Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1011 9.8 緊急
Network 		アバイア Avaya IP Office アバイアの Avaya IP Office における脆弱性 CWE-20
CWE-noinfo
CVE-2024-4196 2025-01-22 15:40 2024-06-25 Show GitHub Exploit DB Packet Storm
1012 9.8 緊急
Network 		BlackBerry QNX Software Development Platform BlackBerry の QNX Software Development Platform における境界外書き込みに関する脆弱性 CWE-787
CWE-787
CVE-2024-48856 2025-01-22 15:40 2024-10-8 Show GitHub Exploit DB Packet Storm
1013 5.4 警告
Network 		Autolab project Autolab Autolab project の Autolab における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2024-52584 2025-01-22 15:40 2024-11-18 Show GitHub Exploit DB Packet Storm
1014 7.8 重要
Local 		マイクロソフト Microsoft Office
Microsoft 365 Apps 		Microsoft Office Visio のリモートでコードが実行される脆弱性 CWE-122
CWE-843
CWE-noinfo
CVE-2025-21356 2025-01-22 15:37 2025-01-14 Show GitHub Exploit DB Packet Storm
1015 9.8 緊急
Network 		マイクロフォーカス株式会社 imanager マイクロフォーカス株式会社の imanager における XML 外部エンティティの脆弱性 CWE-611
CWE-611
CVE-2024-3486 2025-01-22 15:37 2024-05-15 Show GitHub Exploit DB Packet Storm
1016 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F1202 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の F1202 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-3876 2025-01-22 15:37 2024-04-16 Show GitHub Exploit DB Packet Storm
1017 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC8 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC8 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4065 2025-01-22 15:37 2024-04-23 Show GitHub Exploit DB Packet Storm
1018 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. 4g300 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の 4g300 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4169 2025-01-22 15:37 2024-04-25 Show GitHub Exploit DB Packet Storm
1019 8.5 重要
Network 		cvat computer vision annotation tool cvat の computer vision annotation tool におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
CWE-918
CVE-2024-37164 2025-01-22 15:37 2024-06-13 Show GitHub Exploit DB Packet Storm
1020 5.4 警告
Network 		exclusiveaddons exclusive addons for elementor exclusiveaddons の WordPress 用 exclusive addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2750 2025-01-22 15:31 2024-05-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277971 - xlinesoft phprunner XLineSoft PHPRunner 3.1 stores the (1) database server name, (2) database names, (3) usernames, and (4) passwords in plaintext in %WINDIR%\PHPRunner.ini, which allows local users to obtain sensitive … NVD-CWE-Other
CVE-2006-5956 2008-09-6 06:13 2006-11-17 Show GitHub Exploit DB Packet Storm
277972 - pegasus mercury_mail_transport_system Buffer overflow in Mercury Mail Transport System 4.01b for Windows has unknown impact and attack vectors, as originally reported in a GLEG VulnDisco pack. NOTE: the provenance of this information is… NVD-CWE-Other
CVE-2006-5961 2008-09-6 06:13 2006-11-17 Show GitHub Exploit DB Packet Storm
277973 - netkit netkit ftpd in Linux Netkit (linux-ftpd) 0.17, and possibly other versions, does not check the return status of certain seteuid, setgid, and setuid calls, which might allow remote authenticated users to gai… NVD-CWE-Other
CVE-2006-6008 2008-09-6 06:13 2006-11-22 Show GitHub Exploit DB Packet Storm
277974 - netbsd netbsd The NetBSD-current kernel before 20061028 does not properly perform bounds checking of an unspecified userspace parameter in the ptrace system call during a PT_DUMPCORE request, which allows local us… NVD-CWE-Other
CVE-2006-6014 2008-09-6 06:13 2006-11-22 Show GitHub Exploit DB Packet Storm
277975 - netbsd netbsd This vulnerability is addressed in the following product update: NetBSD, NetBSD, current 10/28/2006 NVD-CWE-Other
CVE-2006-6014 2008-09-6 06:13 2006-11-22 Show GitHub Exploit DB Packet Storm
277976 - wordpress wordpress wp-admin/user-edit.php in WordPress before 2.0.5 allows remote authenticated users to read the metadata of an arbitrary user via a modified user_id parameter. NVD-CWE-Other
CVE-2006-6016 2008-09-6 06:13 2006-11-22 Show GitHub Exploit DB Packet Storm
277977 - wordpress wordpress WordPress before 2.0.5 does not properly store a profile containing a string representation of a serialized object, which allows remote authenticated users to cause a denial of service (application c… NVD-CWE-Other
CVE-2006-6017 2008-09-6 06:13 2006-11-22 Show GitHub Exploit DB Packet Storm
277978 - qualcomm eudora_worldmail Multiple buffer overflows in Eudora Worldmail, possibly Worldmail 3 version 6.1.22.0, have unknown impact and attack vectors, as demonstrated by the (1) "Eudora WorldMail stack overflow" and (2) "Eud… NVD-CWE-Other
CVE-2006-6024 2008-09-6 06:13 2006-11-22 Show GitHub Exploit DB Packet Storm
277979 - qualcomm eudora_worldmail QUALCOMM Eudora WorldMail 4.0 allows remote attackers to cause a denial of service, as demonstrated by a certain module in VulnDisco Pack. NOTE: The provenance of this information is unknown; the de… NVD-CWE-Other
CVE-2006-6025 2008-09-6 06:13 2006-11-22 Show GitHub Exploit DB Packet Storm
277980 - cisco secure_desktop Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407) registry value equals 1, which might allow local users to read certain memory pages that were writte… NVD-CWE-Other
CVE-2006-5393 2008-09-6 06:12 2006-10-19 Show GitHub Exploit DB Packet Storm