Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
791 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-4591 2025-01-16 16:05 2024-05-7 Show GitHub Exploit DB Packet Storm
792 6.1 警告
Network 		Metagauss Inc. eventprime Metagauss Inc. の WordPress 用 eventprime におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-9865 2025-01-16 16:05 2024-10-24 Show GitHub Exploit DB Packet Storm
793 6.1 警告
Network 		oretnom23 customer support system Oretnom23 の customer support system におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2023-49973 2025-01-16 16:05 2023-12-4 Show GitHub Exploit DB Packet Storm
794 5.4 警告
Network 		Leap13 Premium Addons for Elementor Leap13 の WordPress 用 Premium Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1680 2025-01-16 16:05 2024-03-13 Show GitHub Exploit DB Packet Storm
795 8.8 重要
Network 		code-projects blood bank management system codezips の Blood Bank Management System における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0232 2025-01-16 16:03 2025-01-5 Show GitHub Exploit DB Packet Storm
796 4.8 警告
Network 		code-projects Local Storage Todo App code-projects の Local Storage Todo App におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CWE-94
CVE-2025-0228 2025-01-16 16:02 2025-01-5 Show GitHub Exploit DB Packet Storm
797 6.1 警告
Network 		FreeScout FreeScout FreeScout におけるクロスサイトスクリプティングの脆弱性 CWE-74
CWE-79
CVE-2024-34697 2025-01-16 15:49 2024-05-14 Show GitHub Exploit DB Packet Storm
798 6.3 警告
Network 		FreeScout FreeScout FreeScout におけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
CWE-1321
CVE-2024-34698 2025-01-16 15:49 2024-05-14 Show GitHub Exploit DB Packet Storm
799 4.3 警告
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1502 2025-01-16 15:49 2024-03-21 Show GitHub Exploit DB Packet Storm
800 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-2823 2025-01-16 15:49 2024-03-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277331 - sap sap_r_3 Directory traversal vulnerability in Internet Graphics Server in SAP before 6.40 Patch 11 allows remote attackers to read arbitrary files via ".." sequences in an HTTP GET request. NVD-CWE-Other
CVE-2005-1691 2008-09-6 05:49 2005-07-26 Show GitHub Exploit DB Packet Storm
277332 - mailscanner mailscanner Unknown vulnerability in MailScanner 4.41.3 and earlier, related to "incomplete reporting of viruses in zip files," allows remote attackers to bypass virus detection. NVD-CWE-Other
CVE-2005-1706 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277333 - mailscanner mailscanner The vendor has released a fixed version (4.42.2) NVD-CWE-Other
CVE-2005-1706 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277334 - clam_anti-virus
gibraltar
squid 		clamav
gibraltar_firewall
squid 		Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses f… NVD-CWE-Other
CVE-2005-1711 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277335 - sy9 serendipity Unknown vulnerability in Serendipity 0.8, when used with multiple authors, allows unprivileged authors to upload arbitrary media files. NVD-CWE-Other
CVE-2005-1712 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277336 - s9y serendipity Multiple cross-site scripting (XSS) vulnerabilities in Serendipity 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) templatedropdown and (2) shoutbox plugins. NVD-CWE-Other
CVE-2005-1713 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277337 - ej3 topo Cross-site scripting (XSS) vulnerability in index.php for TOPo 2.2 (2.2.178) allows remote attackers to inject arbitrary web script or HTML via the (1) m, (2) s, (3) ID, or (4) t parameters, or the (… NVD-CWE-Other
CVE-2005-1715 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277338 - ej3 topo TOPo 2.2 (2.2.178) stores data files in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as client I… NVD-CWE-Other
CVE-2005-1716 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277339 - zyxel prestige_650r-31 ZyXEL Prestige 650R-31 router running ZyNOS FW v3.40(KO.1) allows remote attackers to cause a denial of service (CPU consumption and network loss) via crafted fragmented IP packets. NVD-CWE-Other
CVE-2005-1717 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277340 - ls_games war_times Buffer overflow in LS Games War Times 1.03 and earlier allows remote attackers to cause a denial of service (server crash) via a long nickname. NVD-CWE-Other
CVE-2005-1718 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm