Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
871 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC7 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC7 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2898 2025-01-23 11:42 2024-03-26 Show GitHub Exploit DB Packet Storm
872 7.8 重要
Local 		GLPI-PROJECT.ORG glpi agent GLPI-PROJECT.ORG の glpi agent における脆弱性 CWE-20
CWE-noinfo
CVE-2024-28240 2025-01-23 11:42 2024-04-25 Show GitHub Exploit DB Packet Storm
873 9.8 緊急
Network 		code-projects Online  Shoe Store code-projects の Online Shoe Store における SQL インジェクションの脆弱性 CWE-74
CWE-89
CWE-89
CVE-2025-0205 2025-01-23 11:39 2025-01-4 Show GitHub Exploit DB Packet Storm
874 7.2 重要
Network 		Basixonline NEX-Forms Basixonline の WordPress 用 NEX-Forms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-53808 2025-01-23 11:38 2024-12-6 Show GitHub Exploit DB Packet Storm
875 8.2 重要
Network 		Themeum Tutor LMS Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-4222 2025-01-23 11:37 2024-05-16 Show GitHub Exploit DB Packet Storm
876 5.4 警告
Network 		Jegtheme Jeg Elementor Kit Jegtheme の WordPress 用 Jeg Elementor Kit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-47390 2025-01-23 11:37 2024-10-5 Show GitHub Exploit DB Packet Storm
877 6.1 警告
Network 		webangon the pack elementor addons webangon の WordPress 用 the pack elementor addons におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
CWE-352
CVE-2024-32785 2025-01-23 11:36 2024-04-24 Show GitHub Exploit DB Packet Storm
878 7.5 重要
Network 		PickPlugins post grid combo PickPlugins の WordPress 用 post grid combo における脆弱性 CWE-noinfo
情報不足 		CVE-2023-7072 2025-01-23 11:36 2023-12-21 Show GitHub Exploit DB Packet Storm
879 4.3 警告
Network 		Cozmoslabs Membership & Content Restriction - Paid Member Subscriptions Cozmoslabs の WordPress 用 Membership & Content Restriction - Paid Member Subscriptions における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1390 2025-01-23 11:36 2024-02-29 Show GitHub Exploit DB Packet Storm
880 5.4 警告
Network 		HasThemes HT Mega - Absolute Addons For Elementor HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1397 2025-01-23 11:36 2024-03-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277581 - trend_micro interscan_viruswall InterScan VirusWall for Solaris doesn't scan files for viruses when a single HTTP request includes two GET commands. NVD-CWE-Other
CVE-1999-0378 2008-09-9 21:34 1999-02-22 Show GitHub Exploit DB Packet Storm
277582 - acc tigris ACC Tigris allows public access without a login. NVD-CWE-Other
CVE-1999-0383 2008-09-9 21:34 1999-02-2 Show GitHub Exploit DB Packet Storm
277583 - datalynx suguard DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root. NVD-CWE-Other
CVE-1999-0388 2008-09-9 21:34 1999-01-1 Show GitHub Exploit DB Packet Storm
277584 - debian debian_linux Buffer overflow in the bootp server in the Debian Linux netstd package. NVD-CWE-Other
CVE-1999-0389 2008-09-9 21:34 1999-01-3 Show GitHub Exploit DB Packet Storm
277585 - redhat
suse 		linux
suse_linux 		Buffer overflow in Dosemu Slang library in Linux. NVD-CWE-Other
CVE-1999-0390 2008-09-9 21:34 1999-01-4 Show GitHub Exploit DB Packet Storm
277586 - backweb_technologies backweb_polite_agent_protocol A race condition in the BackWeb Polite Agent Protocol allows an attacker to spoof a BackWeb server. NVD-CWE-Other
CVE-1999-0395 2008-09-9 21:34 1999-01-1 Show GitHub Exploit DB Packet Storm
277587 - debian
freebsd
redhat
suse 		debian_linux
freebsd
linux
suse_linux 		A buffer overflow in lsof allows local users to obtain root privilege. NVD-CWE-Other
CVE-1999-0405 2008-09-9 21:34 1999-02-18 Show GitHub Exploit DB Packet Storm
277588 - sun cobalt_raq Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server. NVD-CWE-Other
CVE-1999-0408 2008-09-9 21:34 1999-02-25 Show GitHub Exploit DB Packet Storm
277589 - suse suse_linux Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access. NVD-CWE-Other
CVE-1999-0409 2008-09-9 21:34 1999-03-4 Show GitHub Exploit DB Packet Storm
277590 - sgi irix A buffer overflow in the SGI X server allows local users to gain root access through the X server font path. NVD-CWE-Other
CVE-1999-0413 2008-09-9 21:34 1999-03-1 Show GitHub Exploit DB Packet Storm