Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 18, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
341 4.3 警告
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-1502 2025-01-16 15:49 2024-03-21 Show GitHub Exploit DB Packet Storm
342 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2024-2823 2025-01-16 15:49 2024-03-22 Show GitHub Exploit DB Packet Storm
343 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2024-3144 2025-01-16 15:48 2024-04-2 Show GitHub Exploit DB Packet Storm
344 6.5 警告
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2024-3553 2025-01-16 15:48 2024-05-2 Show GitHub Exploit DB Packet Storm
345 9 緊急
Network 		FreeScout FreeScout FreeScout における OS コマンドインジェクションの脆弱性 New CWE-78
CWE-78
CVE-2024-29185 2025-01-16 15:48 2024-03-22 Show GitHub Exploit DB Packet Storm
346 7.8 重要
Local 		クアルコム Snapdragon 8cx Compute Platform ファームウェア
snapdragon 8cx gen 3 ファームウェア
QCA6391 ファームウェア
fastconnect 6900 ファームウェア
Snapdragon 8cx&nb… 		複数のクアルコム製品における境界外書き込みに関する脆弱性 New CWE-120
CWE-787
CVE-2023-43540 2025-01-16 15:46 2023-09-19 Show GitHub Exploit DB Packet Storm
347 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における初期化されていないリソースの使用に関する脆弱性 New CWE-908
初期化されていないリソースの使用 		CVE-2021-47554 2025-01-16 15:46 2021-11-24 Show GitHub Exploit DB Packet Storm
348 7.8 重要
Local 		クアルコム APQ8030 ファームウェア
APQ8064 ファームウェア
9206 lte modem ファームウェア
c-v2x 9150 ファームウェア
9207 lte modem ファームウェア
CSRA6640 ファームウェア
APQ8037 … 		複数のクアルコム製品における境界外書き込みに関する脆弱性 New CWE-787
CWE-823
CVE-2023-33066 2025-01-16 15:43 2023-05-17 Show GitHub Exploit DB Packet Storm
349 7.8 重要
Local 		マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2025 		Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability New CWE-416
解放済みメモリの使用 		CVE-2025-21335 2025-01-16 15:43 2025-01-14 Show GitHub Exploit DB Packet Storm
350 7.3 重要
Local 		マイクロソフト Azure Data Studio Azure Data Studio の特権の昇格の脆弱性 New CWE-284
CWE-noinfo
CVE-2024-26203 2025-01-16 15:38 2024-03-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 18, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278741 - software602 602pro_lan_suite Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service via an HTTP GET HTTP request to the aux directory, and possibly other directories with legacy DOS dev… NVD-CWE-Other
CVE-2001-0448 2008-09-6 05:24 2001-06-18 Show GitHub Exploit DB Packet Storm
278742 - brs webweaver BRS WebWeaver FTP server before 0.64 Beta allows remote attackers to obtain the real pathname of the server via a "CD *" command followed by an ls command. NVD-CWE-Other
CVE-2001-0452 2008-09-6 05:24 2001-06-27 Show GitHub Exploit DB Packet Storm
278743 - brs webweaver Directory traversal vulnerability in BRS WebWeaver HTTP server allows remote attackers to read arbitrary files via a .. (dot dot) attack in the (1) syshelp, (2) sysimages, or (3) scripts directories. NVD-CWE-Other
CVE-2001-0453 2008-09-6 05:24 2001-06-27 Show GitHub Exploit DB Packet Storm
278744 - ssh ssh SSH daemon version 1 (aka SSHD-1 or SSH-1) 1.2.30 and earlier does not log repeated login attempts, which could allow remote attackers to compromise accounts without detection via a brute force attac… NVD-CWE-Other
CVE-2001-0471 2008-09-6 05:24 2001-06-27 Show GitHub Exploit DB Packet Storm
278745 - webcalendar webcalendar Vulnerability in WebCalendar 0.9.26 allows remote command execution. NVD-CWE-Other
CVE-2001-0477 2008-09-6 05:24 2001-06-27 Show GitHub Exploit DB Packet Storm
278746 - phpmyadmin phpmyadmin Directory traversal vulnerability in phpMyAdmin 2.2.0 and earlier versions allows remote attackers to execute arbitrary code via a .. (dot dot) in an argument to the sql.php script. NVD-CWE-Other
CVE-2001-0478 2008-09-6 05:24 2001-06-27 Show GitHub Exploit DB Packet Storm
278747 - alex_linde alexs_ftp_server Directory traversal vulnerability in Alex's FTP Server 0.7 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the (1) GET or (2) CD commands. NVD-CWE-Other
CVE-2001-0480 2008-09-6 05:24 2001-06-27 Show GitHub Exploit DB Packet Storm
278748 - symantec raptor_firewall Configuration error in Axent Raptor Firewall 6.5 allows remote attackers to use the firewall as a proxy to access internal web resources when the http.noproxy Rule is not set. NVD-CWE-Other
CVE-2001-0483 2008-09-6 05:24 2001-06-18 Show GitHub Exploit DB Packet Storm
278749 - nullsoft winamp Buffer overflow in WINAMP 2.6x and 2.7x allows attackers to execute arbitrary code via a long string in an AIP file. NVD-CWE-Other
CVE-2001-0490 2008-09-6 05:24 2001-06-27 Show GitHub Exploit DB Packet Storm
278750 - macromedia coldfusion_server Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or exe… NVD-CWE-Other
CVE-2001-0535 2008-09-6 05:24 2001-10-30 Show GitHub Exploit DB Packet Storm