Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193991	7.5	危険	muratsoft	-	Muratsoft Haber Portal の kategori.asp における SQL インジェクションの脆弱性	-	CVE-2006-4641	2012-09-25 15:35	2006-09-8	Show	GitHub Exploit DB Packet Storm

193992	5	警告	マイクロソフト	-	System Information ActiveX control におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4627	2012-09-25 15:35	2006-09-7	Show	GitHub Exploit DB Packet Storm

193993	5.1	警告	John Lim	-	Intechnic In-link の John Lim ADOdb における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4618	2012-09-25 15:35	2006-09-6	Show	GitHub Exploit DB Packet Storm

193994	5	警告	MailEnable	-	MailEnable の SMTP サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4616	2012-09-25 15:35	2006-09-6	Show	GitHub Exploit DB Packet Storm

193995	7.5	危険	john andersson	-	ZIXForum の ReplyNew.asp における SQL インジェクションの脆弱性	-	CVE-2006-4612	2012-09-25 15:35	2006-09-6	Show	GitHub Exploit DB Packet Storm

193996	6.8	警告	longino	-	Longino Jacome php-Revista におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4608	2012-09-25 15:35	2006-09-6	Show	GitHub Exploit DB Packet Storm

193997	7.5	危険	longino	-	Longino Jacome php-Revista の admin/index.php における認証コントロールを回避される脆弱性	-	CVE-2006-4607	2012-09-25 15:35	2006-09-6	Show	GitHub Exploit DB Packet Storm

193998	7.5	危険	longino	-	Longino Jacome php-Revista における SQL インジェクションの脆弱性	-	CVE-2006-4606	2012-09-25 15:35	2006-09-6	Show	GitHub Exploit DB Packet Storm

193999	7.5	危険	longino	-	Longino Jacome php-Revista の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4605	2012-09-25 15:35	2006-09-6	Show	GitHub Exploit DB Packet Storm

194000	7.5	危険	lanifex	-	Lanifex DMO の LFXlib/access_manager.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4604	2012-09-25 15:35	2006-09-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 14, 2025, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
931	-		-	-	An issue in TPLINK TL-WPA 8630 TL-WPA8630(US)_V2_2.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub_4256CC, which allows command injection by injecting 'devpwd'.	-	CVE-2024-57357	2025-02-8 08:15	2025-02-8	Show	GitHub Exploit DB Packet Storm

932	-		-	-	A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the LDAP User Manager <= ce92321, specifically in the /setup/index.php endpoint via the returnto parameter. This vulnerabil…	-	CVE-2024-57279	2025-02-8 08:15	2025-02-8	Show	GitHub Exploit DB Packet Storm

933	-		-	-	A reflected Cross-Site Scripting (XSS) vulnerability exists in /webscan/sqlmap/index.html in QingScan <=v1.8.0. The vulnerability is caused by improper input sanitization of the query parameter, allo…	-	CVE-2024-57278	2025-02-8 08:15	2025-02-8	Show	GitHub Exploit DB Packet Storm

934	-		-	-	SFTPGo is an open source, event-driven file transfer solution. SFTPGo supports execution of a defined set of commands via SSH. Besides a set of default commands some optional commands can be activate…	CWE-78 OS Command	CVE-2025-24366	2025-02-8 07:15	2025-02-8	Show	GitHub Exploit DB Packet Storm

935	-		-	-	pimcore/admin-ui-classic-bundle provides a Backend UI for Pimcore. In affected versions an error message discloses existing accounts and leads to user enumeration on the target via "Forgot password" …	-	CVE-2025-24980	2025-02-8 07:15	2025-02-8	Show	GitHub Exploit DB Packet Storm

936	-		-	-	Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a cr…	-	CVE-2025-0451	2025-02-8 07:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

937	-		-	-	Use after free in V8 in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	-	CVE-2025-0445	2025-02-8 07:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

938	-		-	-	Use after free in Skia in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	-	CVE-2025-0444	2025-02-8 07:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

939	-		-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or Directories Accessible to External Parties vulnerability in Apache Doris. Application administrators can rea…	-	CVE-2024-48019	2025-02-8 07:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

940	7.5	HIGH Network	dell	data_domain_operating_system	Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potential…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2025-22475	2025-02-8 05:42	2025-02-4	Show	GitHub Exploit DB Packet Storm