Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
271 4.3 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) のなりすましの脆弱性 New CWE-357
CWE-noinfo
CVE-2024-49054 2025-01-22 17:43 2024-11-21 Show GitHub Exploit DB Packet Storm
272 7.3 重要
Local 		マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 10
Microsoft Window… 		Windows インストーラーの特権の昇格の脆弱性 New CWE-59
CWE-noinfo
CVE-2025-21331 2025-01-22 17:43 2025-01-14 Show GitHub Exploit DB Packet Storm
273 7.8 重要
Local 		マイクロソフト Microsoft Office
Microsoft 365 Apps 		Microsoft Office Visio のリモートでコードが実行される脆弱性 New CWE-416
CWE-noinfo
CVE-2025-21345 2025-01-22 17:43 2025-01-14 Show GitHub Exploit DB Packet Storm
274 7.2 重要
Network 		マイクロソフト Microsoft SharePoint Enterprise Server
Microsoft SharePoint Server 		Microsoft SharePoint Server のリモートでコードが実行される脆弱性 New CWE-285
CWE-noinfo
CVE-2025-21348 2025-01-22 17:43 2025-01-14 Show GitHub Exploit DB Packet Storm
275 6.1 警告
Network 		WPEverest User Registration WPEverest の WordPress 用 User Registration におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1720 2025-01-22 17:42 2024-03-7 Show GitHub Exploit DB Packet Storm
276 9.8 緊急
Network 		huayi-tec jeewms JeeWMS におけるパストラバーサルの脆弱性 New CWE-22
CWE-27
CVE-2024-27764 2025-01-22 17:27 2024-03-5 Show GitHub Exploit DB Packet Storm
277 7.5 重要
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10
Microsoft Windows 11
Microsoft Windows Server 2025
Microsoft Windows Server&… 		Windows リモート デスクトップ サービスのサービス拒否の脆弱性 New CWE-400
CWE-noinfo
CVE-2025-21330 2025-01-22 17:26 2025-01-14 Show GitHub Exploit DB Packet Storm
278 7.8 重要
Local 		マイクロソフト Microsoft Office
Microsoft 365 Apps
Microsoft Office Online Server 		Microsoft Excel のリモートでコードが実行される脆弱性 New CWE-822
CWE-noinfo
CVE-2025-21354 2025-01-22 17:26 2025-01-14 Show GitHub Exploit DB Packet Storm
279 6.7 警告
Local 		マイクロソフト Microsoft Office
Microsoft 365 Apps
Microsoft Outlook 		Microsoft Outlook のリモートでコードが実行される脆弱性 New CWE-908
CWE-noinfo
CVE-2025-21357 2025-01-22 17:26 2025-01-14 Show GitHub Exploit DB Packet Storm
280 4.9 警告
Network 		ZyXEL DX5401-B1 ファームウェア
DX3300-T0 ファームウェア
ex5401-b0 ファームウェア
EX5600-T1 ファームウェア
DX4510-B1 ファームウェア
EX5401-B1 ファームウェア
EX3510-B1 ファームウェア
EX3510-B0 ファ… 		複数の ZyXEL 製品における古典的バッファオーバーフローの脆弱性 New CWE-120
古典的バッファオーバーフロー 		CVE-2024-9197 2025-01-22 17:20 2024-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
781 - - - Bible Module is a tool designed for ROBLOX developers to integrate Bible functionality into their games. The `FetchVerse` and `FetchPassage` functions in the Bible Module are susceptible to injection… CWE-20
 Improper Input Validation  		CVE-2025-23202 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
782 - - - Caido is a web security auditing toolkit. A Cross-Site Scripting (XSS) vulnerability was identified in Caido v0.45.0 due to improper sanitization in the URL decoding tooltip of HTTP request and respo… CWE-79
Cross-site Scripting 		CVE-2025-23039 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
783 6.3 MEDIUM
Network 		- - A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /expadd.php. The manipulation of the arg… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0540 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
784 - - - WeGIA < 3.2.0 is vulnerable to Cross Site Scripting (XSS) via the dados_addInfo parameter of documentos_funcionario.php. - CVE-2024-57033 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
785 - - - The AWS Cloud Development Kit (AWS CDK) is an open-source software development framework to define cloud infrastructure in code and provision it through AWS CloudFormation. Users who use IAM OIDC cus… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2025-23206 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
786 - - - nbgrader is a system for assigning and grading notebooks. Enabling frame-ancestors: 'self' grants any JupyterHub user the ability to extract formgrader content by sending malicious links to users wit… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2025-23205 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
787 - - - stats is a macOS system monitor in for the menu bar. The Stats application is vulnerable to a local privilege escalation due to the insecure implementation of its XPC service. The application registe… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2025-21606 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
788 - - - Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability - CVE-2025-21399 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
789 - - - Wegia < 3.2.0 is vulnerable to Cross Site Scripting (XSS) in /geral/documentos_funcionario.php via the id parameter. - CVE-2024-57030 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
790 - - - A vulnerability was found in 1000 Projects Campaign Management System Platform for Women 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Code/log… - CVE-2025-0534 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm