Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193661 7.2 危険 opendarwin - Apple Mac OS X の XNU におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5836 2012-09-25 15:36 2006-11-9 Show GitHub Exploit DB Packet Storm
193662 5 警告 OpenSolution - OpenSolution Quick.Cms.Lite の general.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5834 2012-09-25 15:36 2006-11-9 Show GitHub Exploit DB Packet Storm
193663 4.3 警告 Kayako - Kayako SupportSuite の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5825 2012-09-25 15:36 2006-11-9 Show GitHub Exploit DB Packet Storm
193664 2.1 注意 Parallels - Mac 用の Parallels Desktop における DHCP 設定を変更される脆弱性 - CVE-2006-5817 2012-09-25 15:36 2006-11-8 Show GitHub Exploit DB Packet Storm
193665 7.5 危険 Novell - Novell eDirectory における任意のコードを実行される脆弱性 - CVE-2006-5814 2012-09-25 15:36 2006-11-8 Show GitHub Exploit DB Packet Storm
193666 5 警告 Novell - Novell eDirectory におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5813 2012-09-25 15:36 2006-11-8 Show GitHub Exploit DB Packet Storm
193667 5 警告 Kerio Technologies - Kerio MailServer におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5812 2012-09-25 15:36 2006-11-8 Show GitHub Exploit DB Packet Storm
193668 6.8 警告 OpenEMR - OpenEMR の library/translation.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5811 2012-09-25 15:36 2006-11-8 Show GitHub Exploit DB Packet Storm
193669 10 危険 jonathon j. freeman - Jonathon J. Freeman OvBB における脆弱性 - CVE-2006-5809 2012-09-25 15:36 2006-11-8 Show GitHub Exploit DB Packet Storm
193670 5 警告 マイクロソフト - Microsoft Internet Explorer 7 における安全な Web サイトからのセキュリティの証明書が無効と見なされる脆弱性 - CVE-2006-5805 2012-09-25 15:36 2006-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 21, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
871 6.4 MEDIUM
Network 		- - The Puzzles theme for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 4.2.4 due to insufficient input sanitization and output escaping on user … CWE-79
Cross-site Scripting 		CVE-2025-0837 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
872 8.1 HIGH
Network 		- - The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.2.4 via deserialization of untrus… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-13770 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
873 4.3 MEDIUM
Network 		- - The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the update_metadata() function in all ve… CWE-284
Improper Access Control 		CVE-2024-13229 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
874 6.4 MEDIUM
Network 		- - The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Rank Math API in all versions up to, and including, 1.0.23… CWE-79
Cross-site Scripting 		CVE-2024-13227 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
875 9.8 CRITICAL
Network 		- - The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campress_woocommerce_get_ajax_products' function. This makes it possible for… CWE-22
Path Traversal 		CVE-2024-10763 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
876 - - - Dell BSAFE SSL-J, versions prior to 6.6 and versions 7.0 through 7.2, contains a deadlock vulnerability. A remote attacker could potentially exploit this vulnerability, leading to a Denial of Service. - CVE-2024-29172 2025-02-13 13:15 2025-02-12 Show GitHub Exploit DB Packet Storm
877 - - - Dell BSAFE SSL-J, versions prior to 6.6 and versions 7.0 through 7.2, contains an Improper certificate verification vulnerability. A remote attacker could potentially exploit this vulnerability, lead… - CVE-2024-29171 2025-02-13 13:15 2025-02-12 Show GitHub Exploit DB Packet Storm
878 - - - An issue discovered in GitLab CE/EE affecting all versions from 16.11 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2 meant that long-lived connections in ActionCable potentially allo… CWE-613
 Insufficient Session Expiration 		CVE-2025-1198 2025-02-13 11:15 2025-02-13 Show GitHub Exploit DB Packet Storm
879 - - - Orthanc server prior to version 1.5.8 does not enable basic authentication by default when remote access is enabled. This could result in unauthorized access by an attacker. CWE-306
Missing Authentication for Critical Function 		CVE-2025-0896 2025-02-13 11:15 2025-02-13 Show GitHub Exploit DB Packet Storm
880 6.4 MEDIUM
Network 		- - The DethemeKit For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's De Gallery widget in all versions up to, and including, 2.1.8 due to insufficient input… CWE-79
Cross-site Scripting 		CVE-2024-13644 2025-02-13 11:15 2025-02-13 Show GitHub Exploit DB Packet Storm