Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2051	9.8	緊急 Network	マイクロソフト	Microsoft Configuration Manager	Microsoft Configuration Manager のリモートでコードが実行される脆弱性	CWE-89 CWE-noinfo	CVE-2024-43468	2025-01-14 17:52	2024-10-8	Show	GitHub Exploit DB Packet Storm

2052	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2024-56715	2025-01-14 17:47	2024-12-15	Show	GitHub Exploit DB Packet Storm

2053	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-53227	2025-01-14 17:44	2024-11-6	Show	GitHub Exploit DB Packet Storm

2054	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-35953	2025-01-14 17:41	2024-04-8	Show	GitHub Exploit DB Packet Storm

2055	5.5	警告 Local	Debian Linux	Debian GNU/Linux Linux Kernel	Linux の Linux Kernel 等複数ベンダの製品におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-35806	2025-01-14 17:38	2024-03-13	Show	GitHub Exploit DB Packet Storm

2056	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2024-56740	2025-01-14 17:37	2024-11-9	Show	GitHub Exploit DB Packet Storm

2057	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-56759	2025-01-14 17:37	2024-12-23	Show	GitHub Exploit DB Packet Storm

2058	4.7	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2024-56729	2025-01-14 17:37	2024-11-26	Show	GitHub Exploit DB Packet Storm

2059	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-35795	2025-01-14 17:34	2024-03-27	Show	GitHub Exploit DB Packet Storm

2060	8.8	重要 Network	マイクロソフト	Azure CycleCloud	Azure CycleCloud の特権の昇格の脆弱性	CWE-284 CWE-noinfo	CVE-2024-29993	2025-01-14 17:34	2024-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
61	-	-	-	dom-expressions is a Fine-Grained Runtime for Performant DOM Rendering. In affected versions the use of javascript's `.replace()` opens up to potential Cross-site Scripting (XSS) vulnerabilities with… New	CWE-79 CWE-116 Cross-site Scripting Improper Encoding or Escaping of Output	CVE-2025-27108	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

62	-	-	-	A Cross-Site Request Forgery (CSRF) in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request. New	-	CVE-2025-25772	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

63	-	-	-	A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data. New	-	CVE-2025-25878	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

64	-	-	-	A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain sensitive data. New	-	CVE-2025-25877	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

65	-	-	-	oxyno-zeta/s3-proxy is an aws s3 proxy written in go. In affected versions a Reflected Cross-site Scripting (XSS) vulnerability enables attackers to create malicious URLs that, when visited, inject s… New	-	CVE-2025-27088	2025-02-22 07:15	2025-02-21	Show	GitHub Exploit DB Packet Storm

66	-	-	-	A remote code execution (RCE) vulnerability in the ZScript function of ZDoom Team GZDoom v4.13.1 allows attackers to execute arbitrary code via supplying a crafted PK3 file containing a malicious ZSc… New	-	CVE-2024-54756	2025-02-22 07:15	2025-02-21	Show	GitHub Exploit DB Packet Storm

67	-	-	-	Cross Site Scripting vulnerability in phpcmsv9 v.9.6.3 allows a remote attacker to escalate privileges via the menu interface of the member center of the background administrator. New	-	CVE-2025-25960	2025-02-22 07:15	2025-02-21	Show	GitHub Exploit DB Packet Storm

68	-	-	-	PHPJabbers Meeting Room Booking System v1.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) in the "title, name" parameters of index.php page. New	-	CVE-2023-51338	2025-02-22 07:15	2025-02-21	Show	GitHub Exploit DB Packet Storm

69	-	-	-	PHPJabbers Event Ticketing System v1.0 is vulnerable to Reflected Cross-Site Scripting (XSS) in "lid" parameter in index. New	-	CVE-2023-51337	2025-02-22 07:15	2025-02-21	Show	GitHub Exploit DB Packet Storm

70	-	-	-	PHPJabbers Meeting Room Booking System v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation… New	-	CVE-2023-51336	2025-02-22 07:15	2025-02-21	Show	GitHub Exploit DB Packet Storm