Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
61 4.4 警告
Network
IBM IBM DevOps Deploy
IBM UrbanCode Deploy
IBM の IBM DevOps Deploy および IBM UrbanCode Deploy における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て
CVE-2024-22334 2025-01-31 14:47 2024-04-11 Show GitHub Exploit DB Packet Storm
62 9.8 緊急
Network
- IBM の Security Verify Access におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用
CVE-2024-49806 2025-01-31 14:47 2024-11-29 Show GitHub Exploit DB Packet Storm
63 9.1 緊急
Network
Ivan M WP Image Uploader Ivan M の WordPress 用 WP Image Uploader におけるパストラバーサルの脆弱性 CWE-22
CWE-352
CVE-2024-13720 2025-01-31 14:46 2025-01-30 Show GitHub Exploit DB Packet Storm
64 7.5 重要
Network
Jyothis Joy Eventer Jyothis Joy の WordPress 用 Eventer における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2024-11135 2025-01-31 14:37 2024-11-12 Show GitHub Exploit DB Packet Storm
65 7.5 重要
Network
アップル iOS
iPadOS
複数のアップル製品における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2025-24177 2025-01-31 14:22 2025-01-27 Show GitHub Exploit DB Packet Storm
66 5.5 警告
Local
- アップルの macOS における脆弱性 CWE-noinfo
情報不足
CVE-2025-24152 2025-01-31 14:18 2025-01-27 Show GitHub Exploit DB Packet Storm
67 5.3 警告
Network
- アップルの macOS における脆弱性 CWE-noinfo
情報不足
CVE-2025-24140 2025-01-31 14:17 2025-01-27 Show GitHub Exploit DB Packet Storm
68 4.3 警告
Network
アップル visionos
iOS
Safari
iPadOS
複数のアップル製品における脆弱性 CWE-noinfo
情報不足
CVE-2025-24113 2025-01-31 14:11 2025-01-27 Show GitHub Exploit DB Packet Storm
69 7.8 重要
Local
アップル watchOS
iOS
tvOS
iPadOS
複数のアップル製品における脆弱性 CWE-noinfo
情報不足
CVE-2025-24107 2025-01-31 14:09 2025-01-27 Show GitHub Exploit DB Packet Storm
70 5.5 警告
Local
- アップルの macOS における脆弱性 CWE-noinfo
情報不足
CVE-2024-54536 2025-01-31 14:03 2024-12-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 11, 2025, 4:06 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1001 6.4 MEDIUM
Network
- - The Gosign – Posts Slider Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'posts-slider-block' block in all versions up to, and including, 1.1.0 due to insufficient in… CWE-79
Cross-site Scripting
CVE-2024-13399 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1002 6.4 MEDIUM
Network
- - The WPRadio – WordPress Radio Streaming Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpradio_player' shortcode in all versions up to, and including, 1.0.… CWE-79
Cross-site Scripting
CVE-2024-13397 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1003 6.4 MEDIUM
Network
- - The Frictionless plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'frictionless_form' shortcode[s] in all versions up to, and including, 0.0.23 due to insufficient i… CWE-79
Cross-site Scripting
CVE-2024-13396 2025-01-31 12:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1004 - - - gdbus setgid privilege escalation - CVE-2020-11936 2025-01-31 11:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1005 - - - This vulnerability allows network-adjacent attackers to create arbitrary files on affected installations of Pioneer DMH-WT7600NEX devices. Although authentication is required to exploit this vulnerab… - CVE-2024-23929 2025-01-31 10:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1006 - - - This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ChargePoint Home Flex charging stations. Authentication is not required to exploit this vul… - CVE-2024-23921 2025-01-31 10:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1007 - - - This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ChargePoint Home Flex charging stations. Authentication is not required to exploit this vul… - CVE-2024-23920 2025-01-31 10:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1008 - - - SXF Common Library handles input data improperly. If a product using the library reads a crafted file, the product may be crashed. CWE-237
CVE-2025-24336 2025-01-31 09:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1009 - - - This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The s… - CVE-2024-24731 2025-01-31 09:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1010 - - - This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability.  The … - CVE-2024-23973 2025-01-31 09:15 2025-01-31 Show GitHub Exploit DB Packet Storm