Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
711 9.8 緊急
Network 		Zephyr Project Zephyr Zephyr Project の Zephyr における古典的バッファオーバーフローの脆弱性 CWE-120
CWE-120
CVE-2023-6881 2025-01-24 11:55 2023-12-15 Show GitHub Exploit DB Packet Storm
712 3.1
Network 		PaperCut Software International Pty PaperCut MF
PaperCut NG 		PaperCut Software International Pty の PaperCut MF および PaperCut NG における脆弱性 CWE-76
CWE-Other
CVE-2024-1221 2025-01-24 11:54 2024-03-14 Show GitHub Exploit DB Packet Storm
713 6.5 警告
Network 		PaperCut Software International Pty PaperCut MF
PaperCut NG 		PaperCut Software International Pty の PaperCut MF および PaperCut NG におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
CWE-918
CVE-2024-1884 2025-01-24 11:54 2024-03-14 Show GitHub Exploit DB Packet Storm
714 5.5 警告
Local 		Zemana Anti-Logger Zemana の Anti-Logger におけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2024-2180 2025-01-24 11:54 2024-03-15 Show GitHub Exploit DB Packet Storm
715 4.9 警告
Network 		openautomationsoftware oas platform openautomationsoftware の oas platform における脆弱性 CWE-73
CWE-Other
CVE-2024-21870 2025-01-24 11:54 2024-04-3 Show GitHub Exploit DB Packet Storm
716 5.5 警告
Local 		Zemana Anti-Logger Zemana の Anti-Logger における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-2204 2025-01-24 11:54 2024-03-15 Show GitHub Exploit DB Packet Storm
717 5.4 警告
Network 		Leap13 premium addons Leap13 の WordPress 用 premium addons におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2237 2025-01-24 11:54 2024-03-13 Show GitHub Exploit DB Packet Storm
718 5.4 警告
Network 		Paytium Paytium WordPress 用 Paytium におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-25099 2025-01-24 11:54 2024-03-13 Show GitHub Exploit DB Packet Storm
719 5.4 警告
Network 		Esri ArcGIS Enterprise Esri の ArcGIS Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-25708 2025-01-24 11:54 2024-04-4 Show GitHub Exploit DB Packet Storm
720 5.3 警告
Network 		Moodle
Fedora Project		 Moodle
Fedora 		Moodle の Moodle 等複数ベンダの製品における脆弱性 CWE-284
CWE-noinfo
CVE-2024-25980 2025-01-24 11:54 2024-02-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1441 8.8 HIGH
Network 		- - A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC PCS neo V4.1 (All versions < V4.1 Update 2), SIMATIC PCS neo V5.0 (All versions < V5.0 Update 1), SIMOCODE ES V19 (… CWE-613
 Insufficient Session Expiration 		CVE-2024-45386 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1442 5.3 MEDIUM
Network 		- - A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-… CWE-400
 Uncontrolled Resource Consumption 		CVE-2024-23814 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1443 6.8 MEDIUM
Adjacent 		- - SolarWinds Platform is vulnerable to a reflected cross-site scripting vulnerability. This was caused by an insufficient sanitation of input parameters. This vulnerability requires authentication by a… CWE-79
Cross-site Scripting 		CVE-2024-52612 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1444 3.5 LOW
Adjacent 		- - The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. While the data does not provide anything sensitive, the information could assist an attacker… CWE-209
Information Exposure Through an Error Message 		CVE-2024-52611 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1445 3.5 LOW
Adjacent 		- - SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitation was not applied allowing for the possibility of a malicious web request. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-52606 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1446 4.6 MEDIUM
Local 		- - Sensitive data could be exposed to non- privileged users in a configuration file. Local access to the computer with a low- privileged account is required to access the configuration file containing … CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2024-45718 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1447 5.5 MEDIUM
Local 		- - SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software. CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2024-28989 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1448 8.8 HIGH
Network 		- - The Zox News - Professional WordPress News & Magazine Theme plugin for WordPress is vulnerable to unauthorized data modification. This vulnerability can lead to privilege escalation and denial of ser… CWE-862
 Missing Authorization 		CVE-2024-13643 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1449 - - - rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a l… - CVE-2025-24898 2025-02-11 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1450 9.8 CRITICAL
Network 		- - The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.7. This is due to the plugin not properly validating a user's… CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2025-0181 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm