Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 20, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
461 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. f1203 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の f1203 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2978 2025-01-16 17:12 2024-03-27 Show GitHub Exploit DB Packet Storm
462 5.4 警告
Network 		Jegtheme Jeg Elementor Kit Jegtheme の WordPress 用 Jeg Elementor Kit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3161 2025-01-16 17:12 2024-05-2 Show GitHub Exploit DB Packet Storm
463 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. W15E ファームウェア Shenzhen Tenda Technology Co.,Ltd. の W15E ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4125 2025-01-16 17:12 2024-04-24 Show GitHub Exploit DB Packet Storm
464 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-4587 2025-01-16 17:12 2024-05-7 Show GitHub Exploit DB Packet Storm
465 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2024-36935 2025-01-16 17:12 2024-04-25 Show GitHub Exploit DB Packet Storm
466 9.8 緊急
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2023-38724 2025-01-16 17:12 2023-07-25 Show GitHub Exploit DB Packet Storm
467 8.8 重要
Network 		IBM IBM Security Guardium IBM の IBM Security Guardium における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2023-47709 2025-01-16 17:12 2023-11-9 Show GitHub Exploit DB Packet Storm
468 5.9 警告
Network 		Huawei HarmonyOS Huawei の HarmonyOS における競合状態に関する脆弱性 CWE-362
CWE-362
CVE-2024-54102 2025-01-16 17:12 2024-12-12 Show GitHub Exploit DB Packet Storm
469 7.5 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-121
CWE-noinfo
CVE-2024-29045 2025-01-16 17:09 2024-04-9 Show GitHub Exploit DB Packet Storm
470 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-190
CWE-noinfo
CVE-2024-28942 2025-01-16 17:05 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
371 - - - Cross-Site Request Forgery (CSRF) vulnerability in Aleapp WP Cookies Alert allows Cross Site Request Forgery.This issue affects WP Cookies Alert: from n/a through 1.1.1. CWE-352
 Origin Validation Error 		CVE-2025-23821 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
372 - - - Cross-Site Request Forgery (CSRF) vulnerability in Laxman Thapa Content Security Policy Pro allows Cross Site Request Forgery.This issue affects Content Security Policy Pro: from n/a through 1.3.5. CWE-352
 Origin Validation Error 		CVE-2025-23820 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
373 - - - Cross-Site Request Forgery (CSRF) vulnerability in Peggy Kuo More Link Modifier allows Stored XSS.This issue affects More Link Modifier: from n/a through 1.0.3. CWE-352
 Origin Validation Error 		CVE-2025-23818 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
374 - - - Cross-Site Request Forgery (CSRF) vulnerability in Mahadir Ahmad MHR-Custom-Anti-Copy allows Stored XSS.This issue affects MHR-Custom-Anti-Copy: from n/a through 2.0. CWE-352
 Origin Validation Error 		CVE-2025-23817 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
375 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in metaphorcreations Metaphor Widgets allows Stored XSS. This issue affects Metaphor Widgets: from n… CWE-79
Cross-site Scripting 		CVE-2025-23816 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
376 - - - Cross-Site Request Forgery (CSRF) vulnerability in linickx root Cookie allows Cross Site Request Forgery. This issue affects root Cookie: from n/a through 1.6. CWE-352
 Origin Validation Error 		CVE-2025-23815 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
377 - - - Cross-Site Request Forgery (CSRF) vulnerability in Igor Sazonov Len Slider allows Reflected XSS.This issue affects Len Slider: from n/a through 2.0.11. CWE-352
 Origin Validation Error 		CVE-2025-23810 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
378 - - - Cross-Site Request Forgery (CSRF) vulnerability in Matt van Andel Custom List Table Example allows Reflected XSS.This issue affects Custom List Table Example: from n/a through 1.4.1. CWE-352
 Origin Validation Error 		CVE-2025-23808 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
379 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jimmy Hu Spiderpowa Embed PDF allows Stored XSS.This issue affects Spiderpowa Embed PDF: from n/a… CWE-79
Cross-site Scripting 		CVE-2025-23807 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
380 - - - Cross-Site Request Forgery (CSRF) vulnerability in SEOReseller Team SEOReseller Partner allows Cross Site Request Forgery.This issue affects SEOReseller Partner: from n/a through 1.3.15. CWE-352
 Origin Validation Error 		CVE-2025-23805 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm