Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 11, 2025, 10:02 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198881 7.5 危険 creascripts - CreaScripts Creadirectory の search.asp における SQL インジェクションの脆弱性 - CVE-2006-6083 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
198882 2.6 注意 Coppermine Photo Gallery - CPG における任意の変数を設定される脆弱性 - CVE-2006-6123 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
198883 9.3 危険 日本エイサー - Acer Notebook の LunchApp.APlunch ActiveX コントロールにおける任意のコマンドを実行される脆弱性 - CVE-2006-6121 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
198884 7.5 危険 fipsasp - fipsGallery の index1.asp における SQL インジェクションの脆弱性 - CVE-2006-6117 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
198885 7.5 危険 fipsasp - fipsForum の default2.asp における SQL インジェクションの脆弱性 - CVE-2006-6116 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
198886 7.5 危険 fipsasp - fipsCMS の index.asp における SQL インジェクションの脆弱性 - CVE-2006-6115 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
198887 7.5 危険 alan ward - Alan Ward A-Cart Pro における SQL インジェクションの脆弱性 - CVE-2006-6111 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
198888 7.5 危険 bpg-infotech - BPG-InfoTech Content Management System 製品における SQL インジェクションの脆弱性 - CVE-2006-6110 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
198889 7.5 危険 candypress - CandyPress Store における SQL インジェクションの脆弱性 - CVE-2006-6109 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
198890 4.3 警告 GNOME Project - gdm の gdmchooser におけるフォーマットストリングの脆弱性 - CVE-2006-6105 2012-06-26 15:37 2006-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351 - - - A vulnerability classified as critical was found in ZeroWdd myblog 1.0. This vulnerability affects unknown code of the file src/main/resources/mapper/BlogMapper.xml. The manipulation of the argument … New CWE-74
CWE-91
Injection
Blind XPath Injection 		CVE-2024-13190 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
352 - - - An issue was discovered in GitLab CE/EE affecting all versions starting from 15.5 before 17.5.5, 17.6 before 17.6.3, and 17.7 before 17.7.1, in which unauthorized users could manipulate the status of… New CWE-862
 Missing Authorization 		CVE-2024-12431 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
353 - - - A vulnerability classified as critical has been found in ZeroWdd myblog 1.0. This affects an unknown part of the file src/main/java/com/wdd/myblog/config/MyBlogMvcConfig.java. The manipulation leads … New - CVE-2024-13189 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
354 - - - A vulnerability was found in Kingsoft WPS Office 6.14.0 on macOS. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component TCC Handler. The manipu… New - CVE-2024-13187 2025-01-9 06:15 2025-01-9 Show GitHub Exploit DB Packet Storm
355 - - - WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the listar_permissoes.php endpoint of the WeGIA application. This vulnerabil… New CWE-79
Cross-site Scripting 		CVE-2025-22143 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
356 - - - Rejected reason: reserved but not needed New - CVE-2024-45345 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
357 - - - Rejected reason: reserved but not needed New - CVE-2024-45344 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
358 - - - Rejected reason: reserved but not needed New - CVE-2024-45343 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
359 - - - Rejected reason: reserved but not needed New - CVE-2024-45342 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm
360 - - - WeGIA is a web manager for charitable institutions. A SQL Injection vulnerability was identified in the /dao/verificar_recursos_cargo.php endpoint, specifically in the cargo parameter. This vulnerabi… New - CVE-2025-22141 2025-01-9 05:15 2025-01-9 Show GitHub Exploit DB Packet Storm