Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 9, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
81 5.4 警告
Network 		Royal Elementor Addons Royal Elementor Addons and Templates Royal Elementor Addons の WordPress 用 Royal Elementor Addons and Templates におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1500 2025-01-9 11:24 2024-03-7 Show GitHub Exploit DB Packet Storm
82 7.4 重要
Network 		WPDeveloper Essential Addons for Elementor WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1536 2025-01-9 11:24 2024-03-13 Show GitHub Exploit DB Packet Storm
83 5.4 警告
Network 		Pixelite events manager Pixelite の WordPress 用 events manager におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2111 2025-01-9 11:24 2024-03-28 Show GitHub Exploit DB Packet Storm
84 5.4 警告
Network 		BoldThemes Bold Page Builder BoldThemes の WordPress 用 Bold Page Builder におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2733 2025-01-9 11:24 2024-04-10 Show GitHub Exploit DB Packet Storm
85 8.1 重要
Network 		langchain langchain langchain におけるパストラバーサルの脆弱性 New CWE-22
CWE-31
CVE-2024-28088 2025-01-9 11:24 2024-03-4 Show GitHub Exploit DB Packet Storm
86 8.7 重要
Network 		ZITADEL ZITADEL ZITADEL におけるクロスサイトスクリプティングの脆弱性 New CWE-434
CWE-79
CVE-2024-29891 2025-01-9 11:24 2024-03-27 Show GitHub Exploit DB Packet Storm
87 5.4 警告
Network 		BoldThemes Bold Page Builder BoldThemes の WordPress 用 Bold Page Builder におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-30179 2025-01-9 11:24 2024-03-27 Show GitHub Exploit DB Packet Storm
88 4.9 警告
Network 		WPZOOM beaver builder addons WPZOOM の WordPress 用 beaver builder addons におけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2024-37464 2025-01-9 11:24 2024-07-9 Show GitHub Exploit DB Packet Storm
89 5.3 警告
Network 		ZITADEL ZITADEL ZITADEL における観測可能な不一致に関する脆弱性 New CWE-203
CWE-203
CVE-2024-41952 2025-01-9 11:24 2024-07-31 Show GitHub Exploit DB Packet Storm
90 6.5 警告
Network 		デル EMC PowerScale OneFS デルの EMC PowerScale OneFS における脆弱性 New CWE-400
CWE-noinfo
CVE-2024-42426 2025-01-9 11:24 2024-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276351 - imatix xitami Imatix Xitami 2.5 b5 does not properly terminate certain Keep-Alive connections that have been broken or closed early, which allows remote attackers to cause a denial of service (crash) via a large n… NVD-CWE-Other
CVE-2002-1942 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276352 - safetp safetp_server SafeTP 1.46, when network address translation (NAT) is being used, leaks the internal IP address of the FTP server in a response to a passive mode (PASV) file transfer request. NVD-CWE-Other
CVE-2002-1943 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276353 - motorola surfboard Motorola Surfboard 4200 cable modem allows remote attackers to cause a denial of service (crash) by performing a SYN scan using a tool such as nmap. NVD-CWE-Other
CVE-2002-1944 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276354 - virtualzone smartmail_server Buffer overflow in SmartMail Server 1.0 Beta 10 allows remote attackers to cause a denial of service (crash) via a long request to (1) TCP port 25 (SMTP) or (2) TCP port 110 (POP3). NVD-CWE-Other
CVE-2002-1945 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276355 - webmin webmin Webmin 0.21 through 1.0 uses the same built-in SSL key for all installations, which allows remote attackers to eavesdrop or highjack the SSL session. NVD-CWE-Other
CVE-2002-1947 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276356 - gringotts gringotts Multiple buffer overflows in Gringotts 0.5.9 allows local users to execute arbitrary commands via unknown attack vectors. NVD-CWE-Other
CVE-2002-1948 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276357 - phprank phprank Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML via the (1) the email parameter of add.php or (2) the banner URL (banurl paramet… NVD-CWE-Other
CVE-2002-1950 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276358 - phprank phprank phpRank 1.8 does not properly check the return codes for MySQL operations when authenticating users, which could allow remote attackers to authenticate using a NULL password when database errors occu… NVD-CWE-Other
CVE-2002-1952 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276359 - aol instant_messenger Heap-based buffer overflow in the goim handler of AOL Instant Messenger (AIM) 4.4 through 4.8.2616 allows remote attackers to cause a denial of service (crash) via escaping of the screen name paramet… NVD-CWE-Other
CVE-2002-1953 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
276360 - php php Cross-site scripting (XSS) vulnerability in the phpinfo function in PHP 4.2.3 allows remote attackers to inject arbitrary web script or HTML via the query string argument, as demonstrated using soinf… NVD-CWE-Other
CVE-2002-1954 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm