Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Jan. 16, 2025, 2:03 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 221 | 9.8 |
緊急
Network codezips |
e-commerce site
|
codezips の e-commerce site における SQL インジェクションの脆弱性
New
|
CWE-74 |
CWE-89 CWE-89
CVE-2024-12884
|
2025-01-14 18:49 |
2024-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 222 | 5.4 |
警告
Network |
osuuu | lightpicture | osuuu の lightpicture におけるクロスサイトスクリプティングの脆弱性 New |
CWE-79 CWE-79 CWE-94 |
CVE-2024-13141 | 2025-01-14 18:49 | 2025-01-5 | Show | GitHub Exploit DB Packet Storm |
| 223 | 7.5 |
重要
Network lunary |
lunary
|
lunary における不正な認証に関する脆弱性
New
|
CWE-863
|
不正な認証
CVE-2024-1738
|
2025-01-14 18:49 |
2024-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 224 | 9.1 |
緊急
Network lunary |
lunary
|
lunary における不正な認証に関する脆弱性
New
|
CWE-285 |
CWE-863
CVE-2024-1741
|
2025-01-14 18:49 |
2024-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 225 | 6.5 |
警告
Network |
@ScrapyProject | Scrapy | @ScrapyProject の Scrapy における非効率的な正規表現の複雑さに関する脆弱性 New |
CWE-1333
非効率的な正規表現の複雑さ |
CVE-2024-1892 | 2025-01-14 18:49 | 2024-02-28 | Show | GitHub Exploit DB Packet Storm |
| 226 | 7.5 |
重要
Network lunary |
lunary
|
lunary における脆弱性
New
|
CWE-821 |
CWE-Other
CVE-2024-1902
|
2025-01-14 18:49 |
2024-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 227 | 6.5 |
警告
Network |
Mattermost, Inc. | Mattermost Server | Mattermost, Inc. の Mattermost Server における認証の欠如に関する脆弱性 New |
CWE-200 CWE-862 |
CVE-2024-23493 | 2025-01-14 18:49 | 2024-02-29 | Show | GitHub Exploit DB Packet Storm |
| 228 | 6.5 |
警告
Network |
Mattermost, Inc. | Mattermost Server | Mattermost, Inc. の Mattermost Server における脆弱性 New |
CWE-400 CWE-noinfo |
CVE-2024-24988 | 2025-01-14 18:49 | 2024-02-29 | Show | GitHub Exploit DB Packet Storm |
| 229 | 5.5 |
警告
Local |
クアルコム |
WCN3680B ファームウェア wcn3980 ファームウェア sw5100p ファームウェア WSA8835 ファームウェア WSA8830 ファームウェア WCN3660B ファームウェア sw5100 ファームウェア qcs8550 ファームウェア WCN398… |
複数のクアルコム製品における境界外読み取りに関する脆弱性 New |
CWE-125 CWE-126 |
CVE-2024-33061 | 2025-01-14 18:49 | 2024-04-23 | Show | GitHub Exploit DB Packet Storm |
| 230 | 6.4 |
警告
Network |
WPDeveloper | Essential Addons for Elementor | WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2024-3645 | 2025-01-14 18:49 | 2024-04-22 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Jan. 16, 2025, 4:15 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 321 | 8.8 |
HIGH
Network |
- | - | Active Directory Domain Services Elevation of Privilege Vulnerability New |
CWE-284
Improper Access Control |
CVE-2025-21293 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 322 | 8.8 |
HIGH
Local |
- | - | Windows Search Service Elevation of Privilege Vulnerability New |
CWE-94
Code Injection |
CVE-2025-21292 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 323 | 8.8 |
HIGH
Network |
- | - | Windows Direct Show Remote Code Execution Vulnerability New |
CWE-415
Double Free |
CVE-2025-21291 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 324 | 7.5 |
HIGH
Network
-
|
-
|
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
New
|
CWE-400
|
Uncontrolled Resource Consumption
CVE-2025-21290
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 325 | 7.5 |
HIGH
Network
-
|
-
|
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
New
|
CWE-400
|
Uncontrolled Resource Consumption
CVE-2025-21289
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 326 | 6.5 |
MEDIUM
Local |
- | - | Windows COM Server Information Disclosure Vulnerability New |
CWE-908
Use of Uninitialized Resource |
CVE-2025-21288 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 327 | 7.8 |
HIGH
Local |
- | - | Windows Installer Elevation of Privilege Vulnerability New |
CWE-269
Improper Privilege Management |
CVE-2025-21287 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 328 | 8.8 |
HIGH
Network |
- | - | Windows Telephony Service Remote Code Execution Vulnerability New |
CWE-122
Heap-based Buffer Overflow |
CVE-2025-21286 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 329 | 7.5 |
HIGH
Network
-
|
-
|
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
New
|
CWE-476
|
NULL Pointer Dereference
CVE-2025-21285
|
2025-01-15 03:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 330 | 5.5 |
MEDIUM
Local |
- | - | Windows Virtual Trusted Platform Module Denial of Service Vulnerability New |
CWE-20
Improper Input Validation |
CVE-2025-21284 | 2025-01-15 03:15 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |