Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193561	10	危険	kervancilar	-	ASPMForum における SQL インジェクションの脆弱性	-	CVE-2006-6270	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193562	7.5	危険	infinity technologies	-	Infinitytechs Restaurants CM における SQL インジェクションの脆弱性	-	CVE-2006-6269	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193563	10	危険	Neocrome	-	Neocrome LDU の system/core/profile/profile.inc.php における SQL インジェクションの脆弱性	-	CVE-2006-6268	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193564	6.8	警告	マイクロソフト	-	Teredo クライアントにおける第三者へパケットを送信する脆弱性	-	CVE-2006-6266	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193565	5.8	警告	マイクロソフト	-	Teredo クライアントにおけるインバウンド接続を確立される脆弱性	-	CVE-2006-6265	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193566	7.5	危険	マイクロソフト	-	Teredo におけるイントラネットのホストへ IPv4 トラフィックを送信される脆弱性	-	CVE-2006-6264	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193567	6.8	警告	マイクロソフト	-	Teredo クライアントにおける特定のインターネットゲートウェイのポリシーを回避される脆弱性	-	CVE-2006-6263	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193568	7.5	危険	nukeai	-	NukeAI モジュールの util.php における任意の PHP コードをアップロードされる脆弱性	-	CVE-2006-6255	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193569	4.3	警告	マイクロソフト	-	Microsoft Windows Live Messenger におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6252	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

193570	7.5	危険	photo organizer	-	Photo Organizer における許可されないアクセス権を取得される脆弱性	-	CVE-2006-6246	2012-09-25 15:36	2006-12-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
891	-		-	-	Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is r…	-	CVE-2025-20882	2025-02-4 17:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

892	-		-	-	Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interact…	-	CVE-2025-20881	2025-02-4 17:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

893	4.3	MEDIUM Network	-	-	The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.5 via the 'bsb-slider' shortcode due to insufficient r…	CWE-284 Improper Access Control	CVE-2024-13514	2025-02-4 17:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

894	4.3	MEDIUM Network	-	-	The Medical Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.6.2 via the 'namedical_elementor_template' shortcode due…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-12046	2025-02-4 17:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

895	-		-	-	A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6 . An attacker with administrator privileges can upload a specially crafted image, which can cause a sta…	-	CVE-2024-10239	2025-02-4 17:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

896	-		-	-	A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6. An attacker can upload a specially crafted image that will cause a stack overflow is caused by not …	-	CVE-2024-10238	2025-02-4 17:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

897	-		-	-	There is a vulnerability in the BMC firmware image authentication design at Supermicro MBD-X12DPG-OA6 . An attacker can modify the firmware to bypass BMC inspection and bypass the signature verif…	-	CVE-2024-10237	2025-02-4 17:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

898	4.3	MEDIUM Network	-	-	The JS Help Desk – The Ultimate Help Desk & Support Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.8.8 via the 'exportusereraser…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-13607	2025-02-4 16:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

899	-		-	-	The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak sensei_email and sensei_message Information.	-	CVE-2025-0466	2025-02-4 15:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

900	-		-	-	The Banner Garden Plugin for WordPress plugin through 0.1.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be …	-	CVE-2025-0368	2025-02-4 15:15	2025-02-4	Show	GitHub Exploit DB Packet Storm