Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
871 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC7 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC7 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2898 2025-01-23 11:42 2024-03-26 Show GitHub Exploit DB Packet Storm
872 7.8 重要
Local 		GLPI-PROJECT.ORG glpi agent GLPI-PROJECT.ORG の glpi agent における脆弱性 CWE-20
CWE-noinfo
CVE-2024-28240 2025-01-23 11:42 2024-04-25 Show GitHub Exploit DB Packet Storm
873 9.8 緊急
Network 		code-projects Online  Shoe Store code-projects の Online Shoe Store における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0205 2025-01-23 11:39 2025-01-4 Show GitHub Exploit DB Packet Storm
874 7.2 重要
Network 		Basixonline NEX-Forms Basixonline の WordPress 用 NEX-Forms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-53808 2025-01-23 11:38 2024-12-6 Show GitHub Exploit DB Packet Storm
875 8.2 重要
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-4222 2025-01-23 11:37 2024-05-16 Show GitHub Exploit DB Packet Storm
876 5.4 警告
Network 		Jegtheme Jeg Elementor Kit Jegtheme の WordPress 用 Jeg Elementor Kit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-47390 2025-01-23 11:37 2024-10-5 Show GitHub Exploit DB Packet Storm
877 6.1 警告
Network 		webangon the pack elementor addons webangon の WordPress 用 the pack elementor addons におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
CWE-352
CVE-2024-32785 2025-01-23 11:36 2024-04-24 Show GitHub Exploit DB Packet Storm
878 7.5 重要
Network 		PickPlugins post grid combo PickPlugins の WordPress 用 post grid combo における脆弱性 CWE-noinfo
情報不足 		CVE-2023-7072 2025-01-23 11:36 2023-12-21 Show GitHub Exploit DB Packet Storm
879 4.3 警告
Network 		Cozmoslabs Membership & Content Restriction - Paid Member Subscriptions Cozmoslabs の WordPress 用 Membership & Content Restriction - Paid Member Subscriptions における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1390 2025-01-23 11:36 2024-02-29 Show GitHub Exploit DB Packet Storm
880 5.4 警告
Network 		HasThemes HT Mega - Absolute Addons For Elementor HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1397 2025-01-23 11:36 2024-03-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275291 - cisco unified_communications_manager Per:http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1b924.shtml The following products are affected by vulnerabilities that are described in this advisory: * Cisco … NVD-CWE-Other
CVE-2010-0587 2010-03-6 01:30 2010-03-6 Show GitHub Exploit DB Packet Storm
275292 - cisco unified_communications_manager The CTI Manager service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x before 4.3(2)sr1a, 6.x before 6.1(3), 7.0x before 7.0(2), 7.1x before 7.1(2), and 8.x before 8.0(1… NVD-CWE-Other
CVE-2010-0592 2010-03-6 01:30 2010-03-6 Show GitHub Exploit DB Packet Storm
275293 - sun virtualbox
xvm_virtualbox 		Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to cause a denial of servic… NVD-CWE-noinfo
CVE-2009-3940 2010-03-4 15:40 2009-11-17 Show GitHub Exploit DB Packet Storm
275294 - ibm lotus_inotes Cross-site scripting (XSS) vulnerability in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.281 for Domino 8.0.2 FP4 allows remote attackers to inject arbitrary web script or HTML via vect… CWE-79
Cross-site Scripting 		CVE-2010-0920 2010-03-4 14:00 2010-03-4 Show GitHub Exploit DB Packet Storm
275295 - ibm aix Unspecified vulnerability in secldapclntd in IBM AIX 5.3 with SP 5300-11-02 allows attackers to cause a denial of service (LDAP login failure) via unknown vectors. NOTE: some of these details are ob… NVD-CWE-noinfo
CVE-2010-0922 2010-03-4 14:00 2010-03-4 Show GitHub Exploit DB Packet Storm
275296 - ibm aix Per: ftp://public.dhe.ibm.com/aix/efixes/iz69977/ IZ69977.epkg.Z NVD-CWE-noinfo
CVE-2010-0922 2010-03-4 14:00 2010-03-4 Show GitHub Exploit DB Packet Storm
275297 - kde kde_sc Race condition in workspace/krunner/lock/lockdlg.cc in the KRunner lock module in kdebase in KDE SC 4.4.0 allows physically proximate attackers to bypass KScreenSaver screen locking and access an una… CWE-362
Race Condition 		CVE-2010-0923 2010-03-4 14:00 2010-03-4 Show GitHub Exploit DB Packet Storm
275298 - apple safari cfnetwork.dll 1.450.5.0 in CFNetwork, as used by safari.exe 531.21.10 in Apple Safari 4.0.3 and 4.0.4 on Windows, allows remote attackers to cause a denial of service (application crash) via a long s… NVD-CWE-Other
CVE-2010-0924 2010-03-4 14:00 2010-03-4 Show GitHub Exploit DB Packet Storm
275299 - apple safari cfnetwork.dll 1.450.5.0 in CFNetwork, as used by safari.exe 531.21.10 in Apple Safari 4.0.4 on Windows, allows remote attackers to cause a denial of service (application crash) via a long string in t… NVD-CWE-Other
CVE-2010-0925 2010-03-4 14:00 2010-03-4 Show GitHub Exploit DB Packet Storm
275300 - jtl-software jtl-shop SQL injection vulnerability in druckansicht.php in JTL-Shop 2 allows remote attackers to execute arbitrary SQL commands via the s parameter. CWE-89
SQL Injection 		CVE-2010-0691 2010-03-3 14:00 2010-02-24 Show GitHub Exploit DB Packet Storm