Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 22, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231	5.4	警告 Network	Argie	Online courseware	Argie の Online courseware におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3426	2025-01-20 15:27	2024-04-7	Show	GitHub Exploit DB Packet Storm

232	8.8	重要 Network	Ivanti	connect secure	Ivanti の connect secure における脆弱性 New	CWE-602 CWE-Other	CVE-2024-9844	2025-01-20 15:27	2024-12-10	Show	GitHub Exploit DB Packet Storm

233	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Window…	Windows CSC Service Elevation of Privilege Vulnerability New	CWE-122 CWE-noinfo	CVE-2025-21378	2025-01-20 15:26	2025-01-14	Show	GitHub Exploit DB Packet Storm

234	4.3	警告 Network	WebTechStreet	Elementor Addon Elements	WebTechStreet の WordPress 用 Elementor Addon Elements における脆弱性 New	CWE-200 CWE-noinfo	CVE-2024-8902	2025-01-20 15:16	2024-10-12	Show	GitHub Exploit DB Packet Storm

235	8.8	重要 Network	SimpleHelp Ltd	SimpleHelp	SimpleHelp Ltd の SimpleHelp における脆弱性 New	CWE-noinfo 情報不足	CVE-2024-57726	2025-01-20 15:16	2025-01-15	Show	GitHub Exploit DB Packet Storm

236	9.8	緊急 Network	Progress Software Corporation	MOVEit Transfer	Progress Software Corporation の MOVEit Transfer における脆弱性 New	CWE-287 CWE-noinfo	CVE-2024-5806	2025-01-20 15:16	2024-06-25	Show	GitHub Exploit DB Packet Storm

237	7.5	重要 Network	Couchbase, Inc.	couchbase server	Couchbase, Inc. の Couchbase Server における脆弱性 New	CWE-200 CWE-noinfo	CVE-2024-23302	2025-01-20 15:15	2024-02-29	Show	GitHub Exploit DB Packet Storm

238	5.4	警告 Network	Contao	contao	Contao におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-28190	2025-01-20 15:15	2024-04-9	Show	GitHub Exploit DB Packet Storm

239	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Window…	Windows CSC サービスの情報漏えいの脆弱性 New	CWE-125 CWE-125	CVE-2025-21374	2025-01-20 15:15	2025-01-14	Show	GitHub Exploit DB Packet Storm

240	6.5	警告 Network	Brizy	brizy	Brizy の WordPress 用 brizy におけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2024-1165	2025-01-20 15:14	2024-02-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
681	-		-	-	A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiManager versions 7.6.0 through 7.6.1, 7.4.1 through 7.4.3, FortiOS versions 7.6.0, 7.4.0 through 7.4.…	-	CVE-2024-48884	2025-01-17 02:15	2025-01-14	Show	GitHub Exploit DB Packet Storm

682	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: iso: Fix circular lock in iso_conn_big_sync This fixes the circular locking dependency warning below, by reworking iso…	CWE-667 Improper Locking	CVE-2024-54191	2025-01-17 01:21	2025-01-11	Show	GitHub Exploit DB Packet Storm

683	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: block: Fix potential deadlock while freezing queue and acquiring sysfs_lock For storing a value to a queue attribute, the queue_a…	CWE-667 Improper Locking	CVE-2024-53689	2025-01-17 01:21	2025-01-11	Show	GitHub Exploit DB Packet Storm

684	-		-	-	07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/doAdminAction.php?act=editShop&shopId.	-	CVE-2024-57611	2025-01-17 01:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

685	-		-	-	07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaWorkReport/edit.html	-	CVE-2024-57161	2025-01-17 01:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

686	-		-	-	07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaTask/edit.html.	-	CVE-2024-57160	2025-01-17 01:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

687	-		-	-	07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaWorkReport/add.html.	-	CVE-2024-57159	2025-01-17 01:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

688	-		-	-	A vulnerability, which was classified as critical, has been found in Fanli2012 native-php-cms 1.0. This issue affects some unknown processing of the file /fladmin/article_dodel.php. The manipulation …	-	CVE-2025-0490	2025-01-17 01:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

689	-		-	-	A vulnerability classified as critical was found in Fanli2012 native-php-cms 1.0. This vulnerability affects unknown code of the file /fladmin/friendlink_dodel.php. The manipulation of the argument i…	-	CVE-2025-0489	2025-01-17 01:15	2025-01-16	Show	GitHub Exploit DB Packet Storm

690	-		-	-	A vulnerability classified as critical has been found in Fanli2012 native-php-cms 1.0. This affects an unknown part of the file product_list.php. The manipulation of the argument cat leads to sql inj…	-	CVE-2025-0488	2025-01-17 01:15	2025-01-16	Show	GitHub Exploit DB Packet Storm