Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1821	6.5	警告 Network	マイクロソフト	Microsoft Defender for Endpoint	Windows Defender Information Disclosure Vulnerability	CWE-612 CWE-Other	CVE-2024-49071	2025-01-16 13:40	2024-12-12	Show	GitHub Exploit DB Packet Storm

1822	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-47016	2025-01-16 13:39	2021-04-6	Show	GitHub Exploit DB Packet Storm

1823	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-Other その他	CVE-2021-47043	2025-01-16 13:39	2021-03-22	Show	GitHub Exploit DB Packet Storm

1824	7.1	重要 Adjacent	マイクロソフト	Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows 11	Windows Hyper-V のセキュリティ機能のバイパスの脆弱性	CWE-20 CWE-noinfo	CVE-2024-20659	2025-01-16 13:31	2024-10-8	Show	GitHub Exploit DB Packet Storm

1825	7.5	重要 Network	oretnom23	lost and found information system	Oretnom23 の lost and found information system における SQL インジェクションの脆弱性	CWE-89 CWE-89	CVE-2023-33677	2025-01-16 12:32	2023-05-22	Show	GitHub Exploit DB Packet Storm

1826	4.3	警告 Network	Basixonline	NEX-Forms	Basixonline の WordPress 用 NEX-Forms における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-1130	2025-01-16 12:32	2024-02-29	Show	GitHub Exploit DB Packet Storm

1827	5.4	警告 Network	IdeaBox Creations	PowerPack Addons for Elementor	IdeaBox Creations の WordPress 用 PowerPack Addons for Elementor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1411	2025-01-16 12:32	2024-02-29	Show	GitHub Exploit DB Packet Storm

1828	4.3	警告 Network	DesDev Inc.	DedeCMS	DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2024-3143	2025-01-16 12:32	2024-04-2	Show	GitHub Exploit DB Packet Storm

1829	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	W15E ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の W15E ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-4123	2025-01-16 12:32	2024-04-24	Show	GitHub Exploit DB Packet Storm

1830	9.8	緊急 Network	ThimPress	LearnPress	ThimPress の WordPress 用 LearnPress における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2024-4434	2025-01-16 12:32	2024-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
279911	-	jason_hines	phpweblog	PHP remote file inclusion vulnerability in PHPWebLog 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the (1) G_PATH parameter to init.inc.php or the (2) PATH para…	NVD-CWE-Other	CVE-2005-0698	2008-09-6 05:47	2005-03-7	Show	GitHub Exploit DB Packet Storm

279912	-	aztek_forum	aztek_forum	The export_index action in myadmin.php for Aztek Forum 4.0 allows remote attackers to obtain database files, possibly by setting the ATK_ADMIN cookie.	NVD-CWE-Other	CVE-2005-0700	2008-09-6 05:47	2005-03-7	Show	GitHub Exploit DB Packet Storm

279913	-	phpmyfaq	phpmyfaq	SQL injection vulnerability in phpMyFAQ 1.4 and 1.5 allows remote attackers to add FAQ records to the database via the username field in forum messages.	NVD-CWE-Other	CVE-2005-0702	2008-09-6 05:47	2005-03-7	Show	GitHub Exploit DB Packet Storm

279914	-	xerox	workcentre_165 workcentre_175 workcentre_2128 workcentre_2636 workcentre_32_color workcentre_35 workcentre_3545 workcentre_40_color workcentre_45 workcentre_55 workcentr…	Xerox MicroServer Web Server for various WorkCentre products including M35/M45/M55 2.028.11.000 through 2.97.20.032 and 4.84.16.000 through 4.97.20.032, Pro 35/45/55 3.028.11.000 through 3.97.20.032,…	NVD-CWE-Other	CVE-2005-0703	2008-09-6 05:47	2005-03-7	Show	GitHub Exploit DB Packet Storm

279915	-	apple	mac_os_x mac_os_x_server	The Bluetooth Setup Assistant for Mac OS X before 10.3.8 can be launched without a keyboard or Bluetooth device, which allows local users to bypass access restrictions and gain privileges.	NVD-CWE-Other	CVE-2005-0713	2008-09-6 05:47	2005-03-21	Show	GitHub Exploit DB Packet Storm

279916	-	apple	mac_os_x mac_os_x_server	AFP Server in Mac OS X before 10.3.8 uses insecure permissions for "Drop Boxes," which allows local users to read the contents of a Drop Box.	NVD-CWE-Other	CVE-2005-0715	2008-09-6 05:47	2005-03-21	Show	GitHub Exploit DB Packet Storm

279917	-	apple	mac_os_x mac_os_x_server	Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH enviro…	NVD-CWE-Other	CVE-2005-0716	2008-09-6 05:47	2005-03-21	Show	GitHub Exploit DB Packet Storm

279918	-	yahoo	messenger	Buffer overflow in Yahoo! Messenger allows remote attackers to execute arbitrary code via the offline mode.	NVD-CWE-Other	CVE-2005-0737	2008-09-6 05:47	2005-05-2	Show	GitHub Exploit DB Packet Storm

279919	-	openbsd	openbsd	The TCP stack (tcp_input.c) in OpenBSD 3.5 and 3.6 allows remote attackers to cause a denial of service (system panic) via crafted values in the TCP timestamp option, which causes invalid arguments t…	NVD-CWE-Other	CVE-2005-0740	2008-09-6 05:47	2005-01-13	Show	GitHub Exploit DB Packet Storm

279920	-	yabb	yabb	Cross-site scripting (XSS) vulnerability in YaBB.pl for YaBB 2.0 RC1 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a usersrecentposts action.	NVD-CWE-Other	CVE-2005-0741	2008-09-6 05:47	2005-03-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed