-CWE-Other
CVE-2005-1092 2008-09-6 05:48 2005-05-2 Show GitHub Exploit DB Packet Storm
279855 - rebrand p2p_share_spy Rebrand P2P Share Spy 2.2 stores the user password in plaintext in the txtPassword value in the registry, which allows local users to gain privileges. NVD-CWE-Other
CVE-2005-1097 2008-09-6 05:48 2005-05-2 Show GitHub Exploit DB Packet Storm
279856 - mcafee internet_security_suite McAfee Internet Security Suite 2005 uses insecure default ACLs for installed files, which allows local users to gain privileges or disable protection by modifying certain files. NVD-CWE-Other
CVE-2005-1107 2008-09-6 05:48 2005-04-18 Show GitHub Exploit DB Packet Storm
279857 - todd_miller sudo Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary files via a symlink attack on temporary files. NVD-CWE-Other
CVE-2005-1119 2008-09-6 05:48 2005-05-2 Show GitHub Exploit DB Packet Storm
279858 - avaya libsafe Race condition in libsafe 2.0.16 and earlier, when running in multi-threaded applications, allows attackers to bypass libsafe protection and exploit other vulnerabilities before the _libsafe_die func… NVD-CWE-Other
CVE-2005-1125 2008-09-6 05:48 2005-05-2 Show GitHub Exploit DB Packet Storm
279859 - virtual_hosting_control_system virtual_hosting_control_system Multiple SQL injection vulnerabilities in VHCS 2.4 and earlier allow remote attackers to execute arbitrary SQL commands via certain inputs from HTTP POST queries. NVD-CWE-Other
CVE-2005-1128 2008-09-6 05:48 2005-05-2 Show GitHub Exploit DB Packet Storm
279860 - symantec_veritas i3_focalpoint_server Unknown vulnerability in Veritas i3 Focalpoint Server 7.1 and earlier has unknown attack vectors and unknown but "critical" impact. NVD-CWE-Other
CVE-2005-1131 2008-09-6 05:48 2005-05-2 Show GitHub Exploit DB Packet Storm