Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193481 7.5 危険 mxbb - MxBB 用の mx_modsdb モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6560 2012-09-25 15:36 2006-12-14 Show GitHub Exploit DB Packet Storm
193482 7.5 危険 lotfian - Lotfian Request For Travel の ProductDetails.asp における SQL インジェクションの脆弱性 - CVE-2006-6559 2012-09-25 15:36 2006-12-14 Show GitHub Exploit DB Packet Storm
193483 5 警告 Kerio Technologies - Kerio MailServer におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2006-6554 2012-09-25 15:36 2006-12-14 Show GitHub Exploit DB Packet Storm
193484 7.5 危険 mxbb - mxBB 用の NewsSuite モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6553 2012-09-25 15:36 2006-12-14 Show GitHub Exploit DB Packet Storm
193485 7.5 危険 The PHP Group - BLOG:CMS の admin/plugins/NP_UserSharing.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6552 2012-09-25 15:36 2006-12-14 Show GitHub Exploit DB Packet Storm
193486 4.3 警告 mlipod - Winamp iPod プラグインの read_aa.cpp におけるバッファオーバーフローの脆弱性 - CVE-2006-6547 2012-09-25 15:36 2006-12-14 Show GitHub Exploit DB Packet Storm
193487 7.5 危険 The PHP Group - mxBB 用の ErrorDocs における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6545 2012-09-25 15:36 2006-12-13 Show GitHub Exploit DB Packet Storm
193488 7.5 危険 IBM - IBM WebSphere Host On-Demand における認証を回避される脆弱性 - CVE-2006-6537 2012-09-25 15:36 2006-12-13 Show GitHub Exploit DB Packet Storm
193489 4.3 警告 osCommerce - osCommerce におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6534 2012-09-25 15:36 2006-12-13 Show GitHub Exploit DB Packet Storm
193490 7.5 危険 osCommerce - osCommerce の admin/templates_boxes_layout.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6533 2012-09-25 15:36 2006-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1221 - - - Use of implicit intent for sensitive communication in EasySetup prior to version 11.1.18 allows local attackers to access sensitive information. - CVE-2025-20896 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1222 - - - Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows physical attackers to install arbitrary applications to bypass restrictions of Setupwizard. - CVE-2025-20895 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1223 - - - Improper access control in Samsung Email prior to version 6.1.97.1 allows physical attackers to access data across multiple user profiles. - CVE-2025-20894 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1224 4.3 MEDIUM
Network 		- - The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.5 via the 'bsb-slider' shortcode due to insufficient r… CWE-284
Improper Access Control 		CVE-2024-13514 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1225 4.3 MEDIUM
Network 		- - The Medical Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.6.2 via the 'namedical_elementor_template' shortcode due… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-12046 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1226 - - - A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6 . An attacker with administrator privileges can upload a specially crafted image, which can cause a sta… - CVE-2024-10239 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1227 - - - A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6. An attacker can upload a specially crafted image that will cause a stack overflow is caused by not … - CVE-2024-10238 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1228 - - - There is a vulnerability in the BMC firmware image authentication design at Supermicro MBD-X12DPG-OA6 . An attacker can modify the firmware to bypass BMC inspection and bypass the signature verif… - CVE-2024-10237 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1229 4.3 MEDIUM
Network 		- - The JS Help Desk – The Ultimate Help Desk & Support Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.8.8 via the 'exportusereraser… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-13607 2025-02-4 16:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1230 - - - The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak sensei_email and sensei_message Information. - CVE-2025-0466 2025-02-4 15:15 2025-02-4 Show GitHub Exploit DB Packet Storm