Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
261 5.4 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-25601 2025-01-29 11:42 2024-02-21 Show GitHub Exploit DB Packet Storm
262 5.4 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-25603 2025-01-29 11:42 2024-02-21 Show GitHub Exploit DB Packet Storm
263 4.8 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-37940 2025-01-29 11:38 2023-07-11 Show GitHub Exploit DB Packet Storm
264 6.1 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2023-42496 2025-01-29 11:38 2023-09-11 Show GitHub Exploit DB Packet Storm
265 6.1 警告
Network 		Liferay Digital Experience Platform
Liferay Portal 		Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2023-42498 2025-01-29 11:38 2023-09-11 Show GitHub Exploit DB Packet Storm
266 5.4 警告
Network 		wpmilitary wp radio wpmilitary の WordPress 用 wp radio における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1042 2025-01-29 11:38 2024-04-10 Show GitHub Exploit DB Packet Storm
267 5.4 警告
Network 		creativethemes blocksy companion creativethemes の WordPress 用 blocksy companion におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2392 2025-01-29 11:38 2024-03-22 Show GitHub Exploit DB Packet Storm
268 8.1 重要
Network 		- IBM の Security Verify Access における証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2024-31872 2025-01-29 11:32 2024-04-10 Show GitHub Exploit DB Packet Storm
269 5.4 警告
Network 		HasThemes HT Mega - Absolute Addons For Elementor HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-30182 2025-01-29 11:00 2024-03-27 Show GitHub Exploit DB Packet Storm
270 8.8 重要
Local 		ZTE ZXCLOUD iRAI ZTE の ZXCLOUD iRAI における不適切なデフォルトパーミッションに関する脆弱性 CWE-276
CWE-346
CVE-2024-22062 2025-01-29 10:59 2024-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274611 - novell netmail Cross-site scripting (XSS) vulnerability in the ModWeb agent for Novell NetMail 3.52 before 3.52C allows remote attackers to inject arbitrary web script or HTML via calendar display fields. NVD-CWE-Other
CVE-2005-1756 2011-03-8 11:22 2005-06-8 Show GitHub Exploit DB Packet Storm
274612 - novell netmail Buffer overflow in the Modweb agent for Novell NetMail 3.52 before 3.52C, when renaming folders, may allow attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-1757 2011-03-8 11:22 2005-06-8 Show GitHub Exploit DB Packet Storm
274613 - novell netmail Buffer overflow in the IMAP command continuation function in Novell NetMail 3.52 before 3.52C may allow remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-1758 2011-03-8 11:22 2005-06-8 Show GitHub Exploit DB Packet Storm
274614 - phpmailer phpmailer The Data function in class.smtp.php in PHPMailer 1.7.2 and earlier allows remote attackers to cause a denial of service (infinite loop leading to memory and CPU consumption) via a long header field. NVD-CWE-Other
CVE-2005-1807 2011-03-8 11:22 2005-05-28 Show GitHub Exploit DB Packet Storm
274615 - hp radia_client Multiple stack-based buffer overflows in the nvd_exec function in HP Radia Notify Daemon 3.1.2.0 (formerly by Novadigm), and other versions including 2.x, 3.x, and 4.x, allows remote attackers to exe… NVD-CWE-Other
CVE-2005-1825 2011-03-8 11:22 2005-05-3 Show GitHub Exploit DB Packet Storm
274616 - hp radia_client Buffer overflow in HP Radia Notify Daemon 3.1.0.0 (formerly by Novadigm), and other versions including 2.x, 3.x, and 4.x, allows remote attackers to execute arbitrary code via a long file extension. NVD-CWE-Other
CVE-2005-1826 2011-03-8 11:22 2005-05-3 Show GitHub Exploit DB Packet Storm
274617 - kerio kerio_mailserver
personal_firewall
winroute_firewall 		The administration protocol for Kerio WinRoute Firewall 6.x up to 6.0.10, Personal Firewall 4.x up to 4.1.2, and MailServer up to 6.0.8 allows remote attackers to quickly obtain passwords that are 5 … NVD-CWE-Other
CVE-2005-1062 2011-03-8 11:21 2005-05-2 Show GitHub Exploit DB Packet Storm
274618 - apple applescript
mac_os_x
mac_os_x_server 		The AppleScript Editor in Mac OS X 10.3.9 does not properly display script code for an applescript: URI, which can result in code that is different than the actual code that would be run, which could… NVD-CWE-Other
CVE-2005-1331 2011-03-8 11:21 2005-05-4 Show GitHub Exploit DB Packet Storm
274619 - apple terminal
mac_os_x
mac_os_x_server 		Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape sequences. NVD-CWE-Other
CVE-2005-1341 2011-03-8 11:21 2005-05-4 Show GitHub Exploit DB Packet Storm
274620 - apple terminal
mac_os_x 		The x-man-page: URI handler for Apple Terminal 1.4.4 in Mac OS X 10.3.9 does not cleanse terminal escape sequences, which allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2005-1342 2011-03-8 11:21 2005-05-4 Show GitHub Exploit DB Packet Storm