Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 9, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198921 7.8 危険 eazy cart - Eazy Cart における顧客データベースをダウンロードされる脆弱性 - CVE-2006-5248 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198922 6.8 警告 eazy cart - Eazy Cart におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5247 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198923 5 警告 eazy cart - Eazy Cart における価格および他の重要なフィールドを変更される脆弱性 - CVE-2006-5246 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198924 7.5 危険 eazy cart - Eazy Cart における管理アクセス権を取得される脆弱性 - CVE-2006-5245 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198925 7.5 危険 Etomite Project - Etomite CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-5242 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198926 5.1 警告 docmint - Docmint の engine/require.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5240 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198927 4.3 警告 expblog - eXpBlog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-5239 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198928 10 危険 blue smiley organizer - Blue Smiley Organizer のファイルアップロードモジュールにおける詳細不明な脆弱性 - CVE-2006-5238 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198929 7.5 危険 blue smiley organizer - Blue Smiley Organizer における SQL インジェクションの脆弱性 - CVE-2006-5237 2012-06-26 15:37 2006-10-11 Show GitHub Exploit DB Packet Storm
198930 7.5 危険 4homepages - 4images の search.php における SQL インジェクションの脆弱性 - CVE-2006-5236 2012-06-26 15:37 2006-10-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
681 4.2 MEDIUM
Physics 		- - IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could could allow a physical user to obtain sensitive information due to not masking passwords during entry. CWE-359
 Exposure of Private Personal Information to an Unauthorized Actor 		CVE-2024-41780 2025-01-4 00:15 2025-01-4 Show GitHub Exploit DB Packet Storm
682 - - - A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /user/add_cart.php… - CVE-2025-0176 2025-01-4 00:15 2025-01-3 Show GitHub Exploit DB Packet Storm
683 - - - Moxa’s cellular routers, secure routers, and network security appliances are affected by a critical vulnerability, CVE-2024-9140. This vulnerability allows OS command injection due to improperly rest… - CVE-2024-9140 2025-01-3 18:15 2025-01-3 Show GitHub Exploit DB Packet Storm
684 - - - Moxa’s cellular routers, secure routers, and network security appliances are affected by a high-severity vulnerability, CVE-2024-9138. This vulnerability involves hard-coded credentials, enabling an … - CVE-2024-9138 2025-01-3 18:15 2025-01-3 Show GitHub Exploit DB Packet Storm
685 4.3 MEDIUM
Network 		- - The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.4 d… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-12132 2025-01-3 18:15 2025-01-3 Show GitHub Exploit DB Packet Storm
686 - - - iTerm2 3.5.6 through 3.5.10 before 3.5.11 sometimes allows remote attackers to obtain sensitive information from terminal commands by reading the /tmp/framer.txt file. This can occur for certain it2s… - CVE-2025-22275 2025-01-3 16:15 2025-01-3 Show GitHub Exploit DB Packet Storm
687 - - - In cc_SendCcImsInfoIndMsg of cc_MmConManagement.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privile… - CVE-2024-53842 2025-01-3 13:15 2025-01-3 Show GitHub Exploit DB Packet Storm
688 - - - In startListeningForDeviceStateChanges, there is a possible Permission Bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed… - CVE-2024-53841 2025-01-3 13:15 2025-01-3 Show GitHub Exploit DB Packet Storm
689 - - - there is a possible biometric bypass due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for … - CVE-2024-53840 2025-01-3 13:15 2025-01-3 Show GitHub Exploit DB Packet Storm
690 - - - In GetCellInfoList() of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise… - CVE-2024-53839 2025-01-3 13:15 2025-01-3 Show GitHub Exploit DB Packet Storm