Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
451	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2024-56722	2025-01-10 16:28	2024-10-30	Show	GitHub Exploit DB Packet Storm

452	9.8	緊急 Network	クアルコム	SD 210 ファームウェア SD 845 ファームウェア SD 625 ファームウェア SD 616 ファームウェア MSM8996AU ファームウェア SD 427 ファームウェア MSM8909W ファームウェア SD …	複数のクアルコム製品におけるバッファエラーの脆弱性	CWE-119 CWE-823	CVE-2017-11076	2025-01-10 16:28	2017-07-7	Show	GitHub Exploit DB Packet Storm

453	7.2	重要 Network	PaperCut Software International Pty	PaperCut NG	PaperCut Software International Pty の PaperCut NG における脆弱性	CWE-749 CWE-Other	CVE-2023-39470	2025-01-10 16:28	2023-08-2	Show	GitHub Exploit DB Packet Storm

454	4.8	警告 Network	ThimPress	LearnPress	ThimPress の WordPress 用 LearnPress におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1463	2025-01-10 16:28	2024-04-9	Show	GitHub Exploit DB Packet Storm

455	5.3	警告 Network	Eclipse Foundation	eclipse dataspace components	Eclipse Foundation の eclipse dataspace components における認証の欠如に関する脆弱性	CWE-862 CWE-862	CVE-2024-9202	2025-01-10 16:28	2024-09-27	Show	GitHub Exploit DB Packet Storm

456	7.5	重要 Network	クアルコム	fastconnect 6900 ファームウェア ipq5312 ファームウェア CSR8811 ファームウェア immersive home 214 ファームウェア fastconnect 7800 ファームウェア IPQ6000 ファームウェア IPQ501…	複数のクアルコム製品における境界外読み取りに関する脆弱性	CWE-125 CWE-126	CVE-2024-23363	2025-01-10 16:28	2024-06-3	Show	GitHub Exploit DB Packet Storm

457	6	警告 Local	デル	EMC PowerScale OneFS	デルの EMC PowerScale OneFS におけるリンク解釈に関する脆弱性	CWE-59 CWE-61	CVE-2024-25953	2025-01-10 16:28	2024-03-28	Show	GitHub Exploit DB Packet Storm

458	6.7	警告 Local	デル	EMC PowerScale OneFS	デルの EMC PowerScale OneFS における脆弱性	CWE-269 CWE-noinfo	CVE-2024-25961	2025-01-10 16:28	2024-03-28	Show	GitHub Exploit DB Packet Storm

459	7.5	重要 Network	デル	EMC PowerScale OneFS	デルの EMC PowerScale OneFS における脆弱性	CWE-385 CWE-Other	CVE-2024-25964	2025-01-10 16:28	2024-03-25	Show	GitHub Exploit DB Packet Storm

460	7.5	重要 Network	デル	EMC PowerScale OneFS	デルの EMC PowerScale OneFS における脆弱性	CWE-241 CWE-Other	CVE-2024-25966	2025-01-10 16:28	2024-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276401	-	clever_copy	clever_copy	Cross-site scripting (XSS) vulnerability in Clever Copy 2.0 and 2.0a allows remote attackers to inject arbitrary web script or HTML via the searchtype or searchterm parameters to (1) results.php or (…	NVD-CWE-Other	CVE-2005-2324	2008-09-6 05:51	2005-07-19	Show	GitHub Exploit DB Packet Storm

276402	-	clever_copy	clever_copy	Clever Copy 2.0 and 2.0a allows remote attackers to obtain the full path of the web root via a direct request to (1) ticker.php, (2) menu.php, (3) banned.php, (4) endlayout.php, (5) randomhlinesblock…	NVD-CWE-Other	CVE-2005-2325	2008-09-6 05:51	2005-07-19	Show	GitHub Exploit DB Packet Storm

276403	-	clever_copy	clever_copy	Cross-site scripting (XSS) vulnerability in Clever Copy 2.0 and 2.0a allows remote attackers to inject arbitrary web script or HTML via the yr parameter to calendar.php.	NVD-CWE-Other	CVE-2005-2326	2008-09-6 05:51	2005-07-19	Show	GitHub Exploit DB Packet Storm

276404	-	laffer	laffer	PHP remote file inclusion vulnerability in im.php in Laffer 0.3.2.6 and 0.3.2.7 allows remote attackers to execute arbitrary PHP code via the CFG_PATH variable.	NVD-CWE-Other	CVE-2005-2328	2008-09-6 05:51	2005-07-20	Show	GitHub Exploit DB Packet Storm

276405	-	-	-	MRV Communications In-Reach LX-8000S, LX-4000S, and LX-1000S 3.5.0, when using SSH public key authentication, does not properly restrict access to ports, which allows remote authenticated users to ac…	NVD-CWE-Other	CVE-2005-2329	2008-09-6 05:51	2005-07-20	Show	GitHub Exploit DB Packet Storm

276406	-	php.warpedweb.net	phppageprotect	Cross-site scripting (XSS) vulnerability in PHPPageProtect 1.0.0a allows remote attackers to inject arbitrary web script or HTML via the username parameter to (1) admin.php or (2) login.php.	NVD-CWE-Other	CVE-2005-2332	2008-09-6 05:51	2005-07-20	Show	GitHub Exploit DB Packet Storm

276407	-	y.sak	y.sak	Y.SAK allows remote attackers to execute arbitrary commands via shell metacharacters in the $no variable to (1) w_s3mbfm.cgi, (2) w_s3adix.cgi, or (3) w_s3sbfm.cgi.	NVD-CWE-Other	CVE-2005-2334	2008-09-6 05:51	2005-07-20	Show	GitHub Exploit DB Packet Storm

276408	-	msearch	unicode_msearch	Cross-site scripting (XSS) vulnerability in the Unicode version of msearch (unicode-msearch) 1.51(U1)-beta1, 1.51(U1), and 1.52(U1) allows remote attackers to inject arbitrary web script or HTML via …	NVD-CWE-Other	CVE-2005-2339	2008-09-6 05:51	2005-11-22	Show	GitHub Exploit DB Packet Storm

276409	-	emc	navisphere_manager	EMC Navisphere Manager 6.4.1.0.0 allows remote attackers to list arbitrary directories via an HTTP request for a directory that ends in a "." (trailing dot).	NVD-CWE-Other	CVE-2005-2358	2008-09-6 05:51	2005-08-16	Show	GitHub Exploit DB Packet Storm

276410	-	alwil	avast_antivirus	Directory traversal vulnerability in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote attackers…	NVD-CWE-Other	CVE-2005-2384	2008-09-6 05:51	2005-07-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed