Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2101 7.8 重要
Local 		マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2019 		Windows カーネルモード ドライバーの特権の昇格の脆弱性 CWE-416
CWE-noinfo
CVE-2024-49074 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
2102 6.8 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window… 		Windows モバイル ブロードバンド ドライバーの特権昇格の脆弱性 CWE-125
CWE-191
CWE-noinfo
CVE-2024-49077 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
2103 6.8 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window… 		Windows モバイル ブロードバンド ドライバーの特権昇格の脆弱性 CWE-125
CWE-noinfo
CVE-2024-49083 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
2104 6.6 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window… 		ワイヤレス広域ネットワーク サービス (WwanSvc) の特権昇格の脆弱性 CWE-122
CWE-noinfo
CVE-2024-49094 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
2105 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel におけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2021-47055 2025-01-14 16:20 2021-03-28 Show GitHub Exploit DB Packet Storm
2106 4.3 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window… 		Windows ワイヤレス ワイド エリア ネットワーク サービス (WwanSvc) の情報漏えいの脆弱性 CWE-125
CWE-noinfo
CVE-2024-49099 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
2107 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Window… 		Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-49104 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
2108 6.6 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window… 		ワイヤレス広域ネットワーク サービス (WwanSvc) の特権昇格の脆弱性 CWE-125
CWE-noinfo
CVE-2024-49109 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
2109 4.3 警告
Network 		Jegtheme Jeg Elementor Kit Jegtheme の WordPress 用 Jeg Elementor Kit における重要な情報のセキュアでない格納に関する脆弱性 CWE-200
CWE-922
CVE-2024-8899 2025-01-14 16:18 2024-11-26 Show GitHub Exploit DB Packet Storm
2110 6.5 警告
Network 		argoproj argo cd argoproj の argo cd における脆弱性 CWE-269
CWE-noinfo
CVE-2024-41666 2025-01-14 16:17 2024-07-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
111 6.5 MEDIUM
Network 		wpexperts givewp_square The WPExperts Square For GiveWP plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter in all versions up to, and including, 1.3.1 due to insufficient escaping on the user suppl… Update CWE-89
SQL Injection 		CVE-2024-13713 2025-02-25 12:28 2025-02-21 Show GitHub Exploit DB Packet Storm
112 4.9 MEDIUM
Network 		wpindeed ultimate_learning_pro The Indeed Ultimate Learning Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’ parameter in all versions up to, and including, 3.9 due to insufficient escaping on t… Update CWE-89
SQL Injection 		CVE-2024-13846 2025-02-25 12:27 2025-02-21 Show GitHub Exploit DB Packet Storm
113 6.3 MEDIUM
Network 		- - A vulnerability classified as critical was found in Benner Connecta 1.0.5330. Affected by this vulnerability is an unknown functionality of the file /Usuarios/Usuario/EditarLogado/. The manipulation … New CWE-99
Resource Injection 		CVE-2025-1645 2025-02-25 11:15 2025-02-25 Show GitHub Exploit DB Packet Storm
114 4.3 MEDIUM
Network 		- - A vulnerability classified as problematic has been found in Benner ModernaNet up to 1.2.0. Affected is an unknown function of the file /DadosPessoais/SG_Gravar. The manipulation of the argument idItA… New CWE-352
CWE-862
 Origin Validation Error
 Missing Authorization 		CVE-2025-1644 2025-02-25 11:15 2025-02-25 Show GitHub Exploit DB Packet Storm
115 4.3 MEDIUM
Network 		- - A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been rated as problematic. This issue affects some unknown processing of the file /DadosPessoais/SG_AlterarSenha. The manipulation l… New CWE-352
CWE-862
 Origin Validation Error
 Missing Authorization 		CVE-2025-1643 2025-02-25 10:15 2025-02-25 Show GitHub Exploit DB Packet Storm
116 4.3 MEDIUM
Network 		- - A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been declared as critical. This vulnerability affects unknown code of the file /AGE0000700/GetImageMedico?fooId=1. The manipulation … New CWE-99
Resource Injection 		CVE-2025-1642 2025-02-25 10:15 2025-02-25 Show GitHub Exploit DB Packet Storm
117 7.3 HIGH
Network 		- - A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been classified as critical. This affects an unknown part of the file /AGE0000700/GetHorariosDoDia?idespec=0&idproced=1103&data=2025… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1641 2025-02-25 09:15 2025-02-25 Show GitHub Exploit DB Packet Storm
118 7.3 HIGH
Network 		- - A vulnerability was found in Benner ModernaNet up to 1.1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /Home/JS_CarregaCombo?formName=DADOS_PESSOAIS_P… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1640 2025-02-25 09:15 2025-02-25 Show GitHub Exploit DB Packet Storm
119 - - - An issue in sparkshop v.1.1.7 and before allows a remote attacker to execute arbitrary code via a crafted phar file. New - CVE-2024-57685 2025-02-25 08:15 2025-02-25 Show GitHub Exploit DB Packet Storm
120 - - - NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 was discovered to contain a SQL injection vulnerability via the addProject method in the smarttimeplus/MySQLConnection endpoint. New - CVE-2024-53543 2025-02-25 08:15 2025-02-25 Show GitHub Exploit DB Packet Storm