Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
421	6.5	警告 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows Server 2012 Microsoft Window…	Windows テーマのなりすましの脆弱性	CWE-200 CWE-noinfo	CVE-2025-21308	2025-01-27 17:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

422	6.6	警告 Physics	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	Windows デジタルメディアの特権昇格の脆弱性	CWE-125 CWE-noinfo	CVE-2025-21310	2025-01-27 17:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

423	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	Windows upnphost.dll のサービス拒否の脆弱性	CWE-400 CWE-noinfo	CVE-2025-21300	2025-01-27 17:42	2025-01-14	Show	GitHub Exploit DB Packet Storm

424	5.4	警告 Network	ThemeNcode	TNC PDF viewer	ThemeNcode の WordPress 用 TNC PDF viewer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-25097	2025-01-27 17:39	2024-03-13	Show	GitHub Exploit DB Packet Storm

425	8.1	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability	CWE-416 CWE-noinfo	CVE-2025-21295	2025-01-27 17:38	2025-01-14	Show	GitHub Exploit DB Packet Storm

426	9.8	緊急 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	Windows OLE のリモートでコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2025-21298	2025-01-27 17:34	2025-01-14	Show	GitHub Exploit DB Packet Storm

427	5.4	警告 Network	AyeCode Ltd	Ketchup Shortcodes	AyeCode Ltd の WordPress 用 Ketchup Shortcodes におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-13590	2025-01-27 17:29	2025-01-22	Show	GitHub Exploit DB Packet Storm

428	8.1	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows Server 2012 Microsoft Windows Server 2022 Microso…	Windows リモートデスクトップサービスのリモートでコードが実行される脆弱性	CWE-591 CWE-noinfo	CVE-2025-21309	2025-01-27 17:26	2025-01-14	Show	GitHub Exploit DB Packet Storm

429	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 10 Microsoft Windows 11 Microsoft Windows Server 2019	Windows Direct Show リモートでコードが実行される脆弱性	CWE-415 CWE-noinfo	CVE-2025-21291	2025-01-27 17:22	2025-01-14	Show	GitHub Exploit DB Packet Storm

430	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server 2019	Microsoft DWM Core ライブラリの特権の昇格の脆弱性	CWE-416 CWE-noinfo	CVE-2025-21304	2025-01-27 17:22	2025-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280001	-	webtrends	reporting_center	Buffer overflow in WTRS_UI.EXE (WTX_REMOTE.DLL) for WebTrends Reporting Center 4.0d allows remote attackers to execute arbitrary code via a long HTTP GET request to the /reports/ directory.	NVD-CWE-Other	CVE-2002-0595	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280002	-	foundstone	fscan	Format string vulnerability in Foundstone FScan 1.12 with banner grabbing enabled allows remote attackers to execute arbitrary code on the scanning system via format string specifiers in the server b…	NVD-CWE-Other	CVE-2002-0598	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280003	-	blahz-dns	blahz-dns	Blahz-DNS 0.2 and earlier allows remote attackers to bypass authentication and modify configuration by directly requesting CGI programs such as dostuff.php instead of going through the login screen.	NVD-CWE-Other	CVE-2002-0599	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280004	-	information_security_systems	realsecure_network_sensor	ISS RealSecure Network Sensor 5.x through 6.5 allows remote attackers to cause a denial of service (crash) via malformed DHCP packets that cause RealSecure to dereference a null pointer.	NVD-CWE-Other	CVE-2002-0601	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280005	-	3com	3cdaemon	Buffer overflow in 3Cdaemon 2.0 FTP server allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long commands such as login.	NVD-CWE-Other	CVE-2002-0606	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280006	-	snitz_communications	snitz_forums_2000	members.asp in Snitz Forums 2000 version 3.3.03 and earlier allows remote attackers to execute arbitrary code via a SQL injection attack on the parameters (1) M_NAME, (2) UserName, (3) FirstName, (4)…	NVD-CWE-Other	CVE-2002-0607	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280007	-	matu	matu_ftp	Buffer overflow in Matu FTP client 1.74 allows remote FTP servers to execute arbitrary code via a long "220" banner.	NVD-CWE-Other	CVE-2002-0608	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280008	-	hp	mpe_ix	Vulnerability in HP MPE/iX 6.0 through 7.0 allows attackers to cause a denial of service (system failure with "SA1457 out of i_port_timeout.fix_up_message_frame") via malformed IP packets.	NVD-CWE-Other	CVE-2002-0609	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280009	-	hp	mpe_ix	Vulnerability in FTPSRVR in HP MPE/iX 6.0 through 7.0 does not properly validate certain FTP commands, which allows attackers to gain privileges.	NVD-CWE-Other	CVE-2002-0610	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm

280010	-	craig_patchett	fileseek	Directory traversal vulnerability in FileSeek.cgi allows remote attackers to read arbitrary files via a ....// (modified dot dot) in the (1) head or (2) foot parameters, which are not properly filter…	NVD-CWE-Other	CVE-2002-0611	2008-09-6 05:28	2002-06-18	Show	GitHub Exploit DB Packet Storm