Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 23, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
731 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-47459 2025-01-17 16:05 2021-10-17 Show GitHub Exploit DB Packet Storm
732 4.1 警告
Local 		Hitachi Energy UNEM
FOXMAN-UN 		Hitachi Energy の FOXMAN-UN および UNEM における重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2024-28024 2025-01-17 16:03 2024-06-11 Show GitHub Exploit DB Packet Storm
733 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における二重解放に関する脆弱性 CWE-415
CWE-416
CVE-2021-47123 2025-01-17 16:02 2021-05-14 Show GitHub Exploit DB Packet Storm
734 7 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における競合状態に関する脆弱性 CWE-362
CWE-416
CVE-2024-56556 2025-01-17 16:00 2024-10-13 Show GitHub Exploit DB Packet Storm
735 7 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における競合状態に関する脆弱性 CWE-362
CWE-416
CVE-2024-36899 2025-01-17 15:58 2024-05-9 Show GitHub Exploit DB Packet Storm
736 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-26871 2025-01-17 15:55 2024-02-5 Show GitHub Exploit DB Packet Storm
737 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2023-52863 2025-01-17 15:53 2023-10-25 Show GitHub Exploit DB Packet Storm
738 6.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2025
Microsoft Window… 		ワイヤレス広域ネットワーク サービス (WwanSvc) の特権昇格の脆弱性 CWE-125
CWE-noinfo
CVE-2024-49101 2025-01-17 15:52 2024-12-10 Show GitHub Exploit DB Packet Storm
739 5.6 警告
Network 		Hitachi Energy FOXMAN-UN
UNEM 		Hitachi Energy の FOXMAN-UN および UNEM における過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2024-28022 2025-01-17 15:50 2024-06-11 Show GitHub Exploit DB Packet Storm
740 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-47191 2025-01-17 15:49 2021-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351 5.4 MEDIUM
Network 		- - The AI Power: Complete AI Pack plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.8.96 via the wpaicg_troubleshoot_add_vector(). This makes it p… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-13360 2025-01-22 17:15 2025-01-22 Show GitHub Exploit DB Packet Storm
352 6.1 MEDIUM
Network 		- - The Themify Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, … New CWE-79
Cross-site Scripting 		CVE-2024-13319 2025-01-22 17:15 2025-01-22 Show GitHub Exploit DB Packet Storm
353 6.1 MEDIUM
Network 		- - The XML for Google Merchant Center plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'feed_id' parameter in all versions up to, and including, 3.0.11 due to insufficient in… New CWE-79
Cross-site Scripting 		CVE-2024-13406 2025-01-22 16:15 2025-01-22 Show GitHub Exploit DB Packet Storm
354 9.8 CRITICAL
Network 		- - The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including, 5.1.8. This is due to the plugin not properly verifying a user's identity prior to loggin… New CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2024-12857 2025-01-22 16:15 2025-01-22 Show GitHub Exploit DB Packet Storm
355 6.4 MEDIUM
Network 		- - The Stackable – Page Builder Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' parameter of the Button block in all versions up to, and including, 3.1… New CWE-79
Cross-site Scripting 		CVE-2024-12117 2025-01-22 16:15 2025-01-22 Show GitHub Exploit DB Packet Storm
356 - - - Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If a user logs in to CLI of the affected produc… New CWE-78
OS Command  		CVE-2025-23237 2025-01-22 15:15 2025-01-22 Show GitHub Exploit DB Packet Storm
357 - - - Inclusion of undocumented features issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. A remote attacker may disable the LAN-side firewall function of the affected products, and open specifi… New CWE-1242
 Inclusion of Undocumented Features or Chicken Bits 		CVE-2025-22450 2025-01-22 15:15 2025-01-22 Show GitHub Exploit DB Packet Storm
358 - - - Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If this vulnerability is exploited, an arbitrar… New CWE-78
OS Command  		CVE-2025-20617 2025-01-22 15:15 2025-01-22 Show GitHub Exploit DB Packet Storm
359 4.3 MEDIUM
Network 		- - The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'qc_wp_latest_update_check_pro' function in all versio… New CWE-862
 Missing Authorization 		CVE-2024-12879 2025-01-22 15:15 2025-01-22 Show GitHub Exploit DB Packet Storm
360 8.6 HIGH
Local 		- - A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might miti… New CWE-269
 Improper Privilege Management 		CVE-2024-11218 2025-01-22 14:15 2025-01-22 Show GitHub Exploit DB Packet Storm