Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
11 5.5 警告
Local 		アップル iOS
iPadOS 		アップルの iPadOS および iOS におけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2025-24104 2025-01-31 15:58 2025-01-27 Show GitHub Exploit DB Packet Storm
12 7.5 重要
Network 		アップル Safari アップルの Safari および macOS における脆弱性 CWE-Other
その他 		CVE-2025-24169 2025-01-31 15:55 2025-01-27 Show GitHub Exploit DB Packet Storm
13 4.7 警告
Local 		- アップルの macOS における競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2025-24094 2025-01-31 15:52 2025-01-27 Show GitHub Exploit DB Packet Storm
14 5.5 警告
Local 		アップル tvOS
watchOS
iPadOS
iOS
visionos 		複数のアップル製品における脆弱性 CWE-noinfo
情報不足 		CVE-2025-24161 2025-01-31 15:52 2025-01-27 Show GitHub Exploit DB Packet Storm
15 5.5 警告
Local 		- アップルの macOS における脆弱性 CWE-noinfo
情報不足 		CVE-2025-24112 2025-01-31 15:51 2025-01-27 Show GitHub Exploit DB Packet Storm
16 7.8 重要
Local 		アップル watchOS
iOS
tvOS
iPadOS 		複数のアップル製品における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2024-54517 2025-01-31 15:48 2024-12-11 Show GitHub Exploit DB Packet Storm
17 3.3
Local 		アップル iOS
iPadOS 		複数のアップル製品におけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2025-24145 2025-01-31 15:47 2025-01-27 Show GitHub Exploit DB Packet Storm
18 4.3 警告
Network 		IKJWEB zStore Manager Basic IKJWEB の WordPress 用 zStore Manager Basic における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-13715 2025-01-31 15:46 2025-01-30 Show GitHub Exploit DB Packet Storm
19 7.8 重要
Local 		マイクロソフト Azure Monitor Agent Azure Monitor エージェントの特権昇格の脆弱性 CWE-59
CWE-noinfo
CVE-2024-30060 2025-01-31 15:45 2024-05-16 Show GitHub Exploit DB Packet Storm
20 4.4 警告
Local 		- アップルの macOS におけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2025-24136 2025-01-31 15:44 2025-01-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
921 - - - An issue in compop.ca ONLINE MALL v.3.5.3 allows a remote attacker to execute arbitrary code via the rid, tid, et, and ts parameters. - CVE-2024-48445 2025-02-7 00:15 2025-02-5 Show GitHub Exploit DB Packet Storm
922 - - - The "NagVis" component within Checkmk is vulnerable to remote code execution. An authenticated attacker with administrative level privileges is able to upload a malicious PHP file and modify specific… - CVE-2024-13723 2025-02-7 00:15 2025-02-5 Show GitHub Exploit DB Packet Storm
923 - - - The "NagVis" component within Checkmk is vulnerable to reflected cross-site scripting. An attacker can craft a malicious link that will execute arbitrary JavaScript in the context of the browser once… - CVE-2024-13722 2025-02-7 00:15 2025-02-5 Show GitHub Exploit DB Packet Storm
924 - - - DevDojo Voyager through version 1.8.0 is vulnerable to reflected XSS via /admin/compass. By manipulating an authenticated user to click on a link, arbitrary Javascript can be executed. - CVE-2024-55416 2025-02-7 00:15 2025-01-31 Show GitHub Exploit DB Packet Storm
925 - - - DevDojo Voyager through 1.8.0 is vulnerable to path traversal at the /admin/compass. - CVE-2024-55415 2025-02-7 00:15 2025-01-31 Show GitHub Exploit DB Packet Storm
926 - - - A command injection vulnerability in the video thumbnail rendering component of Karl Ward's files.gallery v0.3.0 through 0.11.0 allows remote attackers to execute arbitrary code via a crafted video f… - CVE-2024-53615 2025-02-7 00:15 2025-01-31 Show GitHub Exploit DB Packet Storm
927 - - - A Stored Cross-Site Scripting (Stored XSS) vulnerability has been found in the Holded application. This vulnerability could allow an attacker to store a JavaScript payload within the editable ‘name’ … CWE-79
Cross-site Scripting 		CVE-2025-1076 2025-02-6 23:15 2025-02-6 Show GitHub Exploit DB Packet Storm
928 4.3 MEDIUM
Network 		- - A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads… CWE-352
CWE-862
 Origin Validation Error
 Missing Authorization 		CVE-2025-1074 2025-02-6 23:15 2025-02-6 Show GitHub Exploit DB Packet Storm
929 - - - In rare scenarios, the cpca process on the Security Management Server / Domain Management Server may exit unexpectedly, creating a core dump file. When the cpca process is down, VPN and SIC connectiv… - CVE-2024-24911 2025-02-6 23:15 2025-02-6 Show GitHub Exploit DB Packet Storm
930 - - - VMware Aria Operations for Logs contains a privilege escalation vulnerability. A malicious actor with non-administrative privileges and network access to Aria Operations for Logs API may be able to p… - CVE-2025-22220 2025-02-6 23:15 2025-01-31 Show GitHub Exploit DB Packet Storm