Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
671 5.3 警告
Network 		zestard admin side data storage for contact form 7 zestard の WordPress 用 admin side data storage for contact form 7 における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1779 2025-01-17 11:58 2024-02-23 Show GitHub Exploit DB Packet Storm
672 8.8 重要
Network 		Progress Software Corporation telerik report server Progress Software Corporation の telerik report server における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
CWE-502
CVE-2024-1800 2025-01-17 11:58 2024-03-20 Show GitHub Exploit DB Packet Storm
673 7.5 重要
Network 		Ivanti Avalanche Ivanti の Avalanche におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-13180 2025-01-17 11:58 2025-01-14 Show GitHub Exploit DB Packet Storm
674 - - Belledonne Communications Linphone-Desktop Belledonne Communications 製 Linphone-Desktop における NULL ポインタ参照の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-0430 2025-01-17 11:56 2025-01-16 Show GitHub Exploit DB Packet Storm
675 9.8 緊急
Network 		Apache Software Foundation hertzbeat Apache Software Foundation の hertzbeat におけるインジェクションに関する脆弱性 CWE-74
CWE-74
CVE-2023-51653 2025-01-17 11:54 2023-12-20 Show GitHub Exploit DB Packet Storm
676 7.5 重要
Network 		Apache Software Foundation Apache DolphinScheduler Apache Software Foundation の Apache DolphinScheduler におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2023-51770 2025-01-17 11:54 2023-12-25 Show GitHub Exploit DB Packet Storm
677 5.4 警告
Network 		Brizy brizy Brizy の WordPress 用 brizy におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1296 2025-01-17 11:54 2024-03-13 Show GitHub Exploit DB Packet Storm
678 7.5 重要
Network 		BoldGrid W3 Total Cache BoldGrid の WordPress 用 W3 Total Cache における脆弱性 CWE-200
CWE-noinfo
CVE-2024-12008 2025-01-17 11:54 2024-12-1 Show GitHub Exploit DB Packet Storm
679 7.5 重要
Network 		マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2012
Microsoft Windows Server&… 		Windows ライトウェイト ディレクトリ アクセス プロトコル (LDAP) のサービス拒否の脆弱性 CWE-476
CWE-noinfo
CVE-2024-49121 2025-01-17 10:55 2024-12-10 Show GitHub Exploit DB Packet Storm
680 8.1 重要
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2016
Microsoft Windows Server 2025
Microsoft Windows Server 2022 		Windows リモート デスクトップ サービスのリモートでコードが実行される脆弱性 CWE-362
CWE-416
CVE-2024-49116 2025-01-17 10:51 2024-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276231 - nosque msgcore Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple HELO, MAIL FROM, RCPT TO, and DATA command… NVD-CWE-Other
CVE-2000-0075 2008-09-11 04:02 2000-01-13 Show GitHub Exploit DB Packet Storm
276232 - w3c cern_httpd The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request for a nonexistent URL. NVD-CWE-Other
CVE-2000-0079 2008-09-11 04:02 2000-01-18 Show GitHub Exploit DB Packet Storm
276233 - hp hp-ux HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges. NVD-CWE-Other
CVE-2000-0083 2008-09-11 04:02 2000-04-18 Show GitHub Exploit DB Packet Storm
276234 - netopia timbuktu_pro Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing. NVD-CWE-Other
CVE-2000-0086 2008-09-11 04:02 2000-01-18 Show GitHub Exploit DB Packet Storm
276235 - vmware workstation VMWare 1.1.2 allows local users to cause a denial of service via a symlink attack. NVD-CWE-Other
CVE-2000-0090 2008-09-11 04:02 2000-01-17 Show GitHub Exploit DB Packet Storm
276236 - inter7 vpopmail Buffer overflow in vchkpw/vpopmail POP authentication package allows remote attackers to gain root privileges via a long username or password. NVD-CWE-Other
CVE-2000-0091 2008-09-11 04:02 2000-01-21 Show GitHub Exploit DB Packet Storm
276237 - hp hp-ux The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the syst… NVD-CWE-Other
CVE-2000-0095 2008-09-11 04:02 2000-01-24 Show GitHub Exploit DB Packet Storm
276238 - qualcomm qpopper Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command. NVD-CWE-Other
CVE-2000-0096 2008-09-11 04:02 2000-01-26 Show GitHub Exploit DB Packet Storm
276239 - microsoft outlook_express Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by… NVD-CWE-Other
CVE-2000-0105 2008-09-11 04:02 2000-02-1 Show GitHub Exploit DB Packet Storm
276240 - debian debian_linux Linux apcd program allows local attackers to modify arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2000-0107 2008-09-11 04:02 2000-02-1 Show GitHub Exploit DB Packet Storm