Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
431 7.8 重要
Local 		Huawei curiem-wfg9b ファームウェア Huawei の curiem-wfg9b ファームウェアにおける例外的な状態のチェックに関する脆弱性 New CWE-754
CWE-754
CVE-2023-52710 2025-01-20 10:48 2024-05-28 Show GitHub Exploit DB Packet Storm
432 7.8 重要
Local 		Huawei curiem-wfg9b ファームウェア Huawei の curiem-wfg9b ファームウェアにおける脆弱性 New CWE-284
CWE-noinfo
CVE-2023-52712 2025-01-20 10:48 2024-05-28 Show GitHub Exploit DB Packet Storm
433 4.3 警告
Network 		Stranger Studios Paid Memberships Pro Stranger Studios の WordPress 用 Paid Memberships Pro におけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2024-0588 2025-01-20 10:47 2024-04-9 Show GitHub Exploit DB Packet Storm
434 7.2 重要
Network 		Ivanti connect secure Ivanti の connect secure における引数の挿入または変更に関する脆弱性 New CWE-88
CWE-88
CVE-2024-11633 2025-01-20 10:47 2024-12-10 Show GitHub Exploit DB Packet Storm
435 5.4 警告
Network 		Stranger Studios Paid Memberships Pro Stranger Studios の WordPress 用 Paid Memberships Pro におけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2024-1407 2025-01-20 10:47 2024-06-19 Show GitHub Exploit DB Packet Storm
436 8.8 重要
Network 		Fedora Project
レッドハット
Debian
Net-SNMP		 Red Hat Enterprise Linux for Power
 little endian - Extended Update Support
Red Hat Enterprise Linux for IBM … 		Net-SNMP の Net-SNMP 等複数ベンダの製品における古典的バッファオーバーフローの脆弱性 New CWE-120
CWE-120
CVE-2022-24805 2025-01-20 10:40 2022-02-10 Show GitHub Exploit DB Packet Storm
437 6.5 警告
Network 		Fedora Project
レッドハット
Debian
Net-SNMP		 Red Hat Enterprise Linux for Power
 little endian - Extended Update Support
Red Hat Enterprise Linux for IBM … 		Net-SNMP の Net-SNMP 等複数ベンダの製品における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
CWE-476
CVE-2022-24808 2025-01-20 10:40 2022-02-10 Show GitHub Exploit DB Packet Storm
438 8.8 重要
Local 		paddlepaddle paddlepaddle paddlepaddle における OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2024-0815 2025-01-20 10:40 2024-03-7 Show GitHub Exploit DB Packet Storm
439 6.1 警告
Network 		Ivanti connect secure
policy secure 		Ivanti の connect secure および policy secure におけるクロスサイトスクリプティングの脆弱性 New CWE-79
CWE-79
CVE-2024-11004 2025-01-20 10:40 2024-11-12 Show GitHub Exploit DB Packet Storm
440 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Stager アドビの Adobe Substance 3D Stager における境界外書き込みに関する脆弱性 New CWE-121
CWE-787
CVE-2025-21128 2025-01-20 10:19 2025-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
561 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TechMix Event Countdown Timer Plugin by TechMix allows Reflected XSS.This issue affects Event Cou… CWE-79
Cross-site Scripting 		CVE-2025-23699 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
562 - - - Cross-Site Request Forgery (CSRF) vulnerability in Iván R. Delgado Martínez WP Custom Google Search allows Stored XSS.This issue affects WP Custom Google Search: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23698 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
563 - - - Cross-Site Request Forgery (CSRF) vulnerability in Shabbos Commerce Shabbos and Yom Tov allows Stored XSS.This issue affects Shabbos and Yom Tov: from n/a through 1.9. CWE-352
 Origin Validation Error 		CVE-2025-23694 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
564 - - - Cross-Site Request Forgery (CSRF) vulnerability in Stanislaw Skonieczny Secure CAPTCHA allows Stored XSS.This issue affects Secure CAPTCHA: from n/a through 1.2. CWE-352
 Origin Validation Error 		CVE-2025-23693 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
565 - - - Cross-Site Request Forgery (CSRF) vulnerability in Artem Anikeev Slider for Writers allows Stored XSS.This issue affects Slider for Writers: from n/a through 1.3. CWE-352
 Origin Validation Error 		CVE-2025-23692 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
566 - - - Cross-Site Request Forgery (CSRF) vulnerability in Braulio Aquino García Send to Twitter allows Stored XSS.This issue affects Send to Twitter: from n/a through 1.7.2. CWE-352
 Origin Validation Error 		CVE-2025-23691 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
567 - - - Cross-Site Request Forgery (CSRF) vulnerability in ArtkanMedia Book a Place allows Stored XSS.This issue affects Book a Place: from n/a through 0.7.1. CWE-352
 Origin Validation Error 		CVE-2025-23690 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
568 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Poco Blogger Image Import allows Stored XSS.This issue affects Blogger Image Import: from 2.1 thr… CWE-79
Cross-site Scripting 		CVE-2025-23689 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
569 - - - Cross-Site Request Forgery (CSRF) vulnerability in DSmidgy HTTP to HTTPS link changer by Eyga.net allows Stored XSS.This issue affects HTTP to HTTPS link changer by Eyga.net: from n/a through 0.2.4. CWE-352
 Origin Validation Error 		CVE-2025-23677 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm
570 - - - Cross-Site Request Forgery (CSRF) vulnerability in SandyIN Import Users to MailChimp allows Stored XSS.This issue affects Import Users to MailChimp: from n/a through 1.0. CWE-352
 Origin Validation Error 		CVE-2025-23675 2025-01-17 05:15 2025-01-17 Show GitHub Exploit DB Packet Storm