Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 16, 2025, 2:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
331 9.8 緊急
Network 		XWiki xwiki XWiki の xwiki におけるエンコードおよびエスケープに関する脆弱性 New CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2024-55663 2025-01-14 15:45 2024-12-12 Show GitHub Exploit DB Packet Storm
332 9.8 緊急
Network 		code-projects Online  Shoe Store code-projects の Online Shoe Store における SQL インジェクションの脆弱性 New CWE-74
CWE-89
CWE-89
CVE-2025-0208 2025-01-14 15:45 2025-01-4 Show GitHub Exploit DB Packet Storm
333 9.8 緊急
Network 		school faculty scheduling system project school faculty scheduling system campcodes の School Faculty Scheduling System における脆弱性 New CWE-73
CWE-Other
CVE-2025-0211 2025-01-14 15:45 2025-01-4 Show GitHub Exploit DB Packet Storm
334 7.3 重要
Local 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2025
Microsoft Windows Server 2019
Microsoft Window… 		WmsRepair サービスの特権昇格の脆弱性 New CWE-284
CWE-59
CWE-noinfo
CVE-2024-49107 2025-01-14 15:39 2024-12-10 Show GitHub Exploit DB Packet Storm
335 4.6 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2025
Microsoft Windows Server 2019
Microsoft Windows 10
Microsoft Windows Server&… 		Windows モバイル ブロードバンド ドライバーの情報漏えいの脆弱性 New CWE-20
CWE-noinfo
CVE-2024-49087 2025-01-14 15:37 2024-12-10 Show GitHub Exploit DB Packet Storm
336 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2012 		Windows Hyper-V のリモートでコードが実行される脆弱性 New CWE-23
CWE-noinfo
CVE-2024-30010 2025-01-14 15:36 2024-05-14 Show GitHub Exploit DB Packet Storm
337 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows 10
Microsoft Windows Server&… 		Windows Hyper-V のリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2024-30017 2025-01-14 15:36 2024-05-14 Show GitHub Exploit DB Packet Storm
338 7.5 重要
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2012
Microsoft Windows Server 2008
Microsoft Window… 		Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 New CWE-197
CWE-noinfo
CVE-2024-30024 2025-01-14 15:36 2024-05-14 Show GitHub Exploit DB Packet Storm
339 7.8 重要
Local 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows 10
Microsoft Windows Server 2022 		Windows DWM Core ライブラリの特権の昇格の脆弱性 New CWE-416
CWE-noinfo
CVE-2024-30035 2025-01-14 15:36 2024-05-14 Show GitHub Exploit DB Packet Storm
340 5.9 警告
Network 		マイクロソフト Microsoft Visual Studio
.NET 		Visual Studio のサービス拒否の脆弱性 New CWE-362
CWE-362
CVE-2024-30046 2025-01-14 15:36 2024-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
231 7.8 HIGH
Local 		- - Substance3D - Stager versions 3.0.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitati… New CWE-122
Heap-based Buffer Overflow 		CVE-2025-21129 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
232 7.8 HIGH
Local 		- - Substance3D - Stager versions 3.0.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitat… New CWE-121
Stack-based Buffer Overflow 		CVE-2025-21128 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
233 7.8 HIGH
Local 		- - Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could lead to arbitrary code execution. An attacker could manipulate the sear… New CWE-427
 Uncontrolled Search Path Element 		CVE-2025-21127 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
234 7.8 HIGH
Local 		- - Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current … New CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2025-21122 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
235 - - - Invoice Ninja is vulnerable to authenticated Server-Side Request Forgery (SSRF) allowing for arbitrary file read and network resource requests as the application user. This issue affects Invoice Ninj… New - CVE-2025-0474 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
236 - - - An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack of upper-bound limit enforcement in strings passed when performing IPv6 validation could lead to a p… New - CVE-2024-56374 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
237 - - - Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protoco… New CWE-116
CWE-147
CWE-150
 Improper Encoding or Escaping of Output
 Improper Neutralization of Escape, Meta, or Control Sequences 		CVE-2024-52006 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
238 - - - NULL pointer dereference in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition in the context of the process using… New - CVE-2024-48857 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
239 - - - Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the pr… New - CVE-2024-48856 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm
240 - - - Out-of-bounds read in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the imag… New - CVE-2024-48855 2025-01-15 04:15 2025-01-15 Show GitHub Exploit DB Packet Storm