Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 19, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
501	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2024-56608	2025-01-15 17:11	2024-10-1	Show	GitHub Exploit DB Packet Storm

502	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56697	2025-01-15 17:11	2024-11-4	Show	GitHub Exploit DB Packet Storm

503	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-56743	2025-01-15 17:11	2024-11-18	Show	GitHub Exploit DB Packet Storm

504	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2024-56747	2025-01-15 17:11	2024-11-6	Show	GitHub Exploit DB Packet Storm

505	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-56765	2025-01-15 17:11	2024-12-18	Show	GitHub Exploit DB Packet Storm

506	7.5	重要 Network	Huawei	HarmonyOS	Huawei の HarmonyOS における脆弱性	CWE-264 CWE-noinfo	CVE-2024-56436	2025-01-15 17:10	2024-12-26	Show	GitHub Exploit DB Packet Storm

507	7.8	重要 Local	クアルコム	qcc2076 ファームウェア WCD9385 ファームウェア qcc2073 ファームウェア wsa8845 ファームウェア sc8380xp ファームウェア wsa8845h ファームウェア WCD9380 ファームウェア wsa8840 ファームウェア fastc…	複数のクアルコム製品における境界外読み取りに関する脆弱性	CWE-125 CWE-126	CVE-2024-45548	2025-01-15 17:10	2024-09-2	Show	GitHub Exploit DB Packet Storm

508	8.8	重要 Network	Synology Inc.	Surveillance Station	Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2024-29237	2025-01-15 17:10	2024-03-28	Show	GitHub Exploit DB Packet Storm

509	5.5	警告 Local	Huawei	HarmonyOS	Huawei の HarmonyOS における整数オーバーフローの脆弱性	CWE-190 CWE-680	CVE-2024-56451	2025-01-15 17:10	2024-12-26	Show	GitHub Exploit DB Packet Storm

510	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2021-46999	2025-01-15 17:03	2021-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
241	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TC Ajax WP Query Search Filter allows Stored XSS.This issue affects Ajax WP Query Search Filter: … New	CWE-79 Cross-site Scripting	CVE-2025-23926	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

242	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jimmy Peña Feedburner Optin Form allows Stored XSS.This issue affects Feedburner Optin Form: from… New	CWE-79 Cross-site Scripting	CVE-2025-23925	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

243	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jérémy Heleine WP Photo Sphere allows Stored XSS.This issue affects WP Photo Sphere: from n/a thr… New	CWE-79 Cross-site Scripting	CVE-2025-23924	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

244	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Harsh iSpring Embedder allows Upload a Web Shell to a Web Server.This issue affects iSpring Embedder: from n/a through 1.0. New	CWE-352 Origin Validation Error	CVE-2025-23922	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

245	-	-	-	Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Ella van Durpe Slides & Presentations allows Code Injection.This issue affects Slides & Presentations: f… New	CWE-80 Basic XSS	CVE-2025-23919	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

246	-	-	-	Missing Authorization vulnerability in Chandrika Guntur, Morgan Kay Chamber Dashboard Business Directory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cha… New	CWE-862 Missing Authorization	CVE-2025-23917	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

247	-	-	-	Missing Authorization vulnerability in Nuanced Media WP Meetup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Meetup: from n/a through 2.3.0. New	CWE-862 Missing Authorization	CVE-2025-23916	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

248	-	-	-	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Roninwp FAT Event Lite allows PHP Local File Inclusion.This issue affects FAT … New	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2025-23915	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

249	-	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in pankajpragma, rahulpragma WordPress Google Map Professional allows SQL Injection.This issue affec… New	CWE-89 SQL Injection	CVE-2025-23913	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

250	-	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Typomedia Foundation WordPress Custom Sidebar allows Blind SQL Injection.This issue affects WordP… New	CWE-89 SQL Injection	CVE-2025-23912	2025-01-17 06:15	2025-01-17	Show	GitHub Exploit DB Packet Storm