Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
541	9.8	緊急 Network	StylemixThemes	MasterStudy LMS	StylemixThemes の WordPress 用 MasterStudy LMS における脆弱性	CWE-Other その他	CVE-2024-3136	2025-01-20 18:24	2024-04-9	Show	GitHub Exploit DB Packet Storm

542	9.8	緊急 Network	Argie	Online courseware	Argie の Online courseware における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2024-3421	2025-01-20 18:24	2024-04-7	Show	GitHub Exploit DB Packet Storm

543	6.1	警告 Network	Argie	Online courseware	Argie の Online courseware におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3428	2025-01-20 18:24	2024-04-7	Show	GitHub Exploit DB Packet Storm

544	5.4	警告 Network	WebTechStreet	Elementor Addon Elements	WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3743	2025-01-20 18:24	2024-05-2	Show	GitHub Exploit DB Packet Storm

545	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	ac500 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の ac500 ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2024-3908	2025-01-20 18:24	2024-04-17	Show	GitHub Exploit DB Packet Storm

546	5.4	警告 Network	Jenkins プロジェクト	OWASP Dependency-Check	Jenkins プロジェクトの Jenkins 用 OWASP Dependency-Check におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-28153	2025-01-20 18:22	2024-03-6	Show	GitHub Exploit DB Packet Storm

547	5.4	警告 Network	Nextend	Nextend Social Login and Register	Nextend の WordPress 用 Nextend Social Login and Register におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1775	2025-01-20 18:17	2024-03-2	Show	GitHub Exploit DB Packet Storm

548	4.8	警告 Network	Joseph LoPreste	Restaurant Solutions - Checklist	Joseph LoPreste の WordPress 用 Restaurant Solutions - Checklist におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1977	2025-01-20 18:17	2024-02-29	Show	GitHub Exploit DB Packet Storm

549	4.3	警告 Network	kaliforms	kali forms	kaliforms の WordPress 用 kali forms における脆弱性	CWE-noinfo 情報不足	CVE-2024-1217	2025-01-20 18:10	2024-02-29	Show	GitHub Exploit DB Packet Storm

550	4.6	警告 Network	WebTechStreet	Elementor Addon Elements	WebTechStreet の WordPress 用 Elementor Addon Elements におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2091	2025-01-20 18:10	2024-03-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
591	-	-	-	In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix missing lookup table cleanups When a virtuser device is created via configfs and the probe fails due to an in…	-	CVE-2025-21661	2025-01-21 22:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

592	-	-	-	In the Linux kernel, the following vulnerability has been resolved: sched_ext: Replace rq_lock() to raw_spin_rq_lock() in scx_ops_bypass() scx_ops_bypass() iterates all CPUs to re-enqueue all the s…	-	CVE-2025-21657	2025-01-21 22:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

593	-	-	-	In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de ("virtio-blk: Ensure no requests in virtqueues befo…	-	CVE-2024-57946	2025-01-21 22:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

594	-	-	-	In the Linux kernel, the following vulnerability has been resolved: riscv: mm: Fix the out of bound issue of vmemmap address In sparse vmemmap model, the virtual address of vmemmap is calculated as…	-	CVE-2024-57945	2025-01-21 22:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

595	-	-	-	In the Linux kernel, the following vulnerability has been resolved: netfs: Fix ceph copy to cache on write-begin At the end of netfs_unlock_read_folio() in which folios are marked appropriately for…	-	CVE-2024-57942	2025-01-21 22:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

596	-	-	-	In the Linux kernel, the following vulnerability has been resolved: netfs: Fix the (non-)cancellation of copy when cache is temporarily disabled When the caching for a cookie is temporarily disable…	-	CVE-2024-57941	2025-01-21 22:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

597	-	-	-	In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die() die() can be called in exception handler, and therefore cannot sleep. However, di…	-	CVE-2024-57939	2025-01-21 22:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

598	-	-	-	Input validation vulnerability in Qualifio's Wheel of Fortune. This vulnerability allows an attacker to modify an email to contain the ‘+’ symbol to access the application and win prizes as many time…	CWE-22 Path Traversal	CVE-2025-0615	2025-01-21 21:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

599	-	-	-	Input validation vulnerability in Qualifio's Wheel of Fortune. This vulnerability could allow an attacker to modify a single email to contain upper and lower case characters in order to access the ap…	CWE-22 Path Traversal	CVE-2025-0614	2025-01-21 21:15	2025-01-21	Show	GitHub Exploit DB Packet Storm

600	-	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix max SGEs for the Work Request Gen P7 supports up to 13 SGEs for now. WQE software structure can hold only 6 now…	-	CVE-2024-57936	2025-01-21 21:15	2025-01-21	Show	GitHub Exploit DB Packet Storm