Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
591 4.3 警告
Network 		exclusiveaddons exclusive addons for elementor exclusiveaddons の WordPress 用 exclusive addons for elementor における脆弱性 CWE-200
CWE-noinfo
CVE-2024-10312 2025-01-27 11:06 2024-10-29 Show GitHub Exploit DB Packet Storm
592 6.1 警告
Network 		icopydoc xml for google merchant center icopydoc の WordPress 用 xml for google merchant center におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-13406 2025-01-27 11:06 2025-01-22 Show GitHub Exploit DB Packet Storm
593 5.4 警告
Network 		VideoWhisper.com picture gallery VideoWhisper.com の WordPress 用 picture gallery におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-13584 2025-01-27 11:06 2025-01-22 Show GitHub Exploit DB Packet Storm
594 2
Physics 		rensas arm-trusted-firmware ルネサス エレクトロニクス株式会社の arm-trusted-firmware における整数オーバーフローの脆弱性 CWE-190
CWE-190
CVE-2024-1633 2025-01-27 11:06 2024-02-19 Show GitHub Exploit DB Packet Storm
595 5.4 警告
Network 		exclusiveaddons exclusive addons for elementor exclusiveaddons の WordPress 用 exclusive addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2503 2025-01-27 11:06 2024-05-2 Show GitHub Exploit DB Packet Storm
596 9.8 緊急
Network 		Sapplica Sentrifugo Sapplica の Sentrifugo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29875 2025-01-27 11:06 2024-03-21 Show GitHub Exploit DB Packet Storm
597 6.1 警告
Network 		Sapplica Sentrifugo Sapplica の Sentrifugo におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-29878 2025-01-27 11:06 2024-03-21 Show GitHub Exploit DB Packet Storm
598 6.5 警告
Network 		oretnom23 computer laboratory management system oretnom23 の computer laboratory management system における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3131 2025-01-27 11:06 2024-04-1 Show GitHub Exploit DB Packet Storm
599 5.4 警告
Network 		oretnom23 computer laboratory management system oretnom23 の computer laboratory management system におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3140 2025-01-27 11:06 2024-04-1 Show GitHub Exploit DB Packet Storm
600 5.4 警告
Network 		moveaddons move addons for elementor moveaddons の WordPress 用 move addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-4695 2025-01-27 11:06 2024-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 14, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274091 - sun cobalt_raq_2
cobalt_raq_3i 		cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administrator to view or modify data located at another vir… NVD-CWE-Other
CVE-1999-1530 2016-10-18 11:05 1999-11-8 Show GitHub Exploit DB Packet Storm
274092 - ibm homepageprint Buffer overflow in IBM HomePagePrint 1.0.7 for Windows98J allows a malicious Web site to execute arbitrary code on a viewer's system via a long IMG_SRC HTML tag. NVD-CWE-Other
CVE-1999-1531 2016-10-18 11:05 1999-11-2 Show GitHub Exploit DB Packet Storm
274093 - netscape messaging_server Netscape Messaging Server 3.54, 3.55, and 3.6 allows a remote attacker to cause a denial of service (memory exhaustion) via a series of long RCPT TO commands. NVD-CWE-Other
CVE-1999-1532 2016-10-18 11:05 1999-10-29 Show GitHub Exploit DB Packet Storm
274094 - knox_software arkeia Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local users to obtain root access via a long HOME environmental variable. NVD-CWE-Other
CVE-1999-1534 2016-10-18 11:05 1999-09-23 Show GitHub Exploit DB Packet Storm
274095 - acushop salesbuilder .sbstart startup script in AcuShop Salesbuilder is world writable, which allows local users to gain privileges by appending commands to the file. NVD-CWE-Other
CVE-1999-1536 2016-10-18 11:05 1999-07-30 Show GitHub Exploit DB Packet Storm
274096 - microsoft internet_information_server When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does not restrict access to the local machine and allows an unauthorized user to gain access to sensiti… NVD-CWE-Other
CVE-1999-1538 2016-10-18 11:05 1999-01-14 Show GitHub Exploit DB Packet Storm
274097 - microsoft internet_information_server Buffer overflow in FTP server in Microsoft IIS 3.0 and 4.0 allows local and sometimes remote attackers to cause a denial of service via a long NLST (ls) command. NVD-CWE-Other
CVE-1999-1544 2016-10-18 11:05 1999-01-24 Show GitHub Exploit DB Packet Storm
274098 - joes_own_editor joe Joe's Own Editor (joe) 2.8 sets the world-readable permission on its crash-save file, DEADJOE, which could allow local users to read files that were being edited by other users. NVD-CWE-Other
CVE-1999-1545 2016-10-18 11:05 1999-07-14 Show GitHub Exploit DB Packet Storm
274099 - oracle web_listener Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a character in the URL with its HTTP-encoded (hex) equivalent. CWE-20
 Improper Input Validation  		CVE-1999-1547 2016-10-18 11:05 1999-11-25 Show GitHub Exploit DB Packet Storm
274100 - microsoft index_server Index Server 2.0 on IIS 4.0 stores physical path information in the ContentIndex\Catalogs subkey of the AllowedPaths registry key, whose permissions allows local and remote users to obtain the physic… NVD-CWE-Other
CVE-1999-1397 2016-10-18 11:04 1999-03-23 Show GitHub Exploit DB Packet Storm