Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
931 7.5 重要
Network 		StylemixThemes MasterStudy LMS StylemixThemes の WordPress 用 MasterStudy LMS における脆弱性 CWE-noinfo
情報不足 		CVE-2024-2106 2025-01-23 11:09 2024-03-13 Show GitHub Exploit DB Packet Storm
932 9.8 緊急
Network 		The Biosig Project
Fedora Project		 libbiosig
Fedora 		The Biosig Project の libbiosig 等複数ベンダの製品における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2024-23809 2025-01-23 11:09 2024-02-20 Show GitHub Exploit DB Packet Storm
933 9.6 緊急
Network 		lfprojects mlflow lfprojects の mlflow におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-27132 2025-01-23 11:09 2024-02-23 Show GitHub Exploit DB Packet Storm
934 5.4 警告
Network 		IBM IBM Sterling Partner Engagement Manager IBM の IBM Sterling Partner Engagement Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-28517 2025-01-23 10:49 2023-03-16 Show GitHub Exploit DB Packet Storm
935 9.8 緊急
Network 		IBM Trusteer Android SDK for mobile
Trusteer iOS SDK for mobile 		IBM の Trusteer Android SDK for mobile および Trusteer iOS SDK for mobile における脆弱性 CWE-434
CWE-noinfo
CVE-2022-42443 2025-01-23 10:25 2022-10-6 Show GitHub Exploit DB Packet Storm
936 8.2 重要
Network 		Apache Software Foundation Apache Pulsar Apache Software Foundation の Apache Pulsar における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2022-34321 2025-01-23 10:12 2022-06-22 Show GitHub Exploit DB Packet Storm
937 6.1 警告
Network 		properfraction profilepress properfraction の WordPress 用 profilepress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1519 2025-01-23 10:12 2024-02-29 Show GitHub Exploit DB Packet Storm
938 5.4 警告
Network 		properfraction profilepress properfraction の WordPress 用 profilepress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1535 2025-01-23 10:12 2024-03-13 Show GitHub Exploit DB Packet Storm
939 5.4 警告
Network 		exclusiveaddons exclusive addons for elementor exclusiveaddons の WordPress 用 exclusive addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2028 2025-01-23 10:12 2024-03-13 Show GitHub Exploit DB Packet Storm
940 9.8 緊急
Network 		The Biosig Project
Fedora Project		 libbiosig
Fedora 		The Biosig Project の libbiosig 等複数ベンダの製品における整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2024-23313 2025-01-23 10:12 2024-02-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
282061 - digi-net_technologies digichat Digi-Net Technologies DigiChat 3.5 allows chat users to obtain the IP addresses of other chat users via a "Showip" parameter in the chat applet. NVD-CWE-Other
CVE-2002-2184 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282062 - macromedia jrun Macromedia JRun 3.0, 3.1, and 4.0 allow remote attackers to view the source code of .JSP files via Unicode encoded character values in a URL. NVD-CWE-Other
CVE-2002-2186 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282063 - macromedia jrun Unknown "file disclosure" vulnerability in Macromedia JRun 3.0, 3.1, and 4.0, related to a log file or jrun.ini, with unknown impact. NVD-CWE-Other
CVE-2002-2187 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282064 - openbsd openbsd OpenBSD before 3.2 allows local users to cause a denial of service (kernel crash) via a call to getrlimit(2) with invalid arguments, possibly due to an integer signedness error. NVD-CWE-Other
CVE-2002-2188 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282065 - activxperts_software
microsoft 		activwebserver
windows_2003_server 		Cross-site scripting (XSS) vulnerability in ActiveXperts Software ActiveWebserver allows remote attackers to execute arbitrary web script via a link. NVD-CWE-Other
CVE-2002-2189 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282066 - artscore_studios cutecast_forum ArtsCore Studios CuteCast Forum 1.2 stores passwords in plaintext under the web document root, which allows remote attackers to obtain the passwords via an HTTP request to a .user file. NVD-CWE-Other
CVE-2002-2190 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282067 - lotus domino Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non… NVD-CWE-Other
CVE-2002-2191 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282068 - lotus domino This issue is present on Lotus Domino Server with the 'DominoNoBanner' set to a value of '1'. NVD-CWE-Other
CVE-2002-2191 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282069 - perception liteserve Cross-site scripting (XSS) vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via (1) a Host: header when DNS wildcards are supported or (2) the query… NVD-CWE-Other
CVE-2002-2192 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
282070 - perception liteserve This vulnerability is limited to server configurations with Wildcard DNS enabled. NVD-CWE-Other
CVE-2002-2192 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm