Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1 9.8 緊急
Network 		icontrolwp iControlWP icontrolwp の WordPress 用 iControlWP における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2024-13742 2025-01-31 17:40 2025-01-30 Show GitHub Exploit DB Packet Storm
2 5.4 警告
Network 		ilghera MailUp Auto Subscription ilghera の WordPress 用 MailUp Auto Subscription におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-13521 2025-01-31 17:37 2025-01-28 Show GitHub Exploit DB Packet Storm
3 6.5 警告
Network 		アップル visionos
Safari
iPadOS 		複数のアップル製品における脆弱性 CWE-noinfo
情報不足 		CVE-2025-24143 2025-01-31 17:31 2025-01-27 Show GitHub Exploit DB Packet Storm
4 5.5 警告
Local 		- アップルの macOS における脆弱性 CWE-noinfo
情報不足 		CVE-2025-24096 2025-01-31 17:29 2025-01-27 Show GitHub Exploit DB Packet Storm
5 5.5 警告
Local 		- アップルの macOS における脆弱性 CWE-noinfo
情報不足 		CVE-2024-54549 2025-01-31 17:27 2024-12-11 Show GitHub Exploit DB Packet Storm
6 8.8 重要
Network 		アップル watchOS
visionos
Safari
iPadOS
iOS
tvOS 		複数のアップル製品における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2024-54543 2025-01-31 17:26 2024-12-11 Show GitHub Exploit DB Packet Storm
7 9.1 緊急
Network 		アップル watchOS
iPadOS
iOS 		複数のアップル製品における脆弱性 CWE-noinfo
情報不足 		CVE-2024-54512 2025-01-31 17:23 2024-12-11 Show GitHub Exploit DB Packet Storm
8 5.5 警告
Local 		アップル iOS
visionos
iPadOS
watchOS
tvOS 		複数のアップル製品における脆弱性 CWE-noinfo
情報不足 		CVE-2025-24086 2025-01-31 17:21 2025-01-27 Show GitHub Exploit DB Packet Storm
9 6.7 警告
Local 		デル Latitude 5414 Rugged ファームウェア
Latitude 5280 ファームウェア
Embedded Box PC 5000 ファームウェア
Latitude 5400 ファームウェア
Latitude 3189 ファームウェ… 		複数のデル製品における脆弱性 CWE-20
CWE-noinfo
CVE-2024-22429 2025-01-31 16:37 2024-05-17 Show GitHub Exploit DB Packet Storm
10 5.4 警告
Network 		Philantro Inc. Philantro - Donations and Donor Management Philantro Inc. の WordPress 用 Philantro - Donations and Donor Management におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-13527 2025-01-31 16:37 2025-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 4, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274501 - vchs vchs Unspecified vulnerability in the domain alias management in Virtual Hosting Control System (VHCS) 2.4.6.2, related to "creating and deleting forwards for domain aliases," allows users to hijack the f… NVD-CWE-Other
CVE-2005-3913 2011-03-8 11:27 2005-11-30 Show GitHub Exploit DB Packet Storm
274502 - affcommerce affcommerce Multiple SQL injection vulnerabilities in AFFcommerce 1.1.4 allow remote attackers to execute arbitrary SQL commands via (1) the cl parameter to SubCategory.php and the item_id parameter in (2) ItemI… NVD-CWE-Other
CVE-2005-3914 2011-03-8 11:27 2005-11-30 Show GitHub Exploit DB Packet Storm
274503 - clavister clavister_firewall
clavister_security_gateway 		The Internet Key Exchange version 1 (IKEv1) implementation in Clavister Client Web allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as… NVD-CWE-Other
CVE-2005-3915 2011-03-8 11:27 2005-11-30 Show GitHub Exploit DB Packet Storm
274504 - wsn_forum wsn_forum SQL injection vulnerability in memberlist.php in WSN Forum 1.21 allows remote attackers to execute arbitrary SQL commands via the id parameter in a profile action. NVD-CWE-Other
CVE-2005-3916 2011-03-8 11:27 2005-11-30 Show GitHub Exploit DB Packet Storm
274505 - commodityrentals commodityrentals SQL injection vulnerability in usersession in CommodityRentals 2.0 Online Rental Business Creator script allows remote attackers to execute arbitrary SQL commands via the user_id parameter. NVD-CWE-Other
CVE-2005-3917 2011-03-8 11:27 2005-11-30 Show GitHub Exploit DB Packet Storm
274506 - netobjects netobjects_fusion NetObjects Fusion 9 (NOF9) allows remote attackers to obtain sensitive information, including passwords, by downloading the _versioning_repository_/rollbacklog.xml file, then using it to download and… NVD-CWE-Other
CVE-2005-3923 2011-03-8 11:27 2005-11-30 Show GitHub Exploit DB Packet Storm
274507 - helpdesk_issue_manager helpdesk_issue_manager Multiple SQL injection vulnerabilities in Central Manchester CLC Helpdesk Issue Manager 0.9 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) detail[], (2) orderdir, an… NVD-CWE-Other
CVE-2005-3925 2011-03-8 11:27 2005-11-30 Show GitHub Exploit DB Packet Storm
274508 - o-kiraku_nikki o-kiraku_nikki SQL injection vulnerability in okiraku.php in O-Kiraku Nikki 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the day_id parameter. NVD-CWE-Other
CVE-2005-3932 2011-03-8 11:27 2005-12-1 Show GitHub Exploit DB Packet Storm
274509 - 88script 88script_event_calendar SQL injection vulnerability in index.php in 88Script's Event Calendar 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the m parameter. NVD-CWE-Other
CVE-2005-3933 2011-03-8 11:27 2005-12-1 Show GitHub Exploit DB Packet Storm
274510 - greywyvern orca_ringmaker SQL injection vulnerability in ringmaker.php in Orca Ringmaker 2.3c and earlier allows remote attackers to execute arbitrary SQL commands via the start parameter. NVD-CWE-Other
CVE-2005-3940 2011-03-8 11:27 2005-12-1 Show GitHub Exploit DB Packet Storm