Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
31	8.8	重要 Network	Delta Electronics, INC.	DIAEnergie	Delta Electronics, INC. の DIAEnergie における SQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2024-34032	2025-01-31 15:16	2024-05-3	Show	GitHub Exploit DB Packet Storm

32	5.4	警告 Network	Brainstorm Force	Elementor Header & Footer Builder	Brainstorm Force の WordPress 用 Elementor Header & Footer Builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4634	2025-01-31 15:16	2024-05-16	Show	GitHub Exploit DB Packet Storm

33	6.5	警告 Network	JetBrains	YouTrack	JetBrains の YouTrack における非効率的な正規表現の複雑さに関する脆弱性 New	CWE-1333 非効率的な正規表現の複雑さ	CVE-2024-54157	2025-01-31 15:16	2024-12-4	Show	GitHub Exploit DB Packet Storm

34	6.1	警告 Network	JetBrains	TeamCity	JetBrains の TeamCity におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-24459	2025-01-31 15:16	2025-01-21	Show	GitHub Exploit DB Packet Storm

35	6.5	警告 Network	JetBrains	TeamCity	JetBrains の TeamCity における認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2025-24461	2025-01-31 15:16	2025-01-21	Show	GitHub Exploit DB Packet Storm

36	6.1	警告 Network	Esri	Portal for ArcGIS	Esri の Portal for ArcGIS におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-8149	2025-01-31 15:01	2024-10-4	Show	GitHub Exploit DB Packet Storm

37	4.3	警告 Network	JetBrains	TeamCity	JetBrains の TeamCity における不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2025-24460	2025-01-31 15:01	2025-01-21	Show	GitHub Exploit DB Packet Storm

38	8.8	重要 Network	weDevs	wp erp	weDevs の WordPress 用 wp erp における SQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2024-0608	2025-01-31 14:50	2024-03-29	Show	GitHub Exploit DB Packet Storm

39	7.2	重要 Network	weDevs	wp erp	weDevs の WordPress 用 wp erp における SQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2024-0913	2025-01-31 14:50	2024-03-29	Show	GitHub Exploit DB Packet Storm

40	5.4	警告 Network	Brainstorm Force	ultimate addons for beaver builder	Brainstorm Force の WordPress 用 ultimate addons for beaver builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2140	2025-01-31 14:50	2024-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274641	-	phpgroupware	phpgroupware	phpGroupWare 0.9.14.005 and earlier allow remote attackers to obtain sensitive information via a direct request to (1) hook_admin.inc.php, (2) hook_home.inc.php, (3) class.holidaycalc.inc.php, and (4…	NVD-CWE-Other	CVE-2004-2575	2011-03-8 11:19	2004-12-31	Show	GitHub Exploit DB Packet Storm

274642	-	gnu	emacs	Emacs 21.2.1 does not prompt or warn the user before executing Lisp code in the local variables section of a text file, which allows user-assisted attackers to execute arbitrary commands, as demonstr…	NVD-CWE-Other	CVE-2003-1232	2011-03-8 11:13	2003-12-31	Show	GitHub Exploit DB Packet Storm

274643	-	apple	afp_server	Unknown vulnerability in Apple File Service (AFP Server) for Mac OS X Server, when sharing files on a UFS or re-shared NFS volume, allows remote attackers to overwrite arbitrary files.	NVD-CWE-Other	CVE-2003-0379	2011-03-8 11:12	2003-07-24	Show	GitHub Exploit DB Packet Storm

274644	-	apple	darwin_streaming_server	Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a .. (dot dot) sequence followed by an MS-DOS device name (e.g. AUX) in a requ…	NVD-CWE-Other	CVE-2003-0502	2011-03-8 11:12	2003-08-27	Show	GitHub Exploit DB Packet Storm

274645	-	compaq	tru64	Buffer overflow in libc in Compaq Tru64 4.0F, 5.0, 5.1 and 5.1A allows attackers to execute arbitrary code via long (1) LANG and (2) LOCPATH environment variables.	NVD-CWE-Other	CVE-2002-2002	2011-03-8 11:11	2002-12-31	Show	GitHub Exploit DB Packet Storm

274646	-	sun	java_web_start	Unknown vulnerability in Java web start 1.0.1_01, 1.0.1, 1.0 and 1.0.1.01 (HP-UX 11.x only) allows attackers to gain access to restricted resources via unknown attack vectors.	NVD-CWE-Other	CVE-2002-2005	2011-03-8 11:11	2002-12-31	Show	GitHub Exploit DB Packet Storm

274647	-	citrix	access_essentials metaframe_presentation_server presentation_server	Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute …	CWE-352 Origin Validation Error	CVE-2002-2426	2011-03-8 11:11	2002-12-31	Show	GitHub Exploit DB Packet Storm

274648	-	mailreader.com debian	mailreader.com debian_linux	Directory traversal vulnerability in nph-mr.cgi in Mailreader.com 2.3.20 through 2.3.31 allows remote attackers to view arbitrary files via .. (dot dot) sequences and a null byte (%00) in the configL…	NVD-CWE-Other	CVE-2002-1581	2011-03-8 11:10	2004-12-6	Show	GitHub Exploit DB Packet Storm

274649	-	hp	tru64	Multiple buffer overflows in HP Tru64 UNIX 5.x allow local users to execute arbitrary code via (1) a long -contextDir argument to dtaction, (2) a long -p argument to dtprintinfo, (3) a long -customiz…	NVD-CWE-Other	CVE-2002-1617	2011-03-8 11:10	2002-12-31	Show	GitHub Exploit DB Packet Storm

274650	-	ibm	aix	Unknown vulnerability in DCE (1) SMIT panels and (2) configuration commands, possibly related to relative pathnames.	NVD-CWE-Other	CVE-2002-1041	2011-03-8 11:09	2002-10-4	Show	GitHub Exploit DB Packet Storm