Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
851 7.8 重要
Local 		クアルコム qamsrv1m ファームウェア
qamsrv1h ファームウェア
QCA8081 ファームウェア
QCA6391 ファームウェア
QCA6436 ファームウェア
qam8255p ファームウェア
c-v2x 9150 ファームウェア
QCA6426 ファームウェア… 		複数のクアルコム製品における解放済みメモリの使用に関する脆弱性 CWE-416
CWE-416
CVE-2023-43521 2025-01-16 14:40 2023-09-19 Show GitHub Exploit DB Packet Storm
852 4.3 警告
Network 		Metagauss Inc. eventprime Metagauss Inc. の WordPress 用 eventprime における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1126 2025-01-16 14:40 2024-03-13 Show GitHub Exploit DB Packet Storm
853 7.8 重要
Local 		クアルコム fsm20056 ファームウェア
AR8035 ファームウェア
MDM9628 ファームウェア
qam8255p ファームウェア
c-v2x 9150 ファームウェア
FSM10056 ファームウェア
fastconnect 6900 ファームウェア
fsm2005… 		複数のクアルコム製品におけるバッファエラーの脆弱性 CWE-119
CWE-823
CVE-2024-21475 2025-01-16 14:40 2024-05-6 Show GitHub Exploit DB Packet Storm
854 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-2820 2025-01-16 14:40 2024-03-22 Show GitHub Exploit DB Packet Storm
855 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. fh1205 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の fh1205 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-3012 2025-01-16 14:40 2024-03-28 Show GitHub Exploit DB Packet Storm
856 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. W15E ファームウェア Shenzhen Tenda Technology Co.,Ltd. の W15E ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4120 2025-01-16 14:40 2024-04-24 Show GitHub Exploit DB Packet Storm
857 7.8 重要
Local 		アドビシステムズ Adobe Acrobat Reader DC
Adobe Acrobat DC
Adobe Acrobat 		アドビの Adobe Acrobat および Reader における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-49530 2025-01-16 14:30 2024-12-10 Show GitHub Exploit DB Packet Storm
858 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2023-52506 2025-01-16 14:28 2023-09-20 Show GitHub Exploit DB Packet Storm
859 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2023-52507 2025-01-16 14:28 2023-10-12 Show GitHub Exploit DB Packet Storm
860 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2023-52523 2025-01-16 14:28 2023-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 23, 2025, 5:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
81 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Tab My Content allows Reflected XSS. This issue affects Tab My Content: from n/a through… New CWE-79
Cross-site Scripting 		CVE-2025-23601 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
82 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Riosis Private Limited Rio Photo Gallery allows Reflected XSS. This issue affects Rio Photo Galle… New CWE-79
Cross-site Scripting 		CVE-2025-23597 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
83 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound dForms allows Reflected XSS. This issue affects dForms: from n/a through 1.0. New CWE-79
Cross-site Scripting 		CVE-2025-23592 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
84 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound ContentOptin Lite allows Reflected XSS. This issue affects ContentOptin Lite: from n/a t… New CWE-79
Cross-site Scripting 		CVE-2025-23589 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
85 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Explara Explara Membership allows Reflected XSS. This issue affects Explara Membership: from n/a … New CWE-79
Cross-site Scripting 		CVE-2025-23583 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
86 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Custom CSS Addons allows Reflected XSS. This issue affects Custom CSS Addons: from n/a t… New CWE-79
Cross-site Scripting 		CVE-2025-23578 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
87 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NotFound XLSXviewer allows Path Traversal. This issue affects XLSXviewer: from n/a through 2.1.1. New CWE-22
Path Traversal 		CVE-2025-23562 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
88 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bilal TAS Responsivity allows Reflected XSS. This issue affects Responsivity: from n/a through 0.… New CWE-79
Cross-site Scripting 		CVE-2025-23548 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
89 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in clickandsell REAL WordPress Sidebar allows Stored XSS. This issue affects REAL WordPress Sidebar:… New CWE-79
Cross-site Scripting 		CVE-2025-23535 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
90 - - - Missing Authorization vulnerability in Team118GROUP Team 118GROUP Agent allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Team 118GROUP Agent: from n/a throu… New CWE-862
 Missing Authorization 		CVE-2025-23512 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm