Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 23, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
881 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC18 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC18 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2490 2025-01-16 17:25 2024-03-15 Show GitHub Exploit DB Packet Storm
882 8.8 重要
Network 		マイクロソフト Microsoft Visual Studio
Microsoft SQL Server
Microsoft ODBC Driver 		SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性 CWE-121
CWE-noinfo
CVE-2024-28934 2025-01-16 17:22 2024-04-9 Show GitHub Exploit DB Packet Storm
883 5.5 警告
Local 		Debian
Linux		 Linux Kernel
Debian GNU/Linux 		Linux の Linux Kernel 等複数ベンダの製品における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-36941 2025-01-16 17:19 2024-04-19 Show GitHub Exploit DB Packet Storm
884 8.8 重要
Network 		マイクロソフト Microsoft Visual Studio
Microsoft SQL Server
Microsoft ODBC Driver 		SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性 CWE-190
CWE-noinfo
CVE-2024-28936 2025-01-16 17:18 2024-04-9 Show GitHub Exploit DB Packet Storm
885 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. f1203 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の f1203 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2978 2025-01-16 17:12 2024-03-27 Show GitHub Exploit DB Packet Storm
886 5.4 警告
Network 		Jegtheme Jeg Elementor Kit Jegtheme の WordPress 用 Jeg Elementor Kit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3161 2025-01-16 17:12 2024-05-2 Show GitHub Exploit DB Packet Storm
887 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. W15E ファームウェア Shenzhen Tenda Technology Co.,Ltd. の W15E ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4125 2025-01-16 17:12 2024-04-24 Show GitHub Exploit DB Packet Storm
888 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-4587 2025-01-16 17:12 2024-05-7 Show GitHub Exploit DB Packet Storm
889 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2024-36935 2025-01-16 17:12 2024-04-25 Show GitHub Exploit DB Packet Storm
890 9.8 緊急
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2023-38724 2025-01-16 17:12 2023-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 23, 2025, 5:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
61 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Preloader Quotes allows Reflected XSS. This issue affects Preloader Quotes: from n/a thr… New CWE-79
Cross-site Scripting 		CVE-2025-23682 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
62 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jannatqualitybacklinks.com REDIRECTION PLUS allows Reflected XSS. This issue affects REDIRECTION … New CWE-79
Cross-site Scripting 		CVE-2025-23681 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
63 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Moshiur Rahman Mehedi FP RSS Category Excluder allows Reflected XSS. This issue affects FP RSS Ca… New CWE-79
Cross-site Scripting 		CVE-2025-23679 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
64 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound LocalGrid allows Reflected XSS. This issue affects LocalGrid: from n/a through 1.0.1. New CWE-79
Cross-site Scripting 		CVE-2025-23678 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
65 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound LH Email allows Reflected XSS. This issue affects LH Email: from n/a through 1.12. New CWE-79
Cross-site Scripting 		CVE-2025-23676 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
66 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Bit.ly linker allows Reflected XSS. This issue affects Bit.ly linker: from n/a through 1… New CWE-79
Cross-site Scripting 		CVE-2025-23674 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
67 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Instant Appointment allows Reflected XSS. This issue affects Instant Appointment: from n… New CWE-79
Cross-site Scripting 		CVE-2025-23672 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
68 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound ReadMe Creator allows Reflected XSS. This issue affects ReadMe Creator: from n/a through… New CWE-79
Cross-site Scripting 		CVE-2025-23643 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
69 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Content Planner allows Reflected XSS. This issue affects Content Planner: from n/a throu… New CWE-79
Cross-site Scripting 		CVE-2025-23631 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
70 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Cyber Slider allows Reflected XSS. This issue affects Cyber Slider: from n/a through 1.1. New CWE-79
Cross-site Scripting 		CVE-2025-23630 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm