Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
81 8.8 重要
Network 		unlimited-elements unlimited elements for elementor unlimited-elements の WordPress 用 unlimited elements for elementor におけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2023-6743 2025-01-31 11:38 2023-12-12 Show GitHub Exploit DB Packet Storm
82 9.8 緊急
Network 		HasThemes HT Mega - Absolute Addons For Elementor HasThemes の WordPress 用 HT Mega - Absolute Addons For Elementor における脆弱性 New CWE-269
CWE-noinfo
CVE-2023-37999 2025-01-31 11:38 2023-07-11 Show GitHub Exploit DB Packet Storm
83 7.2 重要
Network 		weDevs wp erp weDevs の WordPress 用 wp erp における SQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2024-0956 2025-01-31 11:37 2024-03-29 Show GitHub Exploit DB Packet Storm
84 9.8 緊急
Network 		- IBM の Security Verify Access におけるハードコードされた認証情報の使用に関する脆弱性 New CWE-798
ハードコードされた認証情報の使用 		CVE-2024-49805 2025-01-31 11:00 2024-11-29 Show GitHub Exploit DB Packet Storm
85 8.8 重要
Network 		IBM IBM DevOps Deploy
IBM UrbanCode Deploy 		IBM の IBM DevOps Deploy および IBM UrbanCode Deploy におけるセッション期限に関する脆弱性 New CWE-613
不適切なセッション期限 		CVE-2024-22358 2025-01-31 11:00 2024-04-11 Show GitHub Exploit DB Packet Storm
86 5.4 警告
Network 		unlimited-elements unlimited elements for elementor unlimited-elements の WordPress 用 unlimited elements for elementor におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-0367 2025-01-31 10:48 2024-03-30 Show GitHub Exploit DB Packet Storm
87 6.1 警告
Network 		weDevs wp erp weDevs の WordPress 用 wp erp におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-0609 2025-01-31 10:48 2024-03-29 Show GitHub Exploit DB Packet Storm
88 7.2 重要
Network 		weDevs wp erp weDevs の WordPress 用 wp erp における SQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2024-0952 2025-01-31 10:48 2024-04-9 Show GitHub Exploit DB Packet Storm
89 9.8 緊急
Network 		ThemeREX Addons ThemeREX の WordPress 用 Addons における危険なタイプのファイルの無制限アップロードに関する脆弱性 New CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2024-13448 2025-01-31 10:48 2025-01-28 Show GitHub Exploit DB Packet Storm
90 4.4 警告
Local 		Google Android Google の Android における境界外書き込みに関する脆弱性 New CWE-787
境界外書き込み 		CVE-2024-20020 2025-01-31 10:48 2024-03-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
501 - - - An issue in Mashang Consumer Finance Co., Ltd Anyihua iOS 3.6.2 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56959 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
502 - - - An issue in Kingsoft Office Software Corporation Limited WPS Office iOS 12.20.0 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56957 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
503 - - - An issue in Tencent Technology (Shenzhen) Company Limited QQMail iOS 6.6.4 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56955 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
504 - - - An issue in Beijing Baidu Netcom Science & Technology Co Ltd Haokan Video iOS 7.70.0 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56954 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
505 - - - An issue in Baidu (China) Co Ltd Baidu Input Method (iOS version) v12.6.13 allows attackers to access user information via supplying a crafted link. - CVE-2024-56953 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
506 - - - An issue in Beijing Baidu Netcom Science & Technology Co Ltd Baidu Lite app (iOS version) 6.40.0 allows attackers to access user information via supplying a crafted link. - CVE-2024-56952 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
507 - - - An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster iOS 10.6.13 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56951 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
508 - - - An issue in KuGou Technology Co., Ltd KuGou Concept iOS 4.0.61 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56950 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
509 - - - An issue in Guangzhou Polar Future Culture Technology Co., Ltd University Search iOS 2.27.0 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56949 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm
510 - - - An issue in KuGou Technology CO. LTD KuGou Music iOS v20.0.0 allows attackers to access sensitive user information via supplying a crafted link. - CVE-2024-56948 2025-01-29 05:15 2025-01-28 Show GitHub Exploit DB Packet Storm