Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 10, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198651	7.5	危険	cafelog	-	b2verifauth.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6830	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

198652	7.8	危険	efkan forum	-	Efkan Forum におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-6829	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

198653	7.5	危険	efkan forum	-	Efkan Forum における SQL インジェクションの脆弱性	-	CVE-2006-6828	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

198654	3.5	注意	enthrallweb	-	Enthrallweb eClassifieds の myprofile.asp における profile フィールドを変更される脆弱性	-	CVE-2006-6822	2012-06-26 15:38	2006-12-29	Show	GitHub Exploit DB Packet Storm

198655	3.5	注意	enthrallweb	-	Enthrallweb eNews の myprofile.asp における profile フィールドを変更される脆弱性	-	CVE-2006-6821	2012-06-26 15:38	2006-12-29	Show	GitHub Exploit DB Packet Storm

198656	3.5	注意	enthrallweb	-	Enthrallweb eCoupons の myprofile.asp における profile フィールドを変更される脆弱性	-	CVE-2006-6820	2012-06-26 15:38	2006-12-29	Show	GitHub Exploit DB Packet Storm

198657	6.4	警告	AlstraSoft	-	AlstraSoft Web Host Directory におけるバックアップのデータベースをダウンロードされる脆弱性	-	CVE-2006-6819	2012-06-26 15:38	2006-12-29	Show	GitHub Exploit DB Packet Storm

198658	7.5	危険	AlstraSoft	-	AlstraSoft Web Host Directory における admin パスワードを変更される脆弱性	-	CVE-2006-6818	2012-06-26 15:38	2006-12-29	Show	GitHub Exploit DB Packet Storm

198659	5	警告	AlstraSoft	-	AlstraSoft Web Host Directory における重要な情報を取得される脆弱性	-	CVE-2006-6817	2012-06-26 15:38	2006-12-29	Show	GitHub Exploit DB Packet Storm

198660	7.5	危険	DMXReady	-	DMXReady Secure Login Manager における SQL インジェクションの脆弱性	-	CVE-2006-6816	2012-06-26 15:38	2006-12-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 10, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
471	-	-	-	The Category Posts Widget WordPress plugin before 4.9.18 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting… New	-	CVE-2024-9638	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

472	-	-	-	The WordPress Auction Plugin WordPress plugin through 3.7 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Stored Cross-Site Script… New	-	CVE-2024-8857	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

473	-	-	-	The WordPress Auction Plugin WordPress plugin through 3.7 does not sanitize and escape a parameter before using it in a SQL statement, allowing editors and above to perform SQL injection attacks New	-	CVE-2024-8855	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

474	-	-	-	In FRRouting (FRR) before 10.3, it is possible for an attacker to trigger repeated RIB revalidation by sending approximately 500 RPKI updates, potentially leading to prolonged revalidation times and … New	-	CVE-2024-55553	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

475	-	-	-	An access control issue in the component /juis_boxinfo.xml of AVM FRITZ!Box 7530 AX v7.59 allows attackers to obtain sensitive information without authentication. New	-	CVE-2024-54767	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

476	-	-	-	Plane is an open-source project management tool. A cross-site scripting (XSS) vulnerability has been identified in Plane versions prior to 0.23. The vulnerability allows authenticated users to upload… New	-	CVE-2025-21616	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

477	-	-	-	An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0.0.3749 and Netis Wifi 11AC Router NC63 3.0.0.3327 and 3.0.0.3503 and Netis Wifi 11AC Router NC21 3.0.… New	-	CVE-2024-48457	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

478	-	-	-	An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0.0.3749 and Netis Wifi 11AC Router NC63 3.0.0.3327 and 3.0.0.3503 and Netis Wifi 11AC Router NC21 3.0.… New	-	CVE-2024-48456	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

479	-	-	-	An issue in the DeviceloControl function of ITE Tech. Inc ITE IO Access v1.0.0.0 allows attackers to perform arbitrary port read and write actions via supplying crafted IOCTL requests. New	-	CVE-2024-55407	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm

480	-	-	-	A stored cross-site scripting (XSS) vulnerability in the component /media/test.html of REDAXO CMS v5.17.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload int… New	-	CVE-2024-46209	2025-01-8 01:15	2025-01-7	Show	GitHub Exploit DB Packet Storm