Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189441 4.3 警告 IBM - IBM Rational ClearQuest の CQWeb サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2211 2012-09-25 17:27 2009-06-23 Show GitHub Exploit DB Packet Storm
189442 5 警告 pc4arb - Pc4 Uploader の upfiles/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2180 2012-09-25 17:27 2009-06-23 Show GitHub Exploit DB Packet Storm
189443 4.3 警告 henning makholm - xcftools の flattenIncrementally 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2175 2012-09-25 17:27 2009-06-23 Show GitHub Exploit DB Packet Storm
189444 5 警告 gupnp - GUPnP におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2009-2174 2012-09-25 17:27 2009-06-23 Show GitHub Exploit DB Packet Storm
189445 4 警告 Mahara - Mahara における他のユーザのアーティファクトを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2171 2012-09-25 17:27 2009-06-21 Show GitHub Exploit DB Packet Storm
189446 4.3 警告 Mahara - Mahara におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2170 2012-09-25 17:27 2009-06-21 Show GitHub Exploit DB Packet Storm
189447 5 警告 OCS Inventory Team - OCS Inventory NG の cvs.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2166 2012-09-25 17:27 2009-06-22 Show GitHub Exploit DB Packet Storm
189448 6.8 警告 kjtechforce - Kjtechforce mailman における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2164 2012-09-25 17:27 2009-06-22 Show GitHub Exploit DB Packet Storm
189449 7.5 危険 isabela gasparini - AdaptWeb の a_index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2152 2012-09-25 17:27 2009-06-22 Show GitHub Exploit DB Packet Storm
189450 4.3 警告 pantha - transLucid におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2145 2012-09-25 17:27 2009-06-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1581 - - - Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions. - CVE-2024-47898 2025-01-31 13:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1582 - - - Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions. - CVE-2024-47891 2025-01-31 13:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1583 6.4 MEDIUM
Network 		- - The SeatReg plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'seatreg' shortcode in all versions up to, and including, 1.56.0 due to insufficient input sanitization … CWE-79
Cross-site Scripting 		CVE-2024-13463 2025-01-31 13:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1584 - - - Software installed and run as a non-privileged user may conduct improper read/write operations on imported/exported DMA buffers. - CVE-2024-46974 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1585 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… - CVE-2024-13817 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1586 8.1 HIGH
Network 		- - The Live2DWebCanvas plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the ClearFiles() function in all versions up to, and including, 1.9.11. T… CWE-862
 Missing Authorization 		CVE-2024-13767 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1587 6.4 MEDIUM
Network 		- - The Gosign – Posts Slider Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'posts-slider-block' block in all versions up to, and including, 1.1.0 due to insufficient in… CWE-79
Cross-site Scripting 		CVE-2024-13399 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1588 6.4 MEDIUM
Network 		- - The WPRadio – WordPress Radio Streaming Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpradio_player' shortcode in all versions up to, and including, 1.0.… CWE-79
Cross-site Scripting 		CVE-2024-13397 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1589 6.4 MEDIUM
Network 		- - The Frictionless plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'frictionless_form' shortcode[s] in all versions up to, and including, 0.0.23 due to insufficient i… CWE-79
Cross-site Scripting 		CVE-2024-13396 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1590 - - - gdbus setgid privilege escalation - CVE-2020-11936 2025-01-31 11:15 2025-01-31 Show GitHub Exploit DB Packet Storm