Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 5, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190171	7.5	危険	headstart solutions	-	Headstart Solutions の DeskPRO におけるディレクトリ内のファイルを一覧される脆弱性	-	CVE-2006-6974	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

190172	7.5	危険	headstart solutions	-	Headstart Solutions の DeskPRO におけるアプリケーションを再インストールされる脆弱性	-	CVE-2006-6973	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

190173	5	警告	Opera Software ASA	-	Opera における不正行為の保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-6970	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

190174	6.8	警告	jetty	-	Jetty におけるセッション識別子を推測される脆弱性	-	CVE-2006-6969	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

190175	5.8	警告	Phorum	-	Phorum の group moderation control center page におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6968	2012-09-25 15:36	2007-01-26	Show	GitHub Exploit DB Packet Storm

190176	4	警告	MailEnable	-	MailEnable Professional における重要な情報を取得される脆弱性	-	CVE-2006-6964	2012-09-25 15:36	2007-01-29	Show	GitHub Exploit DB Packet Storm

190177	6.8	警告	Joomla!	-	Joomla! 用の RS Gallery2 コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-6962	2012-09-25 15:36	2007-01-29	Show	GitHub Exploit DB Packet Storm

190178	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2006-6956	2012-09-25 15:36	2007-01-29	Show	GitHub Exploit DB Packet Storm

190179	6.8	警告	odysseus blog	-	OdysseusBlog の blog.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6951	2012-09-25 15:36	2007-01-22	Show	GitHub Exploit DB Packet Storm

190180	10	危険	owa	-	OWA の POP3/SMTP におけるバッファオーバーフローの脆弱性	-	CVE-2006-6940	2012-09-25 15:36	2007-01-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 6, 2025, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
71	7.8	HIGH Local	watchguard	panda_dome	Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An atta… Update	CWE-59 Link Following	CVE-2024-13043	2025-01-4 05:56	2024-12-31	Show	GitHub Exploit DB Packet Storm

72	-		-	-	A vulnerability classified as critical was found in code-projects Point of Sales and Inventory Management System 1.0. This vulnerability affects unknown code of the file /user/search.php. The manipul… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0197	2025-01-4 05:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

73	-		-	-	A vulnerability classified as critical has been found in code-projects Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file /user/plist.php. The manipulation o… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0196	2025-01-4 04:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

74	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to unauthorized reflected cross-site scripting in the `Curr… New	-	CVE-2024-56409	2025-01-4 04:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

75	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to unauthorized reflected cross-site scripting in the `Acco… New	-	CVE-2024-56366	2025-01-4 04:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

76	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to unauthorized reflected cross-site scripting in the const… New	-	CVE-2024-56365	2025-01-4 04:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

77	-		-	-	A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/de… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2025-0195	2025-01-4 03:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

78	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to bypass of the cross-site scripting sanitizer using the j… New	CWE-79 Cross-site Scripting	CVE-2024-56412	2025-01-4 03:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

79	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 have a cross-site scripting (XSS) vulnerability of the hyperlink base in t… New	CWE-79 Cross-site Scripting	CVE-2024-56411	2025-01-4 03:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

80	7.8	HIGH Local	ashlar	graphite	Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations … Update	CWE-787 Out-of-bounds Write	CVE-2024-13051	2025-01-4 02:41	2024-12-31	Show	GitHub Exploit DB Packet Storm