Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193731 4.6 警告 ヒューレット・パッカード - HP-UX の libc の localtime_r 関数におけるバッファオーバーフローの脆弱性 - CVE-2006-5556 2012-09-25 15:36 2006-10-27 Show GitHub Exploit DB Packet Storm
193732 7.5 危険 otscms - OTSCMS の OTSCMS/OTSCMS.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5548 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
193733 7.5 危険 otscms - OTSCMS の OTSCMS/OTSCMS.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5547 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
193734 5.1 警告 otscms - OTSCMS の OTSCMS/OTSCMS.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5546 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
193735 6.4 警告 マイクロソフト - Microsoft Internet Explorer 7 におけるフィッシング攻撃を実行される脆弱性 - CVE-2006-5544 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
193736 5.1 警告 pgosd - PGOSD の PHP Generator における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5543 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
193737 7.5 危険 intelimen - Intelimen InteliEditor における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5527 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
193738 7.5 危険 johannes erdfelt - Johannes Erdfelt Kawf における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5522 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
193739 7.5 危険 net-dns.org - Net_DNS の DNS/RR.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5521 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
193740 6.8 警告 mambweather - Mambo 用の MambWeather コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5519 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
931 - - - Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in MarketingFire Widget Options allows OS Command Injection.This issue affects Widget Options: from n… CWE-77
Command Injection 		CVE-2025-22630 2025-02-14 16:15 2025-02-14 Show GitHub Exploit DB Packet Storm
932 6.5 MEDIUM
Network 		- - The Qubely – Advanced Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘align’ and 'UniqueID' parameter in all versions up to, and including, 1.8.12 due to … CWE-79
Cross-site Scripting 		CVE-2024-9601 2025-02-14 16:15 2025-02-14 Show GitHub Exploit DB Packet Storm
933 - - - app/Model/Attribute.php in MISP before 2.4.198 ignores an ACL during a GUI attribute search. - CVE-2024-57969 2025-02-14 16:15 2025-02-14 Show GitHub Exploit DB Packet Storm
934 - - - The Forminator Forms WordPress plugin before 1.38.3 does not sanitise and escape some of its settings, which could allow high privilege users such as Admin to perform Stored Cross-Site Scripting att… - CVE-2024-7052 2025-02-14 15:15 2025-02-14 Show GitHub Exploit DB Packet Storm
935 5.4 MEDIUM
Network 		- - The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet And Cancel Order Features plugin for WordPress is vulnerable to Insecure Direct Object Reference in all… CWE-285
Improper Authorization 		CVE-2024-13692 2025-02-14 15:15 2025-02-14 Show GitHub Exploit DB Packet Storm
936 5.9 MEDIUM
Network 		- - The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet And Cancel Order Features plugin for WordPress is vulnerable to Sensitive Information Exposure in all v… CWE-200
Information Exposure 		CVE-2024-13641 2025-02-14 15:15 2025-02-14 Show GitHub Exploit DB Packet Storm
937 - - - The Sensly Online Presence WordPress plugin through 0.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting … - CVE-2024-13493 2025-02-14 15:15 2025-02-14 Show GitHub Exploit DB Packet Storm
938 - - - Out-of-bounds read vulnerability caused by improper checking of TCP MSS option values exists in Cente middleware TCP/IP Network Series, which may lead to processing a specially crafted packet to caus… CWE-125
Out-of-bounds Read 		CVE-2025-23406 2025-02-14 14:15 2025-02-14 Show GitHub Exploit DB Packet Storm
939 - - - Docker daemon in Brocade SANnav before SANnav 2.3.1b runs without auditing. The vulnerability could allow a remote authenticated attacker to execute various attacks. - CVE-2024-2240 2025-02-14 14:15 2025-02-14 Show GitHub Exploit DB Packet Storm
940 - - - musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8. - CVE-2025-26519 2025-02-14 13:15 2025-02-14 Show GitHub Exploit DB Packet Storm