Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
221	7.1	重要 Local	Ivanti	secure access client	Ivanti の secure access client における脆弱性 New	CWE-267 CWE-Other	CVE-2024-8539	2025-01-20 18:26	2024-11-12	Show	GitHub Exploit DB Packet Storm

222	5.5	警告 Local	Huawei	EMUI HarmonyOS	Huawei の EMUI および HarmonyOS における脆弱性 New	CWE-20 CWE-noinfo	CVE-2024-54101	2025-01-20 18:25	2024-12-12	Show	GitHub Exploit DB Packet Storm

223	7.2	重要 Network	instantcms	instantcms	instantcms における SQL インジェクションの脆弱性 New	CWE-20 CWE-89 CWE-89	CVE-2024-31212	2025-01-20 18:24	2024-04-4	Show	GitHub Exploit DB Packet Storm

224	9.8	緊急 Network	StylemixThemes	MasterStudy LMS	StylemixThemes の WordPress 用 MasterStudy LMS における脆弱性 New	CWE-Other その他	CVE-2024-3136	2025-01-20 18:24	2024-04-9	Show	GitHub Exploit DB Packet Storm

225	9.8	緊急 Network	Argie	Online courseware	Argie の Online courseware における SQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2024-3421	2025-01-20 18:24	2024-04-7	Show	GitHub Exploit DB Packet Storm

226	6.1	警告 Network	Argie	Online courseware	Argie の Online courseware におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3428	2025-01-20 18:24	2024-04-7	Show	GitHub Exploit DB Packet Storm

227	5.4	警告 Network	WebTechStreet	Elementor Addon Elements	WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3743	2025-01-20 18:24	2024-05-2	Show	GitHub Exploit DB Packet Storm

228	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	ac500 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の ac500 ファームウェアにおけるコマンドインジェクションの脆弱性 New	CWE-77 コマンドインジェクション	CVE-2024-3908	2025-01-20 18:24	2024-04-17	Show	GitHub Exploit DB Packet Storm

229	5.4	警告 Network	Jenkins プロジェクト	OWASP Dependency-Check	Jenkins プロジェクトの Jenkins 用 OWASP Dependency-Check におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-28153	2025-01-20 18:22	2024-03-6	Show	GitHub Exploit DB Packet Storm

230	5.4	警告 Network	Nextend	Nextend Social Login and Register	Nextend の WordPress 用 Nextend Social Login and Register におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1775	2025-01-20 18:17	2024-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274991	-	dotclear	dotclear	Cross-site scripting (XSS) vulnerability in ecrire/tools.php in DotClear 1.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified form fields on the blogroll page.	NVD-CWE-Other	CVE-2007-3672	2008-11-15 15:53	2007-07-11	Show	GitHub Exploit DB Packet Storm

274992	-	hiddenchest	yb_ve_bayi_babvuru_formu	Multiple cross-site scripting (XSS) vulnerabilities in HiddenChest "is ve Bayi Basvuru Formu" (Yb ve Bayi Babvuru Formu) allow remote attackers to inject arbitrary web script or HTML via unspecified …	NVD-CWE-Other	CVE-2007-3712	2008-11-15 15:53	2007-07-12	Show	GitHub Exploit DB Packet Storm

274993	-	apple	safari	Multiple unspecified vulnerabilities in the SVG parsing engine in Apple Safari 3 Beta for Windows have unspecified remote attack vectors and impact. NOTE: this issue contains no actionable informati…	NVD-CWE-Other	CVE-2007-3718	2008-11-15 15:53	2007-07-13	Show	GitHub Exploit DB Packet Storm

274994	-	apple	safari	As no educated conclusion could be drawn, impact set as "obtain other access" by default.	NVD-CWE-Other	CVE-2007-3718	2008-11-15 15:53	2007-07-13	Show	GitHub Exploit DB Packet Storm

274995	-	linux	linux_kernel	The process scheduler in the Linux kernel 2.6.16 gives preference to "interactive" processes that perform voluntary sleeps, which allows local users to cause a denial of service (CPU consumption), as…	NVD-CWE-Other	CVE-2007-3719	2008-11-15 15:53	2007-07-13	Show	GitHub Exploit DB Packet Storm

274996	-	linux	linux_kernel	The process scheduler in the Linux kernel 2.4 performs scheduling based on CPU billing gathered from periodic process sampling ticks, which allows local users to cause a denial of service (CPU consum…	NVD-CWE-Other	CVE-2007-3720	2008-11-15 15:53	2007-07-13	Show	GitHub Exploit DB Packet Storm

274997	-	freebsd	freebsd	The ULE process scheduler in the FreeBSD kernel gives preference to "interactive" processes that perform voluntary sleeps, which allows local users to cause a denial of service (CPU consumption), as …	NVD-CWE-Other	CVE-2007-3721	2008-11-15 15:53	2007-07-13	Show	GitHub Exploit DB Packet Storm

274998	-	freebsd	freebsd	The 4BSD process scheduler in the FreeBSD kernel performs scheduling based on CPU billing gathered from periodic process sampling ticks, which allows local users to cause a denial of service (CPU con…	NVD-CWE-Other	CVE-2007-3722	2008-11-15 15:53	2007-07-13	Show	GitHub Exploit DB Packet Storm

274999	-	sun	solaris	The process scheduler in the Sun Solaris kernel does not make use of the process statistics kept by the kernel and performs scheduling based upon CPU billing gathered from periodic process sampling t…	NVD-CWE-Other	CVE-2007-3723	2008-11-15 15:53	2007-07-13	Show	GitHub Exploit DB Packet Storm

275000	-	microsoft	windows_xp	The process scheduler in the Microsoft Windows XP kernel does not make use of the process statistics kept by the kernel, performs scheduling based on CPU billing gathered from periodic process sampli…	NVD-CWE-Other	CVE-2007-3724	2008-11-15 15:53	2007-07-13	Show	GitHub Exploit DB Packet Storm