Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2081 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2024-56723 2025-01-14 16:39 2024-10-16 Show GitHub Exploit DB Packet Storm
2082 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-53226 2025-01-14 16:37 2024-11-10 Show GitHub Exploit DB Packet Storm
2083 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-53238 2025-01-14 16:37 2024-11-14 Show GitHub Exploit DB Packet Storm
2084 6.5 警告
Network 		マイクロソフト PowerBI-client JS SDK Microsoft Power BI クライアント JavaScript SDK の情報漏えいの脆弱性 CWE-20
CWE-noinfo
CVE-2024-30054 2025-01-14 16:36 2024-05-14 Show GitHub Exploit DB Packet Storm
2085 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-56588 2025-01-14 16:36 2024-10-15 Show GitHub Exploit DB Packet Storm
2086 7.5 重要
Network 		Open-MSS Mission Support System Open-MSS の Mission Support System におけるパストラバーサルの脆弱性 CWE-22
CWE-22
CVE-2024-25123 2025-01-14 16:36 2024-02-15 Show GitHub Exploit DB Packet Storm
2087 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-56541 2025-01-14 16:34 2024-10-7 Show GitHub Exploit DB Packet Storm
2088 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-56599 2025-01-14 16:34 2024-10-16 Show GitHub Exploit DB Packet Storm
2089 6.3 警告
Network 		マイクロソフト Microsoft Visual Studio
PowerShell
.NET 		.NET と Visual Studio のリモート コードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-30045 2025-01-14 16:33 2024-05-14 Show GitHub Exploit DB Packet Storm
2090 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-53222 2025-01-14 16:32 2024-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
111 6.5 MEDIUM
Network 		wpexperts givewp_square The WPExperts Square For GiveWP plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter in all versions up to, and including, 1.3.1 due to insufficient escaping on the user suppl… Update CWE-89
SQL Injection 		CVE-2024-13713 2025-02-25 12:28 2025-02-21 Show GitHub Exploit DB Packet Storm
112 4.9 MEDIUM
Network 		wpindeed ultimate_learning_pro The Indeed Ultimate Learning Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’ parameter in all versions up to, and including, 3.9 due to insufficient escaping on t… Update CWE-89
SQL Injection 		CVE-2024-13846 2025-02-25 12:27 2025-02-21 Show GitHub Exploit DB Packet Storm
113 6.3 MEDIUM
Network 		- - A vulnerability classified as critical was found in Benner Connecta 1.0.5330. Affected by this vulnerability is an unknown functionality of the file /Usuarios/Usuario/EditarLogado/. The manipulation … New CWE-99
Resource Injection 		CVE-2025-1645 2025-02-25 11:15 2025-02-25 Show GitHub Exploit DB Packet Storm
114 4.3 MEDIUM
Network 		- - A vulnerability classified as problematic has been found in Benner ModernaNet up to 1.2.0. Affected is an unknown function of the file /DadosPessoais/SG_Gravar. The manipulation of the argument idItA… New CWE-352
CWE-862
 Origin Validation Error
 Missing Authorization 		CVE-2025-1644 2025-02-25 11:15 2025-02-25 Show GitHub Exploit DB Packet Storm
115 4.3 MEDIUM
Network 		- - A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been rated as problematic. This issue affects some unknown processing of the file /DadosPessoais/SG_AlterarSenha. The manipulation l… New CWE-352
CWE-862
 Origin Validation Error
 Missing Authorization 		CVE-2025-1643 2025-02-25 10:15 2025-02-25 Show GitHub Exploit DB Packet Storm
116 4.3 MEDIUM
Network 		- - A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been declared as critical. This vulnerability affects unknown code of the file /AGE0000700/GetImageMedico?fooId=1. The manipulation … New CWE-99
Resource Injection 		CVE-2025-1642 2025-02-25 10:15 2025-02-25 Show GitHub Exploit DB Packet Storm
117 7.3 HIGH
Network 		- - A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been classified as critical. This affects an unknown part of the file /AGE0000700/GetHorariosDoDia?idespec=0&idproced=1103&data=2025… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1641 2025-02-25 09:15 2025-02-25 Show GitHub Exploit DB Packet Storm
118 7.3 HIGH
Network 		- - A vulnerability was found in Benner ModernaNet up to 1.1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /Home/JS_CarregaCombo?formName=DADOS_PESSOAIS_P… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1640 2025-02-25 09:15 2025-02-25 Show GitHub Exploit DB Packet Storm
119 - - - An issue in sparkshop v.1.1.7 and before allows a remote attacker to execute arbitrary code via a crafted phar file. New - CVE-2024-57685 2025-02-25 08:15 2025-02-25 Show GitHub Exploit DB Packet Storm
120 - - - NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 was discovered to contain a SQL injection vulnerability via the addProject method in the smarttimeplus/MySQLConnection endpoint. New - CVE-2024-53543 2025-02-25 08:15 2025-02-25 Show GitHub Exploit DB Packet Storm