Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 9, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207501 4.7 警告 サイバートラスト株式会社
Linux
レッドハット		 - x86_64 および amd64 プラットフォーム上 Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4271 2010-05-10 18:25 2010-03-16 Show GitHub Exploit DB Packet Storm
207502 5 警告 VMware - VMware Authorization Service の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3707 2010-05-7 17:26 2009-10-16 Show GitHub Exploit DB Packet Storm
207503 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-1565 2010-05-7 17:26 2010-04-9 Show GitHub Exploit DB Packet Storm
207504 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1564 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
207505 10 危険 VMware - VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3732 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
207506 7.2 危険 VMware - 複数の VMware 製品の vmrun における権限昇格の脆弱性 CWE-134
書式文字列の問題 		CVE-2010-1139 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
207507 5 警告 VMware - 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1138 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
207508 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
207509 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1141 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
207510 5 警告 アップル
サイバートラスト株式会社
レッドハット
ターボリナックス
CUPS		 - CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0949 2010-05-7 16:55 2009-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
61 5.3 MEDIUM
Network 		- - The InfiniteWP Client plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.13.0 via the 'historyID' parameter of the ~/debug-chart/index.php file. This makes i… New CWE-22
Path Traversal 		CVE-2024-10585 2025-01-8 15:15 2025-01-8 Show GitHub Exploit DB Packet Storm
62 - - - cpdf through 2.8 allows stack consumption via a crafted PDF document. New - CVE-2024-54731 2025-01-8 14:15 2025-01-8 Show GitHub Exploit DB Packet Storm
63 6.4 MEDIUM
Network 		- - The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the TF E Slider Widget in all versions up to, and including, 2.2.4 due to insufficient input … New CWE-79
Cross-site Scripting 		CVE-2024-12205 2025-01-8 14:15 2025-01-8 Show GitHub Exploit DB Packet Storm
64 6.5 MEDIUM
Network 		- - The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to SQL Injection via the 'key' attribute of the 'mdf_value' shortcode in all versions up to, and including, 1.3.3.5 due t… New CWE-89
SQL Injection 		CVE-2024-12030 2025-01-8 14:15 2025-01-8 Show GitHub Exploit DB Packet Storm
65 8.8 HIGH
Network 		- - The WordPress Webinar Plugin – WebinarPress plugin for WordPress is vulnerable to modification of data due to a missing capability check on several functions in all versions up to, and including, 1.3… New CWE-862
 Missing Authorization 		CVE-2024-11271 2025-01-8 14:15 2025-01-8 Show GitHub Exploit DB Packet Storm
66 8.8 HIGH
Network 		- - The WordPress Webinar Plugin – WebinarPress plugin for WordPress is vulnerable to arbitrary file creation due to a missing capability check on the 'sync-import-imgs' function and missing file type va… New CWE-862
 Missing Authorization 		CVE-2024-11270 2025-01-8 14:15 2025-01-8 Show GitHub Exploit DB Packet Storm
67 - - - Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. New - CVE-2024-56456 2025-01-8 13:15 2025-01-8 Show GitHub Exploit DB Packet Storm
68 - - - Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. New - CVE-2024-56455 2025-01-8 13:15 2025-01-8 Show GitHub Exploit DB Packet Storm
69 - - - Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. New - CVE-2024-56454 2025-01-8 13:15 2025-01-8 Show GitHub Exploit DB Packet Storm
70 - - - Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. New - CVE-2024-56453 2025-01-8 13:15 2025-01-8 Show GitHub Exploit DB Packet Storm