Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
851 8.8 重要
Network 		jfinaloa project jfinaloa jfinaloa project の jfinaloa における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-57770 2025-01-23 11:48 2025-01-16 Show GitHub Exploit DB Packet Storm
852 8.8 重要
Network 		code-projects Online  Shoe Store code-projects の Online Shoe Store における脆弱性 CWE-266
CWE-284
CWE-noinfo
CVE-2025-0206 2025-01-23 11:48 2025-01-4 Show GitHub Exploit DB Packet Storm
853 7.5 重要
Network 		Palo Alto Networks PAN-OS Palo Alto Networks の PAN-OS における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
CWE-770
CVE-2024-3382 2025-01-23 11:48 2024-04-10 Show GitHub Exploit DB Packet Storm
854 6.1 警告
Network 		フォーティネット FortiAuthenticator フォーティネットの FortiAuthenticator におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2024-23664 2025-01-23 11:47 2024-05-14 Show GitHub Exploit DB Packet Storm
855 9.8 緊急
Network 		Zephyr Project Zephyr Zephyr Project の Zephyr における境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2023-6749 2025-01-23 11:46 2023-12-12 Show GitHub Exploit DB Packet Storm
856 8.8 重要
Network 		podsfoundation pods podsfoundation の WordPress 用 pods における脆弱性 CWE-noinfo
情報不足 		CVE-2023-6999 2025-01-23 11:46 2023-12-20 Show GitHub Exploit DB Packet Storm
857 9.8 緊急
Network 		Cozmoslabs Membership & Content Restriction - Paid Member Subscriptions Cozmoslabs の WordPress 用 Membership & Content Restriction - Paid Member Subscriptions における脆弱性 CWE-287
CWE-Other
CVE-2024-12919 2025-01-23 11:46 2024-12-24 Show GitHub Exploit DB Packet Storm
858 5.4 警告
Network 		exclusiveaddons exclusive addons for elementor exclusiveaddons の WordPress 用 exclusive addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1414 2025-01-23 11:46 2024-03-13 Show GitHub Exploit DB Packet Storm
859 6.5 警告
Network 		HasThemes HT Mega - Absolute Addons For Elementor HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-1974 2025-01-23 11:46 2024-04-9 Show GitHub Exploit DB Packet Storm
860 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC7 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC7 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2896 2025-01-23 11:46 2024-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
561 - - - An issue in Tianjin Xiaowu Information technology Co., Ltd BeiKe Holdings iOS 1.3.50 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56960 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
562 - - - An issue in Mashang Consumer Finance Co., Ltd Anyihua iOS 3.6.2 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56959 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
563 - - - An issue in Kingsoft Office Software Corporation Limited WPS Office iOS 12.20.0 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56957 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
564 - - - An issue in Tencent Technology (Shenzhen) Company Limited QQMail iOS 6.6.4 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56955 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
565 - - - An issue in Beijing Baidu Netcom Science & Technology Co Ltd Haokan Video iOS 7.70.0 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56954 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
566 - - - An issue in Baidu (China) Co Ltd Baidu Input Method (iOS version) v12.6.13 allows attackers to access user information via supplying a crafted link. - CVE-2024-56953 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
567 - - - An issue in Beijing Baidu Netcom Science & Technology Co Ltd Baidu Lite app (iOS version) 6.40.0 allows attackers to access user information via supplying a crafted link. - CVE-2024-56952 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
568 - - - An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster iOS 10.6.13 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56951 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
569 - - - An issue in KuGou Technology Co., Ltd KuGou Concept iOS 4.0.61 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56950 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
570 - - - An issue in Guangzhou Polar Future Culture Technology Co., Ltd University Search iOS 2.27.0 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56949 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm