Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2031	4.8	警告 Network	emlog	emlog	emlog におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79 CWE-94	CVE-2024-12846	2025-01-14 18:49	2024-12-21	Show	GitHub Exploit DB Packet Storm

2032	9.8	緊急 Network	codezips	e-commerce site	codezips の e-commerce site における SQL インジェクションの脆弱性	CWE-74 CWE-89 CWE-89	CVE-2024-12884	2025-01-14 18:49	2024-12-21	Show	GitHub Exploit DB Packet Storm

2033	5.4	警告 Network	osuuu	lightpicture	osuuu の lightpicture におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79 CWE-94	CVE-2024-13141	2025-01-14 18:49	2025-01-5	Show	GitHub Exploit DB Packet Storm

2034	7.5	重要 Network	lunary	lunary	lunary における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2024-1738	2025-01-14 18:49	2024-04-16	Show	GitHub Exploit DB Packet Storm

2035	9.1	緊急 Network	lunary	lunary	lunary における不正な認証に関する脆弱性	CWE-285 CWE-863	CVE-2024-1741	2025-01-14 18:49	2024-04-10	Show	GitHub Exploit DB Packet Storm

2036	6.5	警告 Network	@ScrapyProject	Scrapy	@ScrapyProject の Scrapy における非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 非効率的な正規表現の複雑さ	CVE-2024-1892	2025-01-14 18:49	2024-02-28	Show	GitHub Exploit DB Packet Storm

2037	7.5	重要 Network	lunary	lunary	lunary における脆弱性	CWE-821 CWE-Other	CVE-2024-1902	2025-01-14 18:49	2024-04-10	Show	GitHub Exploit DB Packet Storm

2038	6.5	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc. の Mattermost Server における認証の欠如に関する脆弱性	CWE-200 CWE-862	CVE-2024-23493	2025-01-14 18:49	2024-02-29	Show	GitHub Exploit DB Packet Storm

2039	6.5	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc. の Mattermost Server における脆弱性	CWE-400 CWE-noinfo	CVE-2024-24988	2025-01-14 18:49	2024-02-29	Show	GitHub Exploit DB Packet Storm

2040	5.5	警告 Local	クアルコム	WCN3680B ファームウェア wcn3980 ファームウェア sw5100p ファームウェア WSA8835 ファームウェア WSA8830 ファームウェア WCN3660B ファームウェア sw5100 ファームウェア qcs8550 ファームウェア WCN398…	複数のクアルコム製品における境界外読み取りに関する脆弱性	CWE-125 CWE-126	CVE-2024-33061	2025-01-14 18:49	2024-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
131	6.3	MEDIUM Network	-	-	A vulnerability was found in PHPGurukul Online Nurse Hiring System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /book-nurse.php?bookid… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-1581	2025-02-23 20:15	2025-02-23	Show	GitHub Exploit DB Packet Storm

132	6.3	MEDIUM Network	-	-	A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /search-report-result.php. The manip… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-1580	2025-02-23 19:15	2025-02-23	Show	GitHub Exploit DB Packet Storm

133	2.4	LOW Network	-	-	A vulnerability was found in code-projects Blood Bank System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/user.php. The manipulation of the argumen… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-1579	2025-02-23 18:15	2025-02-23	Show	GitHub Exploit DB Packet Storm

134	6.3	MEDIUM Network	-	-	A vulnerability, which was classified as critical, was found in PHPGurukul Online Shopping Portal 2.1. This affects an unknown part of the file /search-result.php. The manipulation of the argument pr… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-1578	2025-02-23 17:15	2025-02-23	Show	GitHub Exploit DB Packet Storm

135	3.5	LOW Network	-	-	A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank System 1.0. Affected by this issue is some unknown functionality of the file /prostatus.php. The manip… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-1577	2025-02-23 16:15	2025-02-23	Show	GitHub Exploit DB Packet Storm

136	6.1	MEDIUM Network	-	-	The Accept Donations with PayPal & Stripe plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the rf parameter in all versions up to, and including, 1.4.4 due to insufficient inp… New	CWE-79 Cross-site Scripting	CVE-2024-13728	2025-02-23 15:15	2025-02-23	Show	GitHub Exploit DB Packet Storm

137	6.3	MEDIUM Network	-	-	A vulnerability classified as critical was found in code-projects Real Estate Property Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax_state.php. T… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-1576	2025-02-23 14:15	2025-02-23	Show	GitHub Exploit DB Packet Storm

138	4.3	MEDIUM Network	-	-	A vulnerability classified as problematic has been found in Harpia DiagSystem 12. Affected is an unknown function of the file /diagsystem/PACS/atualatendimento_jpeg.php. The manipulation of the argum… New	CWE-99 Resource Injection	CVE-2025-1575	2025-02-23 13:15	2025-02-23	Show	GitHub Exploit DB Packet Storm

139	7.2	HIGH Network	-	-	The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'upload_files' function in all vers… New	-	CVE-2024-13869	2025-02-23 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

140	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in a1post A1POST.BG Shipping for Woo allows Privilege Escalation. This issue affects A1POST.BG Shipping for Woo: from n/a through 1.5.1. New	CWE-352 Origin Validation Error	CVE-2025-27012	2025-02-23 01:15	2025-02-23	Show	GitHub Exploit DB Packet Storm