Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 29, 2025, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
41	7.3	重要 Local	インテル	Quartus Prime	インテルの Quartus Prime における制御されていない検索パスの要素に関する脆弱性 New	CWE-427 CWE-427	CVE-2024-21837	2025-01-29 10:54	2024-05-16	Show	GitHub Exploit DB Packet Storm

42	5.4	警告 Network	Liferay	Digital Experience Platform Liferay Portal	Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-25602	2025-01-29 10:54	2024-02-21	Show	GitHub Exploit DB Packet Storm

43	5.4	警告 Network	Liferay	Digital Experience Platform Liferay Portal	Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-26266	2025-01-29 10:54	2024-02-21	Show	GitHub Exploit DB Packet Storm

44	6.1	警告 Network	Liferay	Digital Experience Platform Liferay Portal	Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-26269	2025-01-29 10:54	2024-02-21	Show	GitHub Exploit DB Packet Storm

45	5.4	警告 Network	Themeum	tutor lms elementor addons	Themeum の WordPress 用 tutor lms elementor addons におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-29913	2025-01-29 10:54	2024-03-27	Show	GitHub Exploit DB Packet Storm

46	8.8	重要 Network	Elementor	Elementor Website Builder	Elementor の WordPress 用 Elementor Website Builder における危険なタイプのファイルの無制限アップロードに関する脆弱性 New	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2023-48777	2025-01-29 10:43	2023-11-18	Show	GitHub Exploit DB Packet Storm

47	6.1	警告 Network	Liferay	Digital Experience Platform Liferay Portal	Liferay の Liferay Portal および Digital Experience Platform におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-11993	2025-01-29 10:43	2024-12-17	Show	GitHub Exploit DB Packet Storm

48	5.4	警告 Network	Elementor	Elementor Website Builder	Elementor の WordPress 用 Elementor Website Builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2120	2025-01-29 10:43	2024-03-27	Show	GitHub Exploit DB Packet Storm

49	6.5	警告 Network	デル	insightiq	デルの insightiq における脆弱性 New	CWE-284 CWE-Other	CVE-2024-25962	2025-01-29 10:43	2024-03-27	Show	GitHub Exploit DB Packet Storm

50	5.4	警告 Network	WebTechStreet	Elementor Addon Elements	WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-29107	2025-01-29 10:43	2024-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278111	-	-	-	Format string vulnerability in the swcons command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via long command line arguments.	NVD-CWE-Other	CVE-2005-2237	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

278112	-	ibm	aix	ftpd in IBM AIX 5.1, 5.2 and 5.3 allows remote authenticated users to cause a denial of service (port exhaustion and memory consumption) by using all ephemeral ports.	NVD-CWE-Other	CVE-2005-2238	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

278113	-	oftpd	oftpd	oftpd 0.3.7 allows remote attackers to cause a denial of service via a USER command with a large number of null (\0) characters.	NVD-CWE-Other	CVE-2005-2239	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

278114	-	xpvm	xpvm	xpvm.tcl in xpvm 1.2.5 allows local users to overwrite arbitrary files via a symlink attack on the xpvm.trace.$user temporary file.	NVD-CWE-Other	CVE-2005-2240	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

278115	-	cisco	call_manager	Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 does not quickly time out Realtime Information Server Data Collection (RISDC) sockets,…	NVD-CWE-Other	CVE-2005-2241	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

278116	-	-	-	Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to cause a denial of service (memory consumption and restart) …	NVD-CWE-Other	CVE-2005-2242	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

278117	-	cisco	call_manager	Memory leak in inetinfo.exe in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1, when Multi Level Admin (MLA) is enabled, allows remote…	NVD-CWE-Other	CVE-2005-2243	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

278118	-	sven-ove_bjerkan	downloadprotect	Directory traversal vulnerability in DownloadProtect before 1.0.3 allows remote attackers to read files above the download folder.	NVD-CWE-Other	CVE-2005-2248	2008-09-6 05:51	2005-07-13	Show	GitHub Exploit DB Packet Storm

278119	-	jinzora	jinzora	Multiple unknown vulnerabilities in Jinzora 2.0.1 have unknown impact and attack vectors, possibly involving a PHP file inclusion vulnerability.	NVD-CWE-Other	CVE-2005-2249	2008-09-6 05:51	2005-07-13	Show	GitHub Exploit DB Packet Storm

278120	-	nokia	affix	Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary code via a long filename in an OBEX file share.	NVD-CWE-Other	CVE-2005-2250	2008-09-6 05:51	2005-07-13	Show	GitHub Exploit DB Packet Storm