Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
281	6.1	警告 Network	Liferay	Digital Experience Platform Liferay Portal	Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2024-26269	2025-01-29 10:54	2024-02-21	Show	GitHub Exploit DB Packet Storm

282	5.4	警告 Network	Themeum	tutor lms elementor addons	Themeum の WordPress 用 tutor lms elementor addons におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-29913	2025-01-29 10:54	2024-03-27	Show	GitHub Exploit DB Packet Storm

283	8.8	重要 Network	Elementor	Elementor Website Builder	Elementor の WordPress 用 Elementor Website Builder における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2023-48777	2025-01-29 10:43	2023-11-18	Show	GitHub Exploit DB Packet Storm

284	6.1	警告 Network	Liferay	Digital Experience Platform Liferay Portal	Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-11993	2025-01-29 10:43	2024-12-17	Show	GitHub Exploit DB Packet Storm

285	5.4	警告 Network	Elementor	Elementor Website Builder	Elementor の WordPress 用 Elementor Website Builder におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2120	2025-01-29 10:43	2024-03-27	Show	GitHub Exploit DB Packet Storm

286	6.5	警告 Network	デル	insightiq	デルの insightiq における脆弱性	CWE-284 CWE-Other	CVE-2024-25962	2025-01-29 10:43	2024-03-27	Show	GitHub Exploit DB Packet Storm

287	5.4	警告 Network	WebTechStreet	Elementor Addon Elements	WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-29107	2025-01-29 10:43	2024-03-19	Show	GitHub Exploit DB Packet Storm

288	5.4	警告 Network	master-addons	master addons	master-addons の WordPress 用 master addons におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-29911	2025-01-29 10:43	2024-03-27	Show	GitHub Exploit DB Packet Storm

289	9.8	緊急 Network	Mikko Saari	Relevanssi	Mikko Saari の WordPress 用 Relevanssi における CSV ファイル内の数式要素の中和に関する脆弱性	CWE-1236 CSV ファイル内の数式要素の不適切な中和	CVE-2024-3214	2025-01-29 10:43	2024-04-9	Show	GitHub Exploit DB Packet Storm

290	7.5	重要 Network	JetBrains	YouTrack	JetBrains の YouTrack における証明書検証に関する脆弱性	CWE-295 CWE-295	CVE-2024-35299	2025-01-29 10:43	2024-05-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274651	-	symantec	enterprise_firewall raptor_firewall velociraptor gateway_security	FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports,…	NVD-CWE-Other	CVE-2002-0538	2011-03-8 11:08	2002-07-3	Show	GitHub Exploit DB Packet Storm

274652	-	horde	imp	Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email.	NVD-CWE-Other	CVE-2001-1257	2011-03-8 11:07	2001-07-21	Show	GitHub Exploit DB Packet Storm

274653	-	horde	imp	Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the …	NVD-CWE-Other	CVE-2001-1258	2011-03-8 11:07	2001-07-21	Show	GitHub Exploit DB Packet Storm

274654	-	network_associates	webshield_smtp	NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in e…	NVD-CWE-Other	CVE-2001-1542	2011-03-8 11:07	2001-12-31	Show	GitHub Exploit DB Packet Storm

274655	-	compaq	tru64	Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423.	NVD-CWE-Other	CVE-2002-0093	2011-03-8 11:07	2002-09-5	Show	GitHub Exploit DB Packet Storm

274656	-	iplanet	iplanet_web_server	Vulnerability in iPlanet Web Server Enterprise Edition 4.x.	NVD-CWE-Other	CVE-2001-0431	2011-03-8 11:05	2001-07-2	Show	GitHub Exploit DB Packet Storm

274657	-	sendmail	sendmail	Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mod…	NVD-CWE-Other	CVE-2001-0715	2011-03-8 11:05	2001-10-30	Show	GitHub Exploit DB Packet Storm

274658	-	sco	unixware	Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages.	NVD-CWE-Other	CVE-2000-0351	2011-03-8 11:03	2001-03-12	Show	GitHub Exploit DB Packet Storm

274659	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd.	NVD-CWE-Other	CVE-1999-1425	2011-03-8 11:02	1997-11-10	Show	GitHub Exploit DB Packet Storm

274660	-	freebsd netbsd openbsd	freebsd netbsd openbsd	The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.	NVD-CWE-Other	CVE-2000-0092	2011-03-8 11:02	2000-01-19	Show	GitHub Exploit DB Packet Storm