Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1401	6.4	警告 Network	IBM	IBM Maximo Application Suite	IBM の IBM Maximo Application Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2023-38723	2025-01-20 09:53	2023-08-1	Show	GitHub Exploit DB Packet Storm

1402	5.5	警告 Local	アドビシステムズ	Adobe Acrobat Reader DC Adobe Acrobat DC Adobe Acrobat Adobe Reader	複数のアドビ製品における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-49531	2025-01-20 09:53	2024-12-10	Show	GitHub Exploit DB Packet Storm

1403	7.8	重要 Local	アドビシステムズ	Adobe Substance 3D Stager	アドビの Adobe Substance 3D Stager における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2025-21132	2025-01-20 09:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

1404	5.5	警告 Local	マイクロソフト	Microsoft Windows 10 Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows Server&…	Windows DWM Core ライブラリの情報漏えいの脆弱性	CWE-191 CWE-noinfo	CVE-2024-30008	2025-01-17 22:38	2024-05-14	Show	GitHub Exploit DB Packet Storm

1405	8.8	重要 Network	マイクロソフト	Microsoft ODBC Driver Microsoft SQL Server	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2024-29043	2025-01-17 22:35	2024-04-9	Show	GitHub Exploit DB Packet Storm

1406	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性	CWE-122 CWE-noinfo	CVE-2024-21414	2025-01-17 22:32	2024-07-9	Show	GitHub Exploit DB Packet Storm

1407	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性	CWE-122 CWE-noinfo	CVE-2024-21373	2025-01-17 22:29	2024-07-9	Show	GitHub Exploit DB Packet Storm

1408	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性	CWE-416 CWE-noinfo	CVE-2024-21308	2025-01-17 22:26	2024-07-9	Show	GitHub Exploit DB Packet Storm

1409	9.8	緊急 Network	フォーティネット	FortiOS FortiProxy	フォーティネットの FortiProxy および FortiOS における脆弱性	CWE-288 CWE-Other	CVE-2024-55591	2025-01-17 22:21	2024-12-9	Show	GitHub Exploit DB Packet Storm

1410	8.8	重要 Network	マイクロソフト	Microsoft SQL Server Microsoft OLE DB Driver	SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-28927	2025-01-17 22:16	2024-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274981	-	anna_irc_bot	anna\^_irc_bot	This vulnerability is addressed in the following product release: Anna^ IRC Bot, Anna^ IRC Bot, 0.30	NVD-CWE-Other	CVE-2006-6190	2011-03-8 11:45	2006-12-1	Show	GitHub Exploit DB Packet Storm

274982	-	8pixel.net	simple_blog	Unspecified scripts in the admin directory in 8pixel.net SimpleBlog 3.0 and earlier do not properly perform authentication, which allows remote attackers to add users and perform certain other unauth…	NVD-CWE-Other	CVE-2006-6192	2011-03-8 11:45	2006-12-1	Show	GitHub Exploit DB Packet Storm

274983	-	webwiz	site_news	PHP remote file inclusion vulnerability in centre.php in Site News (site_news) 2.00, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE…	CWE-94 Code Injection	CVE-2006-6212	2011-03-8 11:45	2006-12-1	Show	GitHub Exploit DB Packet Storm

274984	-	wallpaper	wallpaper_complete_website	Multiple SQL injection vulnerabilities in Wallpaper Website (Wallpaper Complete Website) 1.0.09 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) login or (2) password …	NVD-CWE-Other	CVE-2006-6215	2011-03-8 11:45	2006-12-1	Show	GitHub Exploit DB Packet Storm

274985	-	coalescent_systems	freepbx	Coalescent Systems freePBX (formerly Asterisk Management Portal) before 2.2.0rc1 allows attackers to execute arbitrary commands via shell metacharacters in (1) CALLERID(name) or (2) CALLERID(number).	NVD-CWE-Other	CVE-2006-6244	2011-03-8 11:45	2006-12-4	Show	GitHub Exploit DB Packet Storm

274986	-	coalescent_systems	freepbx	This vulnerability is addressed in the following product release: Coalescent Systems, freePBX, 2.2.0rc1	NVD-CWE-Other	CVE-2006-6244	2011-03-8 11:45	2006-12-4	Show	GitHub Exploit DB Packet Storm

274987	-	novell	client	srvloc.sys in Novell Client for Windows before 4.91 SP3 allows remote attackers to cause an unspecified denial of service via a crafted packet to port 427 that triggers an access of pageable or inval…	NVD-CWE-Other	CVE-2006-6307	2011-03-8 11:45	2006-12-5	Show	GitHub Exploit DB Packet Storm

274988	-	stefan_ritt	elog_web_logbook	The show_elog_list function in elogd.c in elog 2.6.2 and earlier allows remote authenticated users to cause a denial of service (daemon crash) by attempting to access a logbook whose name begins with…	NVD-CWE-Other	CVE-2006-6318	2011-03-8 11:45	2006-12-29	Show	GitHub Exploit DB Packet Storm

274989	-	stefan_ritt	elog_web_logbook	Successful exploitation requires authentication only if the application is configured with a password. It is not, by default.	NVD-CWE-Other	CVE-2006-6318	2011-03-8 11:45	2006-12-29	Show	GitHub Exploit DB Packet Storm

274990	-	neocrome	seditio	Multiple unspecified vulnerabilities in Neocrome Seditio 1.10 and earlier have unknown impact and attack vectors related to (1) plugins/ipsearch/ipsearch.admin.php, and (2) pfs/pfs.edit.inc.php, (3) …	NVD-CWE-Other	CVE-2006-6344	2011-03-8 11:45	2006-12-7	Show	GitHub Exploit DB Packet Storm