Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 30, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
921 5.4 警告
Network 		exclusiveaddons exclusive addons for elementor exclusiveaddons の WordPress 用 exclusive addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2750 2025-01-22 15:31 2024-05-2 Show GitHub Exploit DB Packet Storm
922 5.5 警告
Local 		デル repository manager デルの repository manager におけるパストラバーサルの脆弱性 CWE-20
CWE-22
CVE-2024-28977 2025-01-22 15:31 2024-04-24 Show GitHub Exploit DB Packet Storm
923 8.8 重要
Network 		XWiki xwiki XWiki の xwiki におけるコードインジェクションの脆弱性 CWE-94
CWE-95
CVE-2024-31984 2025-01-22 15:31 2024-04-10 Show GitHub Exploit DB Packet Storm
924 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2016
Microsoft Windows Server 2025
Microsoft Windows 11
Microsoft Window… 		GDI+ のリモート コードが実行される脆弱性 CWE-190
CWE-noinfo
CVE-2025-21338 2025-01-22 15:31 2025-01-14 Show GitHub Exploit DB Packet Storm
925 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2016
Microsoft Windows Server 2025
Microsoft Windows 11
Microsoft Window… 		MapUrlToZone セキュリティ機能のバイパスの脆弱性 CWE-41
CWE-noinfo
CVE-2025-21332 2025-01-22 15:27 2025-01-14 Show GitHub Exploit DB Packet Storm
926 9.8 緊急
Network 		netentsec application security gateway netentsec の application security gateway における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-2022 2025-01-22 15:12 2024-03-1 Show GitHub Exploit DB Packet Storm
927 5.4 警告
Network 		wpkoi wpkoi templates for elementor wpkoi の WordPress 用 wpkoi templates for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2136 2025-01-22 15:12 2024-03-7 Show GitHub Exploit DB Packet Storm
928 9.8 緊急
Network 		The Biosig Project
Fedora Project		 Fedora
libbiosig 		The Biosig Project の libbiosig 等複数ベンダの製品における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2024-21812 2025-01-22 15:12 2024-02-20 Show GitHub Exploit DB Packet Storm
929 6.5 警告
Network 		Mattermost, Inc. Mattermost Mobile Mattermost, Inc. の Mattermost Mobile における脆弱性 CWE-400
CWE-noinfo
CVE-2024-24975 2025-01-22 15:12 2024-03-15 Show GitHub Exploit DB Packet Storm
930 7.2 重要
Network 		ZyXEL USG FLEX 100H ファームウェア
atp700 ファームウェア
USG FLEX 100AX ファームウェア
usg flex 100 ファームウェア
ATP200 ファームウェア
ATP100 ファームウェア
usg f… 		複数の ZyXEL 製品における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2023-6398 2025-01-22 15:07 2023-11-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 30, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276981 - nortel optivity_net_architect The bna_pass program in Optivity NETarchitect uses the PATH environmental variable for finding the "rm" program, which allows local users to execute arbitrary commands. NVD-CWE-Other
CVE-2000-0009 2008-09-11 04:02 1999-12-29 Show GitHub Exploit DB Packet Storm
276982 - analogx simpleserver_www Buffer overflow in AnalogX SimpleServer:WWW HTTP server allows remote attackers to execute commands via a long GET request. NVD-CWE-Other
CVE-2000-0011 2008-09-11 04:02 1999-12-31 Show GitHub Exploit DB Packet Storm
276983 - hughes msql Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands. NVD-CWE-Other
CVE-2000-0012 2008-09-11 04:02 1999-12-27 Show GitHub Exploit DB Packet Storm
276984 - sgi irix IRIX soundplayer program allows local users to gain privileges by including shell metacharacters in a .wav file, which is executed via the midikeys program. NVD-CWE-Other
CVE-2000-0013 2008-09-11 04:02 1999-12-31 Show GitHub Exploit DB Packet Storm
276985 - michael_lamont savant_webserver Denial of service in Savant web server via a null character in the requested URL. NVD-CWE-Other
CVE-2000-0014 2008-09-11 04:02 1999-12-28 Show GitHub Exploit DB Packet Storm
276986 - ascend cascadeview_ux CascadeView TFTP server allows local users to gain privileges via a symlink attack. NVD-CWE-Other
CVE-2000-0015 2008-09-11 04:02 1999-12-31 Show GitHub Exploit DB Packet Storm
276987 - true_north internet_anywhere_mail_server Buffer overflow in Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service or execute commands via a long username. NVD-CWE-Other
CVE-2000-0016 2008-09-11 04:02 1999-10-1 Show GitHub Exploit DB Packet Storm
276988 - windowmaker wmmon wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file. NVD-CWE-Other
CVE-2000-0018 2008-09-11 04:02 1999-12-22 Show GitHub Exploit DB Packet Storm
276989 - lotus domino_server Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin. NVD-CWE-Other
CVE-2000-0021 2008-09-11 04:02 1999-12-1 Show GitHub Exploit DB Packet Storm
276990 - lotus domino_server Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory. NVD-CWE-Other
CVE-2000-0022 2008-09-11 04:02 1999-12-21 Show GitHub Exploit DB Packet Storm