Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193321	5	警告	headstart solutions	-	Headstart Solutions の DeskPRO における設定情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2006-6998	2012-09-25 15:36	2007-02-12	Show	GitHub Exploit DB Packet Storm

193322	10	危険	MailEnable	-	MailEnable の暗号機能における脆弱性	CWE-287 不適切な認証	CVE-2006-6997	2012-09-25 15:36	2007-02-12	Show	GitHub Exploit DB Packet Storm

193323	6.4	警告	indirmax.org	-	OzzyWork Gallery の add.asp における任意の ASP ファイルを実行される脆弱性	-	CVE-2006-6994	2012-09-25 15:36	2007-02-12	Show	GitHub Exploit DB Packet Storm

193324	7.8	危険	netcaptor	-	NetCaptor における制限された情報に他のドメインからアクセスされる脆弱性	-	CVE-2006-6989	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

193325	7.8	危険	phaseout	-	PhaseOut における他のドメインから制限情報にアクセスされる脆弱性	-	CVE-2006-6986	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

193326	5	警告	Maxthon	-	Maxthon における制限された情報に他のドメインからアクセスされる脆弱性	-	CVE-2006-6985	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

193327	5	警告	More Quick Tools	-	GreenBrowser における他ドメインから制限された情報にアクセスされる脆弱性	-	CVE-2006-6984	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

193328	5	警告	myweb4net	-	MYweb4net Browser における他のドメインから制限された情報にアクセスされる脆弱性	-	CVE-2006-6983	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

193329	2.6	注意	magnatune.com	-	Amarok の magnatune.com アルバムブラウザにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6980	2012-09-25 15:36	2007-02-8	Show	GitHub Exploit DB Packet Storm

193330	7.5	危険	headstart solutions	-	Headstart Solutions の DeskPRO におけるディレクトリ内のファイルを一覧される脆弱性	-	CVE-2006-6974	2012-09-25 15:36	2007-02-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
861	5.5	MEDIUM Local	apple	macos iphone_os visionos watchos ipados	This issue was addressed with improved redaction of sensitive information. This issue is fixed in iPadOS 17.7.4, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3. An app may b…	CWE-922 Insecure Storage of Sensitive Information	CVE-2025-24117	2025-01-31 23:40	2025-01-28	Show	GitHub Exploit DB Packet Storm

862	-		-	-	Reflected Cross-Site Scripting (XSS) in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.p…	CWE-79 Cross-site Scripting	CVE-2025-0930	2025-01-31 23:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

863	-		-	-	SQL injection vulnerability in TeamCal Neo, version 3.8.2. This could allow an attacker to retrieve, update and delete all database information by injecting a malicious SQL statement via the ‘abs’ pa…	CWE-89 SQL Injection	CVE-2025-0929	2025-01-31 23:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

864	-		-	-	Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378.	CWE-426 Untrusted Search Path	CVE-2025-24828	2025-01-31 22:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

865	-		-	-	In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix lockup on tx to unregistering netdev with carrier Commit in a fixes tag attempted to fix the issue in the follow…	-	CVE-2025-21681	2025-01-31 21:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

866	-		-	-	In the Linux kernel, the following vulnerability has been resolved: btrfs: add the missing error handling inside get_canonical_dev_path Inside function get_canonical_dev_path(), we call d_path() to…	-	CVE-2025-21679	2025-01-31 21:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

867	-		-	-	In the Linux kernel, the following vulnerability has been resolved: pfcp: Destroy device along with udp socket's netns dismantle. pfcp_newlink() links the device to a list in dev_net(dev) instead o…	-	CVE-2025-21677	2025-01-31 21:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

868	-		-	-	In the Linux kernel, the following vulnerability has been resolved: pmdomain: imx8mp-blk-ctrl: add missing loop break condition Currently imx8mp_blk_ctrl_remove() will continue the for loop until a…	-	CVE-2025-21668	2025-01-31 21:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

869	6.4	MEDIUM Network	-	-	The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin…	CWE-79 Cross-site Scripting	CVE-2024-12037	2025-01-31 20:15	2025-01-31	Show	GitHub Exploit DB Packet Storm

870	7.3	HIGH Network	-	-	The The WooCommerce Product Table Lite plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.9.4. This is due to the software allowing users to e…	CWE-94 Code Injection	CVE-2024-13472	2025-01-31 19:15	2025-01-31	Show	GitHub Exploit DB Packet Storm