Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 13, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
291 5.3 警告
Network 		ThemeBoy SportsPress ThemeBoy の WordPress 用 SportsPress における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1178 2025-01-9 11:24 2024-03-5 Show GitHub Exploit DB Packet Storm
292 6.4 警告
Network 		WPDeveloper Essential Addons for Elementor WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1276 2025-01-9 11:24 2024-02-29 Show GitHub Exploit DB Packet Storm
293 5.4 警告
Network 		Royal Elementor Addons Royal Elementor Addons and Templates Royal Elementor Addons の WordPress 用 Royal Elementor Addons and Templates におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1500 2025-01-9 11:24 2024-03-7 Show GitHub Exploit DB Packet Storm
294 7.4 重要
Network 		WPDeveloper Essential Addons for Elementor WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1536 2025-01-9 11:24 2024-03-13 Show GitHub Exploit DB Packet Storm
295 5.4 警告
Network 		Pixelite events manager Pixelite の WordPress 用 events manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2111 2025-01-9 11:24 2024-03-28 Show GitHub Exploit DB Packet Storm
296 5.4 警告
Network 		BoldThemes Bold Page Builder BoldThemes の WordPress 用 Bold Page Builder におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2733 2025-01-9 11:24 2024-04-10 Show GitHub Exploit DB Packet Storm
297 8.1 重要
Network 		langchain langchain langchain におけるパストラバーサルの脆弱性 CWE-22
CWE-31
CVE-2024-28088 2025-01-9 11:24 2024-03-4 Show GitHub Exploit DB Packet Storm
298 8.7 重要
Network 		ZITADEL ZITADEL ZITADEL におけるクロスサイトスクリプティングの脆弱性 CWE-434
CWE-79
CVE-2024-29891 2025-01-9 11:24 2024-03-27 Show GitHub Exploit DB Packet Storm
299 5.4 警告
Network 		BoldThemes Bold Page Builder BoldThemes の WordPress 用 Bold Page Builder におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-30179 2025-01-9 11:24 2024-03-27 Show GitHub Exploit DB Packet Storm
300 4.9 警告
Network 		WPZOOM beaver builder addons WPZOOM の WordPress 用 beaver builder addons におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-37464 2025-01-9 11:24 2024-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 14, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277081 - caldera unixware
openunix 		Vulnerability in pppd on UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to gain root privileges via (1) ppptalk or (2) ppp, a different vulnerability than CVE-2002-0824. NVD-CWE-Other
CVE-2002-0827 2008-09-6 05:29 2002-08-12 Show GitHub Exploit DB Packet Storm
277082 - caldera
redhat
hp 		openlinux_server
openlinux_workstation
pre-execution_environment
secure_os 		Preboot eXecution Environment (PXE) server allows remote attackers to cause a denial of service (crash) via certain DHCP packets from Voice-Over-IP (VOIP) phones. NVD-CWE-Other
CVE-2002-0835 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
277083 - isdn4linux isdn4linux Format string vulnerability in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the ISDN4Linux (i4l) package allows local users to gain root privileges via format strings in the device name comma… NVD-CWE-Other
CVE-2002-0851 2008-09-6 05:29 2002-09-5 Show GitHub Exploit DB Packet Storm
277084 - gnu mailman Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscriber's list subscription options in the (1) adminpw or (2) info parame… NVD-CWE-Other
CVE-2002-0855 2008-09-6 05:29 2002-09-5 Show GitHub Exploit DB Packet Storm
277085 - cisco webns
content_services_switch_11000 		The original patch for the Cisco Content Service Switch 11000 Series authentication bypass vulnerability (CVE-2001-0622) was incomplete, which still allows remote attackers to gain additional privile… NVD-CWE-Other
CVE-2002-0870 2008-09-6 05:29 2002-09-5 Show GitHub Exploit DB Packet Storm
277086 - evolvable_corporation shambala_server Web server for Shambala 4.5 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request. NVD-CWE-Other
CVE-2002-0876 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
277087 - evolvable_corporation shambala_server Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) LIST (ls) or (2) GET commands. NVD-CWE-Other
CVE-2002-0877 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
277088 - logisense dns_manager_system
hawk-i 		SQL injection vulnerability in the login form for LogiSense software including (1) Hawk-i Billing, (2) Hawk-i ASP and (3) DNS Manager allows remote attackers to bypass authentication via SQL code in … NVD-CWE-Other
CVE-2002-0878 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
277089 - gafware cfximage showtemp.cfm for Gafware CFXImage 1.6.6 allows remote attackers to read arbitrary files via (1) a .. or (2) a C: style pathname in the FILE parameter. NVD-CWE-Other
CVE-2002-0879 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
277090 - compaq proliant_bl_e-class_integrated_administrator_firmware Vulnerability in Compaq ProLiant BL e-Class Integrated Administrator 1.0 and 1.10, allows authenticated users with Telnet, SSH, or console access to conduct unauthorized activities. NVD-CWE-Other
CVE-2002-0883 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm