Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 20, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
541 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. W15E ファームウェア Shenzhen Tenda Technology Co.,Ltd. の W15E ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4126 2025-01-16 16:05 2024-04-24 Show GitHub Exploit DB Packet Storm
542 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-4591 2025-01-16 16:05 2024-05-7 Show GitHub Exploit DB Packet Storm
543 6.1 警告
Network 		Metagauss Inc. eventprime Metagauss Inc. の WordPress 用 eventprime におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-9865 2025-01-16 16:05 2024-10-24 Show GitHub Exploit DB Packet Storm
544 6.1 警告
Network 		oretnom23 customer support system Oretnom23 の customer support system におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2023-49973 2025-01-16 16:05 2023-12-4 Show GitHub Exploit DB Packet Storm
545 5.4 警告
Network 		Leap13 Premium Addons for Elementor Leap13 の WordPress 用 Premium Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1680 2025-01-16 16:05 2024-03-13 Show GitHub Exploit DB Packet Storm
546 8.8 重要
Network 		code-projects blood bank management system codezips の Blood Bank Management System における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0232 2025-01-16 16:03 2025-01-5 Show GitHub Exploit DB Packet Storm
547 4.8 警告
Network 		code-projects Local Storage Todo App code-projects の Local Storage Todo App におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CWE-94
CVE-2025-0228 2025-01-16 16:02 2025-01-5 Show GitHub Exploit DB Packet Storm
548 6.1 警告
Network 		FreeScout FreeScout FreeScout におけるクロスサイトスクリプティングの脆弱性 CWE-74
CWE-79
CVE-2024-34697 2025-01-16 15:49 2024-05-14 Show GitHub Exploit DB Packet Storm
549 6.3 警告
Network 		FreeScout FreeScout FreeScout におけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
CWE-1321
CVE-2024-34698 2025-01-16 15:49 2024-05-14 Show GitHub Exploit DB Packet Storm
550 4.3 警告
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1502 2025-01-16 15:49 2024-03-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278951 - hp support_tools_manager Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file. NVD-CWE-Other
CVE-2001-0079 2008-09-6 05:23 2001-02-12 Show GitHub Exploit DB Packet Storm
278952 - checkpoint firewall-1 Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets. NVD-CWE-Other
CVE-2001-0082 2008-09-6 05:23 2001-02-12 Show GitHub Exploit DB Packet Storm
278953 - freebsd freebsd Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd. NVD-CWE-Other
CVE-2001-0093 2008-09-6 05:23 2001-02-12 Show GitHub Exploit DB Packet Storm
278954 - omnicron omnihttpd statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script. NVD-CWE-Other
CVE-2001-0113 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
278955 - omnicron omnihttpd statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter. NVD-CWE-Other
CVE-2001-0114 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
278956 - oliver_debon flash Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag. NVD-CWE-Other
CVE-2001-0127 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
278957 - trend_micro interscan_viruswall Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2001-0132 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
278958 - trend_micro interscan_viruswall The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator … NVD-CWE-Other
CVE-2001-0133 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
278959 - van_dyke_technologies vshell Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers. NVD-CWE-Other
CVE-2001-0155 2008-09-6 05:23 2001-06-2 Show GitHub Exploit DB Packet Storm
278960 - lucent
orinoco 		wavelan
orinoco_wavelan 		Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will l… NVD-CWE-Other
CVE-2001-0160 2008-09-6 05:23 2001-01-1 Show GitHub Exploit DB Packet Storm