Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
371 6.5 警告
Adjacent
Linux Foundation Magma Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性 CWE-476
CWE-476
CVE-2023-37031 2025-01-28 15:01 2023-06-28 Show GitHub Exploit DB Packet Storm
372 6.5 警告
Adjacent
Linux Foundation Magma Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性 CWE-476
CWE-476
CVE-2023-37036 2025-01-28 15:01 2023-06-28 Show GitHub Exploit DB Packet Storm
373 7.8 重要
Local
クアルコム qam8775p ファームウェア
AR8035 ファームウェア
QAM8295P ファームウェア
fastconnect 6900 ファームウェア
QCA6391 ファームウェア
fastconnect 6200 ファームウェア
QCA6430 ファームウェア
QC…
複数のクアルコム製品における古典的バッファオーバーフローの脆弱性 CWE-120
CWE-120
CVE-2023-43538 2025-01-28 15:01 2023-09-19 Show GitHub Exploit DB Packet Storm
374 7.8 重要
Local
クアルコム QCA8337 ファームウェア
qcc2073 ファームウェア
AR8035 ファームウェア
QCA6696 ファームウェア
qca6554a ファームウェア
QCA6574 ファームウェア
QCA6574AU ファームウェア
qcc710 ファームウェア
qfw711…
複数のクアルコム製品における整数オーバーフローの脆弱性 CWE-190
CWE-190
CVE-2023-43545 2025-01-28 15:01 2023-09-19 Show GitHub Exploit DB Packet Storm
375 5.4 警告
Network
POSIMYTH The Plus Addons for Elementor Page Builder POSIMYTH の WordPress 用 The Plus Addons for Elementor Page Builder におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-0445 2025-01-28 15:01 2024-05-14 Show GitHub Exploit DB Packet Storm
376 5.4 警告
Network
Elementor Elementor Website Builder Elementor の WordPress 用 Elementor Website Builder におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-0506 2025-01-28 15:01 2024-02-29 Show GitHub Exploit DB Packet Storm
377 5.4 警告
Network
getshortcodes shortcodes ultimate getshortcodes の WordPress 用 shortcodes ultimate におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-1808 2025-01-28 15:01 2024-02-28 Show GitHub Exploit DB Packet Storm
378 6.5 警告
Network
Shenzhen Tenda Technology Co.,Ltd. AC18 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC18 ファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2024-2559 2025-01-28 15:01 2024-03-17 Show GitHub Exploit DB Packet Storm
379 5.4 警告
Network
POSIMYTH The Plus Addons for Elementor Page Builder POSIMYTH の WordPress 用 The Plus Addons for Elementor Page Builder におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-2785 2025-01-28 15:01 2024-05-14 Show GitHub Exploit DB Packet Storm
380 6.5 警告
Network
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window…
Windows SmartScreen スプーフィングの脆弱性 CWE-451
CWE-noinfo
CVE-2025-21314 2025-01-28 14:49 2025-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280001 - inso answerbook2 Format string vulnerability in AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via encoded % characters in an H… NVD-CWE-Other
CVE-1999-1417 2008-09-11 04:01 1998-08-23 Show GitHub Exploit DB Packet Storm
280002 - computer_software_manufaktur alibaba genkey utility in Alibaba 2.0 generates RSA key pairs with an exponent of 1, which results in transactions that are sent in cleartext. NVD-CWE-Other
CVE-1999-1444 2008-09-11 04:01 1999-12-31 Show GitHub Exploit DB Packet Storm
280003 - sco openserver
unixware
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges. NVD-CWE-Other
CVE-1999-1450 2008-09-11 04:01 1999-01-27 Show GitHub Exploit DB Packet Storm
280004 - thttpd thttpd_http_server Buffer overflow in thttpd HTTP server before 2.04-31 allows remote attackers to execute arbitrary commands via a long date string, which is not properly handled by the tdate_parse function. NVD-CWE-Other
CVE-1999-1457 2008-09-11 04:01 1999-11-16 Show GitHub Exploit DB Packet Storm
280005 - next
sgi
cray
sun
next
irix
unicos
sunos
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable. NVD-CWE-Other
CVE-1999-1468 2008-09-11 04:01 1991-10-22 Show GitHub Exploit DB Packet Storm
280006 - sun java Sun Java 1.6.0_03 and earlier versions, and possibly later versions, does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Tro… CWE-94
Code Injection
CVE-2008-3440 2008-09-10 13:00 2008-08-1 Show GitHub Exploit DB Packet Storm
280007 - ignite_realtime openfire The admin console in Ignite Realtime Openfire 3.3.0 and earlier (formerly Wildfire) does not properly specify a filter mapping in web.xml, which allows remote attackers to gain privileges and execute… CWE-264
Permissions, Privileges, and Access Controls
CVE-2007-2975 2008-09-10 13:00 2007-06-1 Show GitHub Exploit DB Packet Storm
280008 - ignite_realtime openfire The vendor has addressed this issue through the release of the following product updates: Ignite Realtime openfire-3.3.1-1.i386.rpm http://www.igniterealtime.org/downloads/download-landing.jsp?fi… CWE-264
Permissions, Privileges, and Access Controls
CVE-2007-2975 2008-09-10 13:00 2007-06-1 Show GitHub Exploit DB Packet Storm
280009 - oracle oracle8i
oracle9i
Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible. CWE-94
Code Injection
CVE-2004-0637 2008-09-10 13:00 2004-09-2 Show GitHub Exploit DB Packet Storm
280010 - realnetworks realserver RealMedia server allows remote attackers to cause a denial of service via a long ramgen request. NVD-CWE-Other
CVE-2000-0001 2008-09-10 13:00 1999-12-23 Show GitHub Exploit DB Packet Storm