Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 3, 2025, 1:14 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 921 | 9.8 |
緊急
Network Stranger Studios |
Paid Memberships Pro
|
Stranger Studios の WordPress 用 Paid Memberships Pro におけるユーザ制御の鍵による認証回避に関する脆弱性
|
CWE-639
|
ユーザ制御の鍵による認証回避
CVE-2024-37277
|
2025-01-23 11:18 |
2024-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 922 | 8.8 |
重要
Network |
Themeum | Tutor LMS | Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2024-4351 | 2025-01-23 11:18 | 2024-05-16 | Show | GitHub Exploit DB Packet Storm |
| 923 | 5.4 |
警告
Network |
moveaddons | move addons for elementor | moveaddons の WordPress 用 move addons for elementor におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2024-47364 | 2025-01-23 11:18 | 2024-10-6 | Show | GitHub Exploit DB Packet Storm |
| 924 | 8.8 |
重要
Network |
webangon | the pack elementor addons | webangon の WordPress 用 the pack elementor addons におけるパストラバーサルの脆弱性 |
CWE-22 CWE-23 |
CVE-2024-50453 | 2025-01-23 11:18 | 2024-10-28 | Show | GitHub Exploit DB Packet Storm |
| 925 | 5.4 |
警告
Network |
themelooks | enter addons | themelooks の WordPress 用 enter addons におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2024-56252 | 2025-01-23 11:18 | 2024-12-18 | Show | GitHub Exploit DB Packet Storm |
| 926 | 8.8 |
重要
Network |
WPDeveloper | essential blocks | WPDeveloper の WordPress 用 essential blocks における認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2023-51359 | 2025-01-23 11:09 | 2023-12-18 | Show | GitHub Exploit DB Packet Storm |
| 927 | 8.8 |
重要
Network |
WPDeveloper | essential blocks | WPDeveloper の WordPress 用 essential blocks における認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2023-51360 | 2025-01-23 11:09 | 2023-12-18 | Show | GitHub Exploit DB Packet Storm |
| 928 | 5.4 |
警告
Network |
properfraction | profilepress | properfraction の WordPress 用 profilepress におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2024-1408 | 2025-01-23 11:09 | 2024-02-29 | Show | GitHub Exploit DB Packet Storm |
| 929 | 5.4 |
警告
Network |
Themeisle | Orbit Fox | ThemeIsle の WordPress 用 Orbit Fox におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2024-1497 | 2025-01-23 11:09 | 2024-03-13 | Show | GitHub Exploit DB Packet Storm |
| 930 | 5.4 |
警告
Network |
properfraction | profilepress | properfraction の WordPress 用 profilepress におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2024-1570 | 2025-01-23 11:09 | 2024-02-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Feb. 25, 2025, 4:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1471 | 7.3 |
HIGH
Local |
- | - | Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability |
CWE-284
Improper Access Control |
CVE-2025-24042 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1472 | 7.3 |
HIGH
Local |
- | - | Visual Studio Code Elevation of Privilege Vulnerability |
CWE-427
Uncontrolled Search Path Element |
CVE-2025-24039 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1473 | 7.8 |
HIGH
Local |
- | - | Microsoft Excel Remote Code Execution Vulnerability |
CWE-416
Use After Free |
CVE-2025-21394 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1474 | 7.8 |
HIGH
Local |
- | - | Microsoft Office Remote Code Execution Vulnerability |
CWE-416
Use After Free |
CVE-2025-21392 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1475 | 7.8 |
HIGH
Local |
- | - | Microsoft Excel Remote Code Execution Vulnerability |
CWE-122
Heap-based Buffer Overflow |
CVE-2025-21390 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1476 | 7.8 |
HIGH
Local |
- | - | Microsoft Excel Remote Code Execution Vulnerability |
CWE-416
Use After Free |
CVE-2025-21386 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1477 | 7.8 |
HIGH
Local |
- | - | Microsoft Excel Information Disclosure Vulnerability |
CWE-125
Out-of-bounds Read |
CVE-2025-21383 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1478 | 7.8 |
HIGH
Local |
- | - | Microsoft Excel Remote Code Execution Vulnerability |
CWE-822
Untrusted Pointer Dereference |
CVE-2025-21381 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1479 | 8.1 |
HIGH
Network |
- | - | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability |
CWE-362 CWE-191 CWE-122 Race Condition Integer Underflow (Wrap or Wraparound) Heap-based Buffer Overflow |
CVE-2025-21376 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |
| 1480 | 7.8 |
HIGH
Local |
- | - | Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability |
CWE-20 CWE-122 Improper Input Validation Heap-based Buffer Overflow |
CVE-2025-21375 | 2025-02-12 03:15 | 2025-02-12 | Show | GitHub Exploit DB Packet Storm |