Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
761 8.8 重要
Network 		Leap13 premium addons Leap13 の WordPress 用 premium addons における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2023-37869 2025-01-24 10:44 2023-07-10 Show GitHub Exploit DB Packet Storm
762 7.8 重要
Local 		マイクロフォーカス株式会社 Operations Agent マイクロフォーカス株式会社の Operations Agent における脆弱性 CWE-269
CWE-noinfo
CVE-2024-0622 2025-01-24 10:44 2024-02-15 Show GitHub Exploit DB Packet Storm
763 5.4 警告
Network 		properfraction profilepress properfraction の WordPress 用 profilepress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1409 2025-01-24 10:44 2024-03-13 Show GitHub Exploit DB Packet Storm
764 7.2 重要
Network 		PaperCut Software International Pty PaperCut MF
PaperCut NG 		PaperCut Software International Pty の PaperCut MF および PaperCut NG における脆弱性 CWE-183
CWE-Other
CVE-2024-1654 2025-01-24 10:44 2024-03-14 Show GitHub Exploit DB Packet Storm
765 6.1 警告
Network 		PaperCut Software International Pty PaperCut MF
PaperCut NG 		PaperCut Software International Pty の PaperCut MF および PaperCut NG におけるクロスサイトスクリプティングの脆弱性 CWE-76
CWE-79
CVE-2024-1883 2025-01-24 10:44 2024-03-14 Show GitHub Exploit DB Packet Storm
766 5.4 警告
Network 		Leap13 premium addons Leap13 の WordPress 用 premium addons におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1997 2025-01-24 10:44 2024-03-13 Show GitHub Exploit DB Packet Storm
767 7.5 重要
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-10400 2025-01-24 10:44 2024-11-21 Show GitHub Exploit DB Packet Storm
768 6.5 警告
Adjacent 		ジュニパーネットワークス Junos OS Evolved ジュニパーネットワークスの Junos OS Evolved における脆弱性 CWE-20
CWE-noinfo
CVE-2024-21590 2025-01-24 10:44 2024-04-12 Show GitHub Exploit DB Packet Storm
769 6.7 警告
Local 		F5 Networks BIG-IP Advanced Firewall Manager (AFM)
BIG-IP Analytics
BIG-IP Link Controller
BIG-IP Application Security Manager (ASM)
BIG-IP … 		複数の F5 Networks 製品における OS コマンドインジェクションの脆弱性 CWE-78
CWE-78
CVE-2024-21782 2025-01-24 10:43 2024-02-14 Show GitHub Exploit DB Packet Storm
770 7.5 重要
Network 		F5 Networks BIG-IP Advanced Firewall Manager (AFM)
BIG-IP Analytics
BIG-IP Link Controller
BIG-IP Application Security Manager (ASM)
BIG-IP … 		複数の F5 Networks 製品における脆弱性 CWE-908
CWE-noinfo
CVE-2024-23314 2025-01-24 10:25 2024-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275301 - ircd-hybrid
ircd-ratbox
oftc 		ircd-hybrid
ircd-ratbox
oftc-hybrid 		Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allo… CWE-189
Numeric Errors 		CVE-2009-4016 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
275302 - comtrend ct-507it_adsl_router Cross-site scripting (XSS) vulnerability in scvrtsrv.cmd in Comtrend CT-507IT ADSL Router allows remote attackers to inject arbitrary web script or HTML via the srvName parameter. CWE-79
Cross-site Scripting 		CVE-2010-0470 2010-02-3 14:00 2010-02-3 Show GitHub Exploit DB Packet Storm
275303 - viewvc viewvc query.py in the query interface in ViewVC before 1.1.3 does not reject configurations that specify an unsupported authorizer for a root, which might allow remote attackers to bypass intended access r… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0005 2010-02-2 14:00 2010-01-30 Show GitHub Exploit DB Packet Storm
275304 - zeus zeus_web_server Cross-site scripting (XSS) vulnerability in Zeus Web Server before 4.3r5, when SSL is enabled for the admin server, allows remote attackers to inject arbitrary web script or HTML via unspecified vect… CWE-79
Cross-site Scripting 		CVE-2010-0363 2010-02-2 14:00 2010-01-21 Show GitHub Exploit DB Packet Storm
275305 - zabbix zabbix SQL injection vulnerability in the get_history_lastid function in the nodewatcher component in Zabbix Server before 1.6.8 allows remote attackers to execute arbitrary SQL commands via a crafted reque… CWE-89
SQL Injection 		CVE-2009-4499 2010-02-2 14:00 2010-01-1 Show GitHub Exploit DB Packet Storm
275306 - mozilla seamonkey
thunderbird 		Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APP_TYPE_MAIL or APP_TYPE_EDITOR, which makes it easier for remote a… CWE-200
Information Exposure 		CVE-2009-4629 2010-02-2 14:00 2010-01-30 Show GitHub Exploit DB Packet Storm
275307 - cisco unified_meetingplace Multiple unspecified vulnerabilities in the web server in Cisco Unified MeetingPlace 7 before 7.0(2.3) hotfix 5F, 6 before 6.0.639.3, and possibly 5 allow remote attackers to create (1) user or (2) a… NVD-CWE-noinfo
CVE-2010-0140 2010-01-31 14:00 2010-01-29 Show GitHub Exploit DB Packet Storm
275308 - cisco unified_meetingplace Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml Affected Products Vulnerable Products Cisco Unified MeetingPlace versions 5, 6, and 7 are each affec… NVD-CWE-noinfo
CVE-2010-0140 2010-01-31 14:00 2010-01-29 Show GitHub Exploit DB Packet Storm
275309 - cisco unified_meetingplace MeetingTime in Cisco Unified MeetingPlace 6 before MR5, and possibly 5, allows remote authenticated users to gain privileges via a modified authentication sequence, aka Bug ID CSCsv66530. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0142 2010-01-31 14:00 2010-01-29 Show GitHub Exploit DB Packet Storm
275310 - cisco unified_meetingplace Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml Affected Products Vulnerable Products Cisco Unified MeetingPlace versions 5, 6, and 7 are each affec… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0142 2010-01-31 14:00 2010-01-29 Show GitHub Exploit DB Packet Storm