Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2111 8.8 重要
Network 		XWiki xwiki XWiki の xwiki における認証の欠如に関する脆弱性 CWE-862
CWE-862
CVE-2024-31997 2025-01-14 16:17 2024-04-10 Show GitHub Exploit DB Packet Storm
2112 6.5 警告
Local 		cilium cilium cilium における脆弱性 CWE-200
CWE-noinfo
CVE-2024-37307 2025-01-14 16:17 2024-06-13 Show GitHub Exploit DB Packet Storm
2113 7.5 重要
Network 		デル EMC PowerScale OneFS デルの EMC PowerScale OneFS における暗号アルゴリズムの使用に関する脆弱性 CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2024-25963 2025-01-14 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
2114 5.4 警告
Network 		argoproj argo cd argoproj の argo cd におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-28175 2025-01-14 16:16 2024-03-13 Show GitHub Exploit DB Packet Storm
2115 6.5 警告
Network 		argoproj argo cd argoproj の argo cd における脆弱性 CWE-400
CWE-noinfo
CVE-2024-29893 2025-01-14 16:15 2024-03-29 Show GitHub Exploit DB Packet Storm
2116 5.9 警告
Network 		sigstore cosign sigstore の cosign における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
CWE-770
CVE-2024-29902 2025-01-14 16:15 2024-04-10 Show GitHub Exploit DB Packet Storm
2117 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-47040 2025-01-14 16:14 2021-04-17 Show GitHub Exploit DB Packet Storm
2118 5.4 警告
Network 		WPZOOM beaver builder addons WPZOOM の WordPress 用 beaver builder addons におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2181 2025-01-14 16:08 2024-04-9 Show GitHub Exploit DB Packet Storm
2119 5.4 警告
Network 		IdeaBox Creations PowerPack Addons for Elementor IdeaBox Creations の WordPress 用 PowerPack Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2492 2025-01-14 16:08 2024-04-9 Show GitHub Exploit DB Packet Storm
2120 7.8 重要
Local 		デル EMC PowerScale OneFS デルの EMC PowerScale OneFS における重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2024-25960 2025-01-14 16:08 2024-03-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
11 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wumii team ???????? allows Stored XSS. This issue affects ????????: from n/a through 1.0.5.7. New CWE-79
Cross-site Scripting 		CVE-2025-27352 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
12 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ExpertBusinessSearch Local Search SEO Contact Page allows Stored XSS. This issue affects Local Se… New CWE-79
Cross-site Scripting 		CVE-2025-27351 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
13 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in nurelm Get Posts allows Stored XSS. This issue affects Get Posts: from n/a through 0.6. New CWE-79
Cross-site Scripting 		CVE-2025-27349 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
14 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Daniel WP Social SEO Booster – Knowledge Graph Social Signals SEO allows Stored XSS. This issue a… New CWE-79
Cross-site Scripting 		CVE-2025-27348 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
15 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in techmix Direct Checkout Button for WooCommerce allows Stored XSS. This issue affects Direct Check… New CWE-79
Cross-site Scripting 		CVE-2025-27347 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
16 - - - Cross-Site Request Forgery (CSRF) vulnerability in filipstepanov Phee's LinkPreview allows Cross Site Request Forgery. This issue affects Phee's LinkPreview: from n/a through 1.6.7. New CWE-352
 Origin Validation Error 		CVE-2025-27344 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
17 - - - Cross-Site Request Forgery (CSRF) vulnerability in josesan WooCommerce Recargo de Equivalencia allows Cross Site Request Forgery. This issue affects WooCommerce Recargo de Equivalencia: from n/a thro… New CWE-352
 Origin Validation Error 		CVE-2025-27342 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
18 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in afzal_du Reactive Mortgage Calculator allows Stored XSS. This issue affects Reactive Mortgage Cal… New CWE-79
Cross-site Scripting 		CVE-2025-27341 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
19 - - - Cross-Site Request Forgery (CSRF) vulnerability in Marc F12-Profiler allows Cross Site Request Forgery. This issue affects F12-Profiler: from n/a through 1.3.9. New CWE-352
 Origin Validation Error 		CVE-2025-27340 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm
20 - - - Cross-Site Request Forgery (CSRF) vulnerability in Will Anderson Minimum Password Strength allows Cross Site Request Forgery. This issue affects Minimum Password Strength: from n/a through 1.2.0. New CWE-352
 Origin Validation Error 		CVE-2025-27339 2025-02-25 00:15 2025-02-25 Show GitHub Exploit DB Packet Storm