Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
451 7.8 重要
Local 		openatom openharmony openatom の openharmony における境界外書き込みに関する脆弱性 CWE-787
CWE-787
CVE-2024-24581 2025-01-28 11:38 2024-04-2 Show GitHub Exploit DB Packet Storm
452 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC18 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC18 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2547 2025-01-28 11:38 2024-03-17 Show GitHub Exploit DB Packet Storm
453 7.5 重要
Network 		JetBrains TeamCity JetBrains の TeamCity における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
CWE-770
CVE-2024-36378 2025-01-28 11:38 2024-05-29 Show GitHub Exploit DB Packet Storm
454 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd. の w30e ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-3882 2025-01-28 11:38 2024-04-16 Show GitHub Exploit DB Packet Storm
455 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2024-26893 2025-01-28 11:14 2024-02-20 Show GitHub Exploit DB Packet Storm
456 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-26879 2025-01-28 11:14 2024-02-5 Show GitHub Exploit DB Packet Storm
457 5.9 警告
Network 		IBM Security Verify Governance IBM の Security Verify Governance における脆弱性 CWE-311
CWE-noinfo
CVE-2023-35888 2025-01-28 11:00 2023-06-20 Show GitHub Exploit DB Packet Storm
458 7.8 重要
Local 		code-projects Scholars Tracking System fabianros の Scholars Tracking System における SQL インジェクションの脆弱性 CWE-89
CWE-89
CVE-2024-24098 2025-01-28 10:43 2024-03-5 Show GitHub Exploit DB Packet Storm
459 5.4 警告
Network 		IBM IBM UrbanCode Deploy
IBM DevOps Deploy 		IBM の IBM DevOps Deploy および IBM UrbanCode Deploy におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-28781 2025-01-28 10:25 2024-05-9 Show GitHub Exploit DB Packet Storm
460 7.8 重要
Local 		IBM Security Verify Access Docker IBM の Security Verify Access Docker における脆弱性 CWE-250
CWE-Other
CVE-2024-35142 2025-01-28 10:25 2024-05-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1451 5.0 MEDIUM
Network 		- - A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the file bfd/libbfd.c of the component ld. The manipulation leads t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-1179 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1452 9.8 CRITICAL
Network 		- - The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be update… CWE-269
 Improper Privilege Management 		CVE-2025-0180 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1453 6.3 MEDIUM
Network 		- - A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected is the function import_add of the file dayrui/Fcms/Control/Admin/Linkage.php. The manipulation leads … CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2025-1177 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1454 5.0 MEDIUM
Network 		- - A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to h… CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2025-1176 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1455 - - - A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. Affected by this issue is some unknown functionality of the file addtocart.php. The… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1172 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1456 - - - A vulnerability classified as problematic was found in code-projects Real Estate Property Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /Admin/Customer… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-1171 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1457 - - - NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phish… CWE-79
Cross-site Scripting 		CVE-2025-1145 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1458 - - - School Affairs System from Quanxun has an Exposure of Sensitive Information, allowing unauthenticated attackers to view specific pages and obtain database information as well as plaintext administrat… CWE-497
 Exposure of Sensitive System Information to an Unauthorized Control Sphere 		CVE-2025-1144 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1459 - - - Certain models of routers from Billion Electric has hard-coded embedded linux credentials, allowing attackers to log in through the SSH service using these credentials and obtain root privilege of th… CWE-798
 Use of Hard-coded Credentials 		CVE-2025-1143 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1460 - - - A vulnerability classified as problematic has been found in code-projects Real Estate Property Management System 1.0. Affected is an unknown function of the file /Admin/Category.php. The manipulation… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-1170 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm