Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
451 7.8 重要
Local 		openatom openharmony openatom の openharmony における境界外書き込みに関する脆弱性 CWE-787
CWE-787
CVE-2024-24581 2025-01-28 11:38 2024-04-2 Show GitHub Exploit DB Packet Storm
452 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC18 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC18 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2547 2025-01-28 11:38 2024-03-17 Show GitHub Exploit DB Packet Storm
453 7.5 重要
Network 		JetBrains TeamCity JetBrains の TeamCity における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
CWE-770
CVE-2024-36378 2025-01-28 11:38 2024-05-29 Show GitHub Exploit DB Packet Storm
454 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd. の w30e ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-3882 2025-01-28 11:38 2024-04-16 Show GitHub Exploit DB Packet Storm
455 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2024-26893 2025-01-28 11:14 2024-02-20 Show GitHub Exploit DB Packet Storm
456 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-26879 2025-01-28 11:14 2024-02-5 Show GitHub Exploit DB Packet Storm
457 5.9 警告
Network 		IBM Security Verify Governance IBM の Security Verify Governance における脆弱性 CWE-311
CWE-noinfo
CVE-2023-35888 2025-01-28 11:00 2023-06-20 Show GitHub Exploit DB Packet Storm
458 7.8 重要
Local 		code-projects Scholars Tracking System fabianros の Scholars Tracking System における SQL インジェクションの脆弱性 CWE-89
CWE-89
CVE-2024-24098 2025-01-28 10:43 2024-03-5 Show GitHub Exploit DB Packet Storm
459 5.4 警告
Network 		IBM IBM UrbanCode Deploy
IBM DevOps Deploy 		IBM の IBM DevOps Deploy および IBM UrbanCode Deploy におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-28781 2025-01-28 10:25 2024-05-9 Show GitHub Exploit DB Packet Storm
460 7.8 重要
Local 		IBM Security Verify Access Docker IBM の Security Verify Access Docker における脆弱性 CWE-250
CWE-Other
CVE-2024-35142 2025-01-28 10:25 2024-05-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1531 3.5 LOW
Adjacent 		- - SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitation was not applied allowing for the possibility of a malicious web request. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-52606 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1532 4.6 MEDIUM
Local 		- - Sensitive data could be exposed to non- privileged users in a configuration file. Local access to the computer with a low- privileged account is required to access the configuration file containing … CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2024-45718 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1533 5.5 MEDIUM
Local 		- - SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software. CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2024-28989 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1534 8.8 HIGH
Network 		- - The Zox News - Professional WordPress News & Magazine Theme plugin for WordPress is vulnerable to unauthorized data modification. This vulnerability can lead to privilege escalation and denial of ser… CWE-862
 Missing Authorization 		CVE-2024-13643 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1535 - - - rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a l… - CVE-2025-24898 2025-02-11 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1536 9.8 CRITICAL
Network 		- - The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.7. This is due to the plugin not properly validating a user's… CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2025-0181 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1537 5.0 MEDIUM
Network 		- - A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the file bfd/libbfd.c of the component ld. The manipulation leads t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-1179 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1538 9.8 CRITICAL
Network 		- - The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be update… CWE-269
 Improper Privilege Management 		CVE-2025-0180 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1539 6.3 MEDIUM
Network 		- - A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected is the function import_add of the file dayrui/Fcms/Control/Admin/Linkage.php. The manipulation leads … CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2025-1177 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1540 5.0 MEDIUM
Network 		- - A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to h… CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2025-1176 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm