Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 27, 2025, 12:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
561	7.8	重要 Local	eza.rocks	eza	eza.rocks の eza における古典的バッファオーバーフローの脆弱性	CWE-120 CWE-120	CVE-2024-25817	2025-01-21 10:34	2024-03-6	Show	GitHub Exploit DB Packet Storm

562	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2024-35983	2025-01-21 10:32	2024-04-29	Show	GitHub Exploit DB Packet Storm

563	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-53237	2025-01-21 10:31	2024-11-14	Show	GitHub Exploit DB Packet Storm

564	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2023-52582	2025-01-21 10:29	2023-09-18	Show	GitHub Exploit DB Packet Storm

565	4.3	警告 Network	アップル	iOS visionos watchOS iPadOS	複数のアップル製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2024-54535	2025-01-21 10:27	2024-10-28	Show	GitHub Exploit DB Packet Storm

566	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-Other その他	CVE-2024-35975	2025-01-21 10:26	2024-04-7	Show	GitHub Exploit DB Packet Storm

567	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2024-26748	2025-01-21 10:24	2024-02-19	Show	GitHub Exploit DB Packet Storm

568	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2023-52662	2025-01-21 10:21	2023-12-4	Show	GitHub Exploit DB Packet Storm

569	2.3	低 Local	フォーティネット	FortiManager FortiAnalyzer-BigData FortiAnalyzer	複数のフォーティネット製品におけるパストラバーサルの脆弱性	CWE-22 CWE-23	CVE-2024-35274	2025-01-21 10:01	2024-11-12	Show	GitHub Exploit DB Packet Storm

570	6.5	警告 Network	Jenkins プロジェクト	MQ Notifier Plugin	Jenkins プロジェクトの Jenkins 用 MQ Notifier Plugin における脆弱性	CWE-noinfo 情報不足	CVE-2024-28154	2025-01-21 09:59	2024-03-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
611	-	-	-	Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Multi Uploader for Gravity Forms allows Upload a Web Shell to a Web Server. This issue affects Multi Uploader for Gravity For…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2025-23921	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

612	-	-	-	Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Smallerik File Browser allows Upload a Web Shell to a Web Server. This issue affects Smallerik File Browser: from n/a through…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2025-23918	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

613	-	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Menus Plus+ allows SQL Injection. This issue affects Menus Plus+: from n/a through 1.9.6.	CWE-89 SQL Injection	CVE-2025-23910	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

614	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Download Codes allows Reflected XSS. This issue affects WP Download Codes: from n/a t…	CWE-79 Cross-site Scripting	CVE-2025-23882	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

615	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Block Pack allows Reflected XSS. This issue affects WP Block Pack: from n/a through 1…	CWE-79 Cross-site Scripting	CVE-2025-23874	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

616	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WordPress File Search allows Reflected XSS. This issue affects WordPress File Search: fr…	CWE-79 Cross-site Scripting	CVE-2025-23867	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

617	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound EU DSGVO Helper allows Reflected XSS. This issue affects EU DSGVO Helper: from n/a throu…	CWE-79 Cross-site Scripting	CVE-2025-23866	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

618	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kolja Nolte Flexible Blogtitle allows Reflected XSS. This issue affects Flexible Blogtitle: from …	CWE-79 Cross-site Scripting	CVE-2025-23846	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

619	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Contact Form 7 Round Robin Lead Distribution allows Reflected XSS. This issue affects Co…	CWE-79 Cross-site Scripting	CVE-2025-23812	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

620	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP2APP allows Reflected XSS. This issue affects WP2APP: from n/a through 2.6.2.	CWE-79 Cross-site Scripting	CVE-2025-23811	2025-01-23 00:15	2025-01-23	Show	GitHub Exploit DB Packet Storm