Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
791 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-4591 2025-01-16 16:05 2024-05-7 Show GitHub Exploit DB Packet Storm
792 6.1 警告
Network 		Metagauss Inc. eventprime Metagauss Inc. の WordPress 用 eventprime におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-9865 2025-01-16 16:05 2024-10-24 Show GitHub Exploit DB Packet Storm
793 6.1 警告
Network 		oretnom23 customer support system Oretnom23 の customer support system におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2023-49973 2025-01-16 16:05 2023-12-4 Show GitHub Exploit DB Packet Storm
794 5.4 警告
Network 		Leap13 Premium Addons for Elementor Leap13 の WordPress 用 Premium Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1680 2025-01-16 16:05 2024-03-13 Show GitHub Exploit DB Packet Storm
795 8.8 重要
Network 		code-projects blood bank management system codezips の Blood Bank Management System における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0232 2025-01-16 16:03 2025-01-5 Show GitHub Exploit DB Packet Storm
796 4.8 警告
Network 		code-projects Local Storage Todo App code-projects の Local Storage Todo App におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CWE-94
CVE-2025-0228 2025-01-16 16:02 2025-01-5 Show GitHub Exploit DB Packet Storm
797 6.1 警告
Network 		FreeScout FreeScout FreeScout におけるクロスサイトスクリプティングの脆弱性 CWE-74
CWE-79
CVE-2024-34697 2025-01-16 15:49 2024-05-14 Show GitHub Exploit DB Packet Storm
798 6.3 警告
Network 		FreeScout FreeScout FreeScout におけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
CWE-1321
CVE-2024-34698 2025-01-16 15:49 2024-05-14 Show GitHub Exploit DB Packet Storm
799 4.3 警告
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1502 2025-01-16 15:49 2024-03-21 Show GitHub Exploit DB Packet Storm
800 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-2823 2025-01-16 15:49 2024-03-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275721 - suse suse_linux Linux cdwtools 093 and earlier allows local users to gain root privileges via the /tmp directory. NVD-CWE-Other
CVE-2000-0363 2008-09-11 04:04 1999-10-22 Show GitHub Exploit DB Packet Storm
275722 - debian debian_linux dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files. NVD-CWE-Other
CVE-2000-0366 2008-09-11 04:04 1999-12-2 Show GitHub Exploit DB Packet Storm
275723 - michael_jennings eterm Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges. NVD-CWE-Other
CVE-2000-0367 2008-09-11 04:04 1999-02-18 Show GitHub Exploit DB Packet Storm
275724 - caldera openlinux The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service. NVD-CWE-Other
CVE-2000-0369 2008-09-11 04:04 1999-10-8 Show GitHub Exploit DB Packet Storm
275725 - caldera openlinux The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command. NVD-CWE-Other
CVE-2000-0370 2008-09-11 04:04 1999-01-29 Show GitHub Exploit DB Packet Storm
275726 - kde kde The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2000-0371 2008-09-11 04:04 1999-03-1 Show GitHub Exploit DB Packet Storm
275727 - freebsd freebsd The kernel in FreeBSD 3.2 follows symbolic links when it creates core dump files, which allows local attackers to modify arbitrary files. NVD-CWE-Other
CVE-2000-0375 2008-09-11 04:04 2001-03-12 Show GitHub Exploit DB Packet Storm
275728 - i-drive filo Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request. NVD-CWE-Other
CVE-2000-0376 2008-09-11 04:04 2000-06-7 Show GitHub Exploit DB Packet Storm
275729 - redhat linux The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, but an open file descriptor for those devices can be maintained after the user logs out, which allow… NVD-CWE-Other
CVE-2000-0378 2008-09-11 04:04 2000-05-3 Show GitHub Exploit DB Packet Storm
275730 - allaire clustercats ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site. NVD-CWE-Other
CVE-2000-0382 2008-09-11 04:04 2000-05-8 Show GitHub Exploit DB Packet Storm