Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 19, 2025, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
421	7.1	重要 Adjacent	マイクロソフト	Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows 11	Windows Hyper-V のセキュリティ機能のバイパスの脆弱性	CWE-20 CWE-noinfo	CVE-2024-20659	2025-01-16 13:31	2024-10-8	Show	GitHub Exploit DB Packet Storm

422	7.5	重要 Network	oretnom23	lost and found information system	Oretnom23 の lost and found information system における SQL インジェクションの脆弱性	CWE-89 CWE-89	CVE-2023-33677	2025-01-16 12:32	2023-05-22	Show	GitHub Exploit DB Packet Storm

423	4.3	警告 Network	Basixonline	NEX-Forms	Basixonline の WordPress 用 NEX-Forms における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-1130	2025-01-16 12:32	2024-02-29	Show	GitHub Exploit DB Packet Storm

424	5.4	警告 Network	IdeaBox Creations	PowerPack Addons for Elementor	IdeaBox Creations の WordPress 用 PowerPack Addons for Elementor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1411	2025-01-16 12:32	2024-02-29	Show	GitHub Exploit DB Packet Storm

425	4.3	警告 Network	DesDev Inc.	DedeCMS	DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2024-3143	2025-01-16 12:32	2024-04-2	Show	GitHub Exploit DB Packet Storm

426	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	W15E ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の W15E ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-4123	2025-01-16 12:32	2024-04-24	Show	GitHub Exploit DB Packet Storm

427	9.8	緊急 Network	ThimPress	LearnPress	ThimPress の WordPress 用 LearnPress における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2024-4434	2025-01-16 12:32	2024-05-14	Show	GitHub Exploit DB Packet Storm

428	4.3	警告 Network	DesDev Inc.	DedeCMS	DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2024-4585	2025-01-16 12:32	2024-05-7	Show	GitHub Exploit DB Packet Storm

429	4.3	警告 Network	DesDev Inc.	DedeCMS	DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2024-4594	2025-01-16 12:32	2024-05-7	Show	GitHub Exploit DB Packet Storm

430	5.9	警告 Network	Ampache.org	Ampache	Ampache.org の Ampache におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2024-28853	2025-01-16 12:32	2024-03-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275531	-	debian	debian_linux	dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files.	NVD-CWE-Other	CVE-2000-0366	2008-09-11 04:04	1999-12-2	Show	GitHub Exploit DB Packet Storm

275532	-	michael_jennings	eterm	Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.	NVD-CWE-Other	CVE-2000-0367	2008-09-11 04:04	1999-02-18	Show	GitHub Exploit DB Packet Storm

275533	-	caldera	openlinux	The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service.	NVD-CWE-Other	CVE-2000-0369	2008-09-11 04:04	1999-10-8	Show	GitHub Exploit DB Packet Storm

275534	-	caldera	openlinux	The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.	NVD-CWE-Other	CVE-2000-0370	2008-09-11 04:04	1999-01-29	Show	GitHub Exploit DB Packet Storm

275535	-	kde	kde	The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack.	NVD-CWE-Other	CVE-2000-0371	2008-09-11 04:04	1999-03-1	Show	GitHub Exploit DB Packet Storm

275536	-	freebsd	freebsd	The kernel in FreeBSD 3.2 follows symbolic links when it creates core dump files, which allows local attackers to modify arbitrary files.	NVD-CWE-Other	CVE-2000-0375	2008-09-11 04:04	2001-03-12	Show	GitHub Exploit DB Packet Storm

275537	-	i-drive	filo	Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.	NVD-CWE-Other	CVE-2000-0376	2008-09-11 04:04	2000-06-7	Show	GitHub Exploit DB Packet Storm

275538	-	redhat	linux	The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, but an open file descriptor for those devices can be maintained after the user logs out, which allow…	NVD-CWE-Other	CVE-2000-0378	2008-09-11 04:04	2000-05-3	Show	GitHub Exploit DB Packet Storm

275539	-	allaire	clustercats	ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site.	NVD-CWE-Other	CVE-2000-0382	2008-09-11 04:04	2000-05-8	Show	GitHub Exploit DB Packet Storm

275540	-	filemaker	filemaker	FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities.	NVD-CWE-Other	CVE-2000-0385	2008-09-11 04:04	2000-05-2	Show	GitHub Exploit DB Packet Storm