Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194061 7.5 危険 OneOrZero - OneOrZero の index.php における SQL インジェクションの脆弱性 - CVE-2006-4350 2012-09-25 15:35 2006-08-24 Show GitHub Exploit DB Packet Storm
194062 7.5 危険 kochsuite component - Mambo の kochsuite コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4348 2012-09-25 15:35 2006-08-24 Show GitHub Exploit DB Packet Storm
194063 7.5 危険 jiran - Cool Manager の Cool_CoolD.exe における SQL インジェクションの脆弱性 - CVE-2006-4347 2012-09-25 15:35 2006-08-24 Show GitHub Exploit DB Packet Storm
194064 7.5 危険 ジャストシステム - ジャストシステムの一太郎などの製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-4326 2012-09-25 15:35 2006-08-23 Show GitHub Exploit DB Packet Storm
194065 7.5 危険 opensef project - Joomla! 用の OpenSEF コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4320 2012-09-25 15:35 2006-08-23 Show GitHub Exploit DB Packet Storm
194066 4.3 警告 Mozilla Foundation - Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2006-4310 2012-09-25 15:35 2006-08-23 Show GitHub Exploit DB Packet Storm
194067 10 危険 MySQL AB
sap-db		 - SAP DB などの製品におけるバッファオーバーフローの脆弱性 - CVE-2006-4305 2012-09-25 15:35 2006-08-29 Show GitHub Exploit DB Packet Storm
194068 5 警告 マイクロソフト - Microsoft Internet Explorer 6.0 SP1 におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2006-4301 2012-09-25 15:35 2006-08-22 Show GitHub Exploit DB Packet Storm
194069 5 警告 osCommerce - osCommerce の cache.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4298 2012-09-25 15:35 2006-08-22 Show GitHub Exploit DB Packet Storm
194070 7.5 危険 osCommerce - osCommerce の shopping_cart.php における SQL インジェクションの脆弱性 - CVE-2006-4297 2012-09-25 15:35 2006-08-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
621 - - - Cross-Site Scripting (XSS) vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading to the triggering of the XSS by visiti… - CVE-2024-57004 2025-02-4 04:15 2025-02-4 Show GitHub Exploit DB Packet Storm
622 - - - Buffer Overflow vulnerability in Bento4 mp42avc v.3bdc891602d19789b8e8626e4a3e613a937b4d35 allows a local attacker to execute arbitrary code via the AP4_MemoryByteStream::WritePartial. - CVE-2024-57510 2025-02-4 04:15 2025-01-30 Show GitHub Exploit DB Packet Storm
623 - - - The specific component in Celk Saude 3.1.252.1 that processes user input and returns error messages to the client is vulnerable due to improper validation or sanitization of the "erro" parameter. Thi… - CVE-2024-48761 2025-02-4 04:15 2025-01-30 Show GitHub Exploit DB Packet Storm
624 - - - rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a l… CWE-416
 Use After Free 		CVE-2025-24898 2025-02-4 03:15 2025-02-4 Show GitHub Exploit DB Packet Storm
625 - - - PVWA (Password Vault Web Access) in CyberArk Privileged Access Manager Self-Hosted before 14.4 has potentially elevated privileges in LDAP mapping. - CVE-2024-57967 2025-02-4 03:15 2025-02-4 Show GitHub Exploit DB Packet Storm
626 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-54840. Reason: This candidate is a reservation duplicate of CVE-2024-54840. Notes: All CVE users should reference CVE-2024-5484… - CVE-2024-57362 2025-02-4 03:15 2025-02-4 Show GitHub Exploit DB Packet Storm
627 - - - A Stored Cross-Site Scripting (XSS) vulnerability was identified in the PHPGURUKUL Online Birth Certificate System v1.0 via the profile name to /user/certificate-form.php. - CVE-2024-57175 2025-02-4 03:15 2025-02-4 Show GitHub Exploit DB Packet Storm
628 - - - PVWA (Password Vault Web Access) in CyberArk Privileged Access Manager Self-Hosted before 14.4 does not properly address environment issues that can contribute to Host header injection. - CVE-2024-54840 2025-02-4 03:15 2025-02-4 Show GitHub Exploit DB Packet Storm
629 - - - An issue was discovered on NRadio N8-180 NROS-1.9.2.n3.c5 devices. The /cgi-bin/luci/nradio/basic/radio endpoint is vulnerable to command injection via the 2.4 GHz and 5 GHz name parameters, allowing… - CVE-2024-53942 2025-02-4 03:15 2025-02-4 Show GitHub Exploit DB Packet Storm
630 6.3 MEDIUM
Network 		- - A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file staffview.php. The manipulation of the arg… - CVE-2025-0950 2025-02-4 03:15 2025-02-2 Show GitHub Exploit DB Packet Storm