Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
261 5.4 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-25601 2025-01-29 11:42 2024-02-21 Show GitHub Exploit DB Packet Storm
262 5.4 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-25603 2025-01-29 11:42 2024-02-21 Show GitHub Exploit DB Packet Storm
263 4.8 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-37940 2025-01-29 11:38 2023-07-11 Show GitHub Exploit DB Packet Storm
264 6.1 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2023-42496 2025-01-29 11:38 2023-09-11 Show GitHub Exploit DB Packet Storm
265 6.1 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2023-42498 2025-01-29 11:38 2023-09-11 Show GitHub Exploit DB Packet Storm
266 5.4 警告
Network 		wpmilitary wp radio wpmilitary の WordPress 用 wp radio における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1042 2025-01-29 11:38 2024-04-10 Show GitHub Exploit DB Packet Storm
267 5.4 警告
Network 		creativethemes blocksy companion creativethemes の WordPress 用 blocksy companion におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2392 2025-01-29 11:38 2024-03-22 Show GitHub Exploit DB Packet Storm
268 8.1 重要
Network 		- IBM の Security Verify Access における証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2024-31872 2025-01-29 11:32 2024-04-10 Show GitHub Exploit DB Packet Storm
269 5.4 警告
Network 		HasThemes HT Mega - Absolute Addons For Elementor HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-30182 2025-01-29 11:00 2024-03-27 Show GitHub Exploit DB Packet Storm
270 8.8 重要
Local 		ZTE ZXCLOUD iRAI ZTE の ZXCLOUD iRAI における不適切なデフォルトパーミッションに関する脆弱性 CWE-276
CWE-346
CVE-2024-22062 2025-01-29 10:59 2024-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274561 - ipswitch imail_server
ipswitch_collaboration_suite 		The IMAP server in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to cause a denial of service (crash) via a long argument to the LIST command, which caus… CWE-20
 Improper Input Validation  		CVE-2005-2923 2011-03-8 11:25 2005-12-7 Show GitHub Exploit DB Packet Storm
274562 - ipswitch imail_server
ipswitch_collaboration_suite 		Format string vulnerability in the SMTP service in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to execute arbitrary code via format string specifiers t… NVD-CWE-Other
CVE-2005-2931 2011-03-8 11:25 2005-12-7 Show GitHub Exploit DB Packet Storm
274563 - deluxebb deluxebb Multiple SQL injection vulnerabilities in DeluxeBB 1.0 and 1.0.5 allow remote attackers to execute arbitrary SQL commands via the (1) tid parameter to topic.php, the uid parameter to (2) misc.php or … NVD-CWE-Other
CVE-2005-2989 2011-03-8 11:25 2005-09-20 Show GitHub Exploit DB Packet Storm
274564 - linecontrol java_client AuthInfo.java in LineContol Java Client (jlc) before 0.8.1 stores sensitive information such as user passwords in log files. NVD-CWE-Other
CVE-2005-2990 2011-03-8 11:25 2005-09-20 Show GitHub Exploit DB Packet Storm
274565 - sun solaris Unspecified vulnerability in the "tl" driver in Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors. NVD-CWE-Other
CVE-2005-3001 2011-03-8 11:25 2005-09-21 Show GitHub Exploit DB Packet Storm
274566 - xclusive-software mccs Multi-Computer Control System (MCCS) 1.0 allows remote attackers to cause a denial of service via a malformed UDP packet. NVD-CWE-Other
CVE-2005-3002 2011-03-8 11:25 2005-09-21 Show GitHub Exploit DB Packet Storm
274567 - usermin
webmin 		usermin
webmin 		miniserv.pl in Webmin before 1.230 and Usermin before 1.160, when "full PAM conversations" is enabled, allows remote attackers to bypass authentication by spoofing session IDs via certain metacharact… NVD-CWE-Other
CVE-2005-3042 2011-03-8 11:25 2005-09-22 Show GitHub Exploit DB Packet Storm
274568 - scriptsolutions perldiver Cross-site scripting (XSS) vulnerability in perldiver.pl in PerlDiver 1.x allows remote attackers to inject arbitrary web script or HTML via the query string. NOTE: this issue was originally dispute… NVD-CWE-Other
CVE-2005-3066 2011-03-8 11:25 2005-09-28 Show GitHub Exploit DB Packet Storm
274569 - scriptsolutions perldiver Cross-site scripting (XSS) vulnerability in perldiver.cgi in PerlDiver 2.x allows remote attackers to inject arbitrary web script or HTML via the module parameter. NVD-CWE-Other
CVE-2005-3067 2011-03-8 11:25 2005-09-28 Show GitHub Exploit DB Packet Storm
274570 - qualcomm qpopper poppassd in Qualcomm qpopper 4.0.8 allows local users to modify arbitrary files and gain privileges via the -t (trace file) command line argument. NVD-CWE-Other
CVE-2005-3098 2011-03-8 11:25 2005-09-29 Show GitHub Exploit DB Packet Storm