Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193771	3.6	注意	passgo	-	Passgo Defender における重要なファイルを変更される脆弱性	-	CVE-2006-5406	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

193772	7.5	危険	マイクロソフト	-	Microsoft Class Package Export Tool におけるバッファオーバーフローの脆弱性	-	CVE-2006-5395	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

193773	7.5	危険	opendoc	-	OpenDock FullCore における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5392	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

193774	7.5	危険	nuralstorm	-	NuralStorm Webmail の process.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5386	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

193775	9	危険	オラクル	-	JD Edwards EnterpriseOne の JD Edwards HTML Server における脆弱性	-	CVE-2006-5378	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

193776	9	危険	オラクル	-	Oracle PeopleSoft Enterprise の PeopleSoft コンポーネントにおける脆弱性	-	CVE-2006-5377	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

193777	9	危険	オラクル	-	Oracle PeopleSoft Enterprise の PeopleTools コンポーネントにおける脆弱性	-	CVE-2006-5376	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

193778	10	危険	オラクル	-	Oracle PeopleSoft Enterprise の PeopleTools コンポーネントにおける脆弱性	-	CVE-2006-5375	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

193779	10	危険	オラクル	-	Oracle Pharmaceutical Applications における脆弱性	-	CVE-2006-5374	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

193780	9	危険	オラクル	-	Oracle E-Business Suite の Oracle Install Base コンポーネントにおける脆弱性	-	CVE-2006-5373	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1071	-	-	-	Use of Hard-coded Credentials vulnerability in GoodWe Technologies Co., Ltd. GW1500-XS allows anyone in physical proximity to the device to fully access the web interface of the inverter via Wi-Fi.Th…	-	CVE-2024-8893	2025-02-15 02:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

1072	-	-	-	IXON B.V. IXrouter IX2400 (Industrial Edge Gateway) v3.0 was discovered to contain hardcoded root credentials stored in the non-volatile flash memory. This vulnerability allows physically proximate a…	-	CVE-2024-57790	2025-02-15 02:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

1073	-	-	-	IBM QRadar SIEM 7.5 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potent…	-	CVE-2024-56463	2025-02-15 02:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

1074	-	-	-	An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A possible NULL pointer dereference in the Apple Car Play function affects NTG 6 head units. To perform this a…	-	CVE-2024-37602	2025-02-15 02:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1075	-	-	-	A SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the contactno POST request par…	-	CVE-2025-25389	2025-02-15 02:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1076	-	-	-	A SQL Injection vulnerability was found in /admin/manage-propertytype.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the propertytype POST requ…	-	CVE-2025-25387	2025-02-15 02:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1077	-	-	-	D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetQuickVPNSettings module.	-	CVE-2025-25745	2025-02-15 01:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

1078	-	-	-	Insecure Permissions vulnerability in Alvaria, Inc Unified IP Unified Director before v.7.2SP2 allows a remote attacker to execute arbitrary code via the source and filename parameters to the Process…	-	CVE-2024-56973	2025-02-15 01:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

1079	-	-	-	DOMPurify before 3.2.4 has an incorrect template literal regular expression, sometimes leading to mutation cross-site scripting (mXSS).	-	CVE-2025-26791	2025-02-15 01:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

1080	-	-	-	A critical remote code execution (RCE) vulnerability exists in the web-based management interface of GatesAir Maxiva UAXT, VAXT transmitters when debugging mode is enabled. An attacker with a valid s…	-	CVE-2025-22962	2025-02-15 01:15	2025-02-14	Show	GitHub Exploit DB Packet Storm