Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
671 5.4 警告
Network 		bdthemes element pack bdthemes の WordPress 用 element pack におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1428 2025-01-20 12:21 2024-04-6 Show GitHub Exploit DB Packet Storm
672 5.4 警告
Network 		Livemesh Livemesh Addons for Elementor Livemesh の WordPress 用 Livemesh Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1464 2025-01-20 12:21 2024-04-9 Show GitHub Exploit DB Packet Storm
673 5.4 警告
Network 		Wpmet ElementsKit Elementor addons Wpmet の WordPress 用 ElementsKit Elementor addons におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2042 2025-01-20 12:21 2024-03-16 Show GitHub Exploit DB Packet Storm
674 5.4 警告
Network 		Sonaar Music mp3 audio player for music
 radio & podcast 		Sonaar Music の WordPress 用 mp3 audio player for music, radio & podcast におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-10268 2025-01-20 12:21 2024-11-19 Show GitHub Exploit DB Packet Storm
675 4.3 警告
Network 		webinarpress webinarpress WordPress 用 webinarpress における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-11271 2025-01-20 12:21 2024-11-15 Show GitHub Exploit DB Packet Storm
676 5.4 警告
Network 		wpextended The Ultimate WordPress Toolkit  - WP Extended wpextended の WordPress 用 The Ultimate WordPress Toolkit - WP Extended におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-862
CVE-2024-11916 2025-01-20 12:21 2024-11-27 Show GitHub Exploit DB Packet Storm
677 4.3 警告
Network 		Hire Web Xperts Passwords Manager Hire Web Xperts の WordPress 用 Passwords Manager における認証の欠如に関する脆弱性 CWE-862
CWE-89
CVE-2024-12614 2025-01-20 12:21 2024-12-13 Show GitHub Exploit DB Packet Storm
678 9.8 緊急
Network 		oretnom23 Laundry Shop Management System oretnom23 の Laundry Shop Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-3465 2025-01-20 12:03 2024-04-8 Show GitHub Exploit DB Packet Storm
679 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. ac500 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の ac500 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-3907 2025-01-20 12:03 2024-04-17 Show GitHub Exploit DB Packet Storm
680 7.8 重要
Local 		Ivanti secure access client Ivanti の secure access client における脆弱性 CWE-267
CWE-Other
CVE-2024-7571 2025-01-20 12:02 2024-11-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276411 - hp hp-ux Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option. NVD-CWE-Other
CVE-1999-0962 2008-09-9 21:36 1997-05-14 Show GitHub Exploit DB Packet Storm
276412 - freebsd freebsd FreeBSD mount_union command allows local users to gain root privileges via a symlink attack. NVD-CWE-Other
CVE-1999-0963 2008-09-9 21:36 1999-12-1 Show GitHub Exploit DB Packet Storm
276413 - freebsd freebsd Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATH_LOCALE environment variable. NVD-CWE-Other
CVE-1999-0964 2008-09-9 21:36 2000-01-1 Show GitHub Exploit DB Packet Storm
276414 - university_of_cambridge exim Buffer overflow in Exim allows local users to gain root privileges via a long :include: option in a .forward file. NVD-CWE-Other
CVE-1999-0971 2008-09-9 21:36 1997-07-22 Show GitHub Exploit DB Packet Storm
276415 - wolfpack_development xshipwars Buffer overflow in Xshipwars xsw program. NVD-CWE-Other
CVE-1999-0972 2008-09-9 21:36 1999-12-9 Show GitHub Exploit DB Packet Storm
276416 - microsoft windows_95
windows_98
windows_nt 		The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands… NVD-CWE-Other
CVE-1999-0975 2008-09-9 21:36 1999-12-10 Show GitHub Exploit DB Packet Storm
276417 - eric_allman sendmail Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. NVD-CWE-Other
CVE-1999-0976 2008-09-9 21:36 1999-12-7 Show GitHub Exploit DB Packet Storm
276418 - debian debian_linux htdig allows remote attackers to execute commands via filenames with shell metacharacters. NVD-CWE-Other
CVE-1999-0978 2008-09-9 21:36 1999-12-9 Show GitHub Exploit DB Packet Storm
276419 - debian
linux
redhat 		debian_linux
linux_kernel
linux 		The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option. NVD-CWE-Other
CVE-1999-0986 2008-09-9 21:36 1999-12-8 Show GitHub Exploit DB Packet Storm
276420 - microsoft ie Buffer overflow in Internet Explorer 5 directshow filter (MSDXM.OCX) allows remote attackers to execute commands via the vnd.ms.radio protocol. NVD-CWE-Other
CVE-1999-0989 2008-09-9 21:36 1999-12-6 Show GitHub Exploit DB Packet Storm