Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
61 5.4 警告
Network 		WPDeveloper essential blocks WPDeveloper の WordPress 用 essential blocks におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-4891 2025-01-31 12:19 2024-05-18 Show GitHub Exploit DB Packet Storm
62 6.5 警告
Network 		JetBrains YouTrack JetBrains の YouTrack におけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 New CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2024-54156 2025-01-31 12:19 2024-12-4 Show GitHub Exploit DB Packet Storm
63 4.3 警告
Network 		IBM IBM DevOps Deploy
IBM UrbanCode Deploy 		IBM の IBM DevOps Deploy および IBM UrbanCode Deploy におけるログファイルからの情報漏えいに関する脆弱性 New CWE-532
ログファイルからの情報漏えい 		CVE-2024-22339 2025-01-31 12:14 2024-04-11 Show GitHub Exploit DB Packet Storm
64 7.2 重要
Network 		PaperCut Software International Pty PaperCut MF
PaperCut NG 		PaperCut Software International Pty の PaperCut MF および PaperCut NG におけるコードインジェクションの脆弱性 New CWE-94
CWE-94
CVE-2023-39469 2025-01-31 11:51 2023-08-2 Show GitHub Exploit DB Packet Storm
65 5.4 警告
Network 		Brainstorm Force ultimate addons for beaver builder Brainstorm Force の WordPress 用 ultimate addons for beaver builder におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2142 2025-01-31 11:51 2024-03-30 Show GitHub Exploit DB Packet Storm
66 5.4 警告
Network 		Brainstorm Force Elementor Header & Footer Builder Brainstorm Force の WordPress 用 Elementor Header & Footer Builder におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2619 2025-01-31 11:51 2024-05-16 Show GitHub Exploit DB Packet Storm
67 5.4 警告
Network 		codeless cowidgets elementor addons codeless の WordPress 用 cowidgets elementor addons におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-4697 2025-01-31 11:51 2024-06-4 Show GitHub Exploit DB Packet Storm
68 6.1 警告
Network 		Esri Portal for ArcGIS Esri の Portal for ArcGIS におけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト 		CVE-2024-8148 2025-01-31 11:51 2024-10-4 Show GitHub Exploit DB Packet Storm
69 6.7 警告
Local 		Linux Foundation
Google
OpenWrt Project
RDK Management, LLC		 yocto
rdkb
OpenWrt
Android 		Linux Foundation の Yocto 等複数ベンダの製品における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-20022 2025-01-31 11:51 2024-03-4 Show GitHub Exploit DB Packet Storm
70 6.1 警告
Network 		Esri Portal for ArcGIS Esri の Portal for ArcGIS におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-25705 2025-01-31 11:51 2024-04-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280351 - twig_development_team twig TWIG 2.6.2 and earlier allows remote attackers to perform unauthorized database operations via a SQL injection attack on the id parameter. NVD-CWE-Other
CVE-2001-1348 2008-09-6 05:26 2001-05-28 Show GitHub Exploit DB Packet Storm
280352 - sendmail sendmail Sendmail before 8.11.4, and 8.12.0 before 8.12.0.Beta10, allows local users to cause a denial of service and possibly corrupt the heap and gain privileges via race conditions in signal handlers. NVD-CWE-Other
CVE-2001-1349 2008-09-6 05:26 2001-05-28 Show GitHub Exploit DB Packet Storm
280353 - netwin surgeftp NetWin SurgeFTP 2.0f and earlier encrypts passwords using weak hashing, a fixed salt value and modulo 40 calculations, which allows remote attackers to conduct brute force password guessing attacks a… NVD-CWE-Other
CVE-2001-1356 2008-09-6 05:26 2001-08-4 Show GitHub Exploit DB Packet Storm
280354 - phpheaven phpmychat Multiple vulnerabilities in phpMyChat before 0.14.5 exist in (1) input.php3, (2) handle_inputH.php3, or (3) index.lib.php3 with unknown consequences, possibly related to user spoofing or improperly i… NVD-CWE-Other
CVE-2001-1357 2008-09-6 05:26 2001-02-7 Show GitHub Exploit DB Packet Storm
280355 - phpheaven phpmychat Vulnerabilities in phpMyChat before 0.14.4 allow local and possibly remote attackers to gain privileges by specifying an alternate library file in the L (localization) parameter. NVD-CWE-Other
CVE-2001-1358 2008-09-6 05:26 2001-02-7 Show GitHub Exploit DB Packet Storm
280356 - mostang sane Vulnerability in Scanner Access Now Easy (SANE) before 1.0.5, related to pnm and saned. NVD-CWE-Other
CVE-2001-1360 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
280357 - twig_development_team twig Vulnerability in The Web Information Gateway (TWIG) 2.7.1, possibly related to incorrect security rights and/or the generation of mailto links. NVD-CWE-Other
CVE-2001-1361 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
280358 - horsburgh npulse Vulnerability in the server for nPULSE before 0.53p4. NVD-CWE-Other
CVE-2001-1362 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
280359 - phpwebsite_development_team phpwebsite Vulnerability in phpWebSite before 0.7.9 related to running multiple instances in the same domain, which may allow attackers to gain administrative privileges. NVD-CWE-Other
CVE-2001-1363 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm
280360 - project_purple autodns Vulnerability in autodns.pl for AutoDNS before 0.0.4 related to domain names that are not fully qualified. NVD-CWE-Other
CVE-2001-1364 2008-09-6 05:26 2001-07-19 Show GitHub Exploit DB Packet Storm