Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
861	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC7 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の AC7 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-2903	2025-01-23 11:46	2024-03-26	Show	GitHub Exploit DB Packet Storm

862	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	fh1203 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の fh1203 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-2992	2025-01-23 11:46	2024-03-27	Show	GitHub Exploit DB Packet Storm

863	6.5	警告 Network	HasThemes	HT Mega - Absolute Addons For Elementor	HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor における脆弱性	CWE-200 CWE-noinfo	CVE-2024-32782	2025-01-23 11:46	2024-04-24	Show	GitHub Exploit DB Packet Storm

864	8.8	重要 Network	Stranger Studios	Paid Memberships Pro	Stranger Studios の WordPress 用 Paid Memberships Pro におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2024-32793	2025-01-23 11:46	2024-04-24	Show	GitHub Exploit DB Packet Storm

865	4.3	警告 Network	Artbees	jupiter x core	Artbees の WordPress 用 jupiter x core における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-12033	2025-01-23 11:43	2024-12-2	Show	GitHub Exploit DB Packet Storm

866	5.3	警告 Network	Artbees	jupiter x core	Artbees の WordPress 用 jupiter x core における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-12316	2025-01-23 11:43	2024-12-6	Show	GitHub Exploit DB Packet Storm

867	5.4	警告 Network	Themeisle	Orbit Fox	ThemeIsle の WordPress 用 Orbit Fox におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1499	2025-01-23 11:43	2024-03-13	Show	GitHub Exploit DB Packet Storm

868	5.4	警告 Network	WPDeveloper	essential blocks	WPDeveloper の WordPress 用 essential blocks におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-1854	2025-01-23 11:43	2024-03-13	Show	GitHub Exploit DB Packet Storm

869	9.6	緊急 Network	lfprojects	mlflow	lfprojects の mlflow におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-27133	2025-01-23 11:43	2024-02-23	Show	GitHub Exploit DB Packet Storm

870	9.9	緊急 Network	Apache Software Foundation	Apache Pulsar	Apache Software Foundation の Apache Pulsar における入力確認に関する脆弱性	CWE-20 CWE-913	CVE-2024-27135	2025-01-23 11:43	2024-03-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 21, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274341	-	funsoft	dinos_webserver	Encoded directory traversal vulnerability in Dino's web server 2.1 allows remote attackers to read arbitrary files via ".." (dot dot) sequences with URL-encoded (1) "/" (%2f") or (2) "\" (%5c) charac…	NVD-CWE-Other	CVE-2002-1133	2016-10-18 11:23	2002-10-4	Show	GitHub Exploit DB Packet Storm

274342	-	hp	webes_service_tools	Unknown vulnerability in Compaq WEBES Service Tools 2.0 through WEBES 4.0 (Service Pack 5) allows local users to read privileged files.	NVD-CWE-Other	CVE-2002-1134	2016-10-18 11:23	2002-10-4	Show	GitHub Exploit DB Packet Storm

274343	-	cisco	ios	Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote attackers to cause a denial of service (reset) or modify configuration via a long filename.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-0813	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

274344	-	vmware	gsx_server	Buffer overflow in VMware Authorization Service for VMware GSX Server 2.0.0 build-2050 allows remote authenticated users to execute arbitrary code via a long GLOBAL argument.	NVD-CWE-Other	CVE-2002-0814	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

274345	-	compaq	tru64	Buffer overflow in su in Tru64 Unix 5.x allows local users to gain root privileges via a long username and argument.	NVD-CWE-Other	CVE-2002-0816	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

274346	-	william_deich	super	Format string vulnerability in super for Linux allows local users to gain root privileges via a long command line argument.	NVD-CWE-Other	CVE-2002-0817	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

274347	-	wwwoffle	wwwoffle	wwwoffled in World Wide Web Offline Explorer (WWWOFFLE) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a negative Content-Length value.	NVD-CWE-Other	CVE-2002-0818	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

274348	-	artsd	artsd	Format string vulnerability in artsd, when called by artswrapper, allows local users to gain privileges via format strings in the -a argument, which results in an error message that is not properly h…	NVD-CWE-Other	CVE-2002-0819	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

274349	-	freebsd	freebsd	FreeBSD kernel 4.6 and earlier closes the file descriptors 0, 1, and 2 after they have already been assigned to /dev/null when the descriptors reference procfs or linprocfs, which could allow local u…	NVD-CWE-Other	CVE-2002-0820	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

274350	-	freebsd	freebsd	Integer overflow in the Berkeley Fast File System (FFS) in FreeBSD 4.6.1 RELEASE-p4 and earlier allows local users to access arbitrary file contents within FFS to gain privileges by creating a file t…	NVD-CWE-Other	CVE-2002-0829	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm