Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 20, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
411 9.8 緊急
Network 		Apache Software Foundation Apache Struts Apache Struts 2 における外部からアクセス可能なファイルの脆弱性 (S2-066) CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2023-50164 2025-01-17 12:58 2023-12-8 Show GitHub Exploit DB Packet Storm
412 9.8 緊急
Network 		Apache Software Foundation hertzbeat Apache Software Foundation の hertzbeat におけるインジェクションに関する脆弱性 CWE-74
CWE-74
CVE-2023-51388 2025-01-17 12:08 2023-12-18 Show GitHub Exploit DB Packet Storm
413 9.8 緊急
Network 		Ivanti Avalanche Ivanti の Avalanche におけるパストラバーサルの脆弱性 CWE-22
CWE-22
CWE-288
CVE-2024-13179 2025-01-17 12:08 2025-01-14 Show GitHub Exploit DB Packet Storm
414 5.4 警告
Network 		Themeisle Orbit Fox ThemeIsle の WordPress 用 Orbit Fox におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-13183 2025-01-17 12:08 2025-01-10 Show GitHub Exploit DB Packet Storm
415 4.3 警告
Network 		Progress Software Corporation MOVEit Transfer Progress Software Corporation の MOVEit Transfer における脆弱性 CWE-778
CWE-Other
CVE-2024-2291 2025-01-17 12:08 2024-03-20 Show GitHub Exploit DB Packet Storm
416 4.8 警告
Network 		MantisBT Group MantisBT MantisBT Group の MantisBT におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-34081 2025-01-17 12:08 2024-05-14 Show GitHub Exploit DB Packet Storm
417 8.8 重要
Network 		oretnom23 Laundry Shop Management System Oretnom23 の Laundry Shop Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3466 2025-01-17 12:08 2024-04-8 Show GitHub Exploit DB Packet Storm
418 4.3 警告
Network 		Brizy brizy Brizy の WordPress 用 brizy における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-3711 2025-01-17 12:02 2024-05-23 Show GitHub Exploit DB Packet Storm
419 9.8 緊急
Network 		Apache Software Foundation Apache Xerces-C++ Apache Software Foundation の Apache Xerces-C++ における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-23807 2025-01-17 12:02 2024-02-29 Show GitHub Exploit DB Packet Storm
420 5.3 警告
Network 		MantisBT Group MantisBT MantisBT Group の MantisBT における脆弱性 CWE-200
CWE-noinfo
CVE-2024-34080 2025-01-17 12:02 2024-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
461 - - - Cross-Site Request Forgery (CSRF) vulnerability in Sourov Amin Word Freshener allows Stored XSS.This issue affects Word Freshener: from n/a through 1.3. CWE-352
 Origin Validation Error 		CVE-2025-23577 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
462 - - - Cross-Site Request Forgery (CSRF) vulnerability in Sam Burdge WP Background Tile allows Stored XSS.This issue affects WP Background Tile: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23573 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
463 - - - Cross-Site Request Forgery (CSRF) vulnerability in Dave Konopka, Martin Scharm UpDownUpDown allows Stored XSS.This issue affects UpDownUpDown: from n/a through 1.1. CWE-352
 Origin Validation Error 		CVE-2025-23572 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
464 - - - Cross-Site Request Forgery (CSRF) vulnerability in Kelvin Ng Shortcode in Comment allows Stored XSS.This issue affects Shortcode in Comment: from n/a through 1.1.1. CWE-352
 Origin Validation Error 		CVE-2025-23569 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
465 - - - Cross-Site Request Forgery (CSRF) vulnerability in Intuitive Design GDReseller allows Stored XSS.This issue affects GDReseller: from n/a through 1.6. CWE-352
 Origin Validation Error 		CVE-2025-23567 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
466 - - - Cross-Site Request Forgery (CSRF) vulnerability in Syed Amir Hussain Custom Post allows Stored XSS.This issue affects Custom Post: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23566 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
467 - - - Cross-Site Request Forgery (CSRF) vulnerability in Elke Hinze, Plumeria Web Design Web Testimonials allows Stored XSS.This issue affects Web Testimonials: from n/a through 1.2. CWE-352
 Origin Validation Error 		CVE-2025-23560 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
468 - - - Cross-Site Request Forgery (CSRF) vulnerability in Stepan Stepasyuk MemeOne allows Stored XSS.This issue affects MemeOne: from n/a through 2.0.5. CWE-352
 Origin Validation Error 		CVE-2025-23559 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
469 - - - Cross-Site Request Forgery (CSRF) vulnerability in digfish Geotagged Media allows Stored XSS.This issue affects Geotagged Media: from n/a through 0.3.0. CWE-352
 Origin Validation Error 		CVE-2025-23558 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
470 - - - Cross-Site Request Forgery (CSRF) vulnerability in Kathleen Malone Find Your Reps allows Stored XSS.This issue affects Find Your Reps: from n/a through 1.2. CWE-352
 Origin Validation Error 		CVE-2025-23557 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm