Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199081 9.3 危険 マイクロソフト
3ivx		 - WMP の mplayer2.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6401 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
199082 5 警告 flat php - Flat PHP Board における任意のユーザアカウントへの制限されたアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2007-6398 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
199083 5 警告 flat php - Flat PHP Board の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6397 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
199084 5 警告 flat php - Flat PHP Board における資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6395 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
199085 10 危険 アドビシステムズ - Adobe Flash Media Server および Connect Enterprise Server における影響のあるシステムのコントロールを奪取される脆弱性 CWE-DesignError
CVE-2007-6431 2012-06-26 15:54 2008-02-12 Show GitHub Exploit DB Packet Storm
199086 7.8 危険 DELL EMC (旧 EMC Corporation) - EMC RepliStor SP2 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6426 2012-06-26 15:54 2008-02-20 Show GitHub Exploit DB Packet Storm
199087 4.3 警告 Digium - Asterisk Open Source における有効なユーザ名を使用して認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-6430 2012-06-26 15:54 2007-12-18 Show GitHub Exploit DB Packet Storm
199088 4.3 警告 Fonality - Fonality Trixbox PBX 製品の registry.pl における任意のコマンド実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6424 2012-06-26 15:54 2007-12-18 Show GitHub Exploit DB Packet Storm
199089 2.1 注意 Debian - Debian GNU/Linux の libdspam7-drv-mysql cron job におけるパスワードを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2007-6418 2012-06-26 15:54 2007-10-29 Show GitHub Exploit DB Packet Storm
199090 8.5 危険 Debian - scponly における任意のファイルを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6415 2012-06-26 15:54 2007-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1611 - - - In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose sensitive resources CWE-522
 Insufficiently Protected Credentials 		CVE-2025-26492 2025-02-11 23:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1612 - - - PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of t… - CVE-2024-12366 2025-02-11 23:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1613 6.2 MEDIUM
Local 		- - A vulnerability has been identified in OpenV2G (All versions < V0.9.6). The OpenV2G EXI parsing feature is missing a length check when parsing X509 serial numbers. Thus, an attacker could introduce a… CWE-120
Classic Buffer Overflow 		CVE-2025-24956 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1614 7.0 HIGH
Local 		- - A vulnerability has been identified in SIMATIC IPC DiagBase (All versions), SIMATIC IPC DiagMonitor (All versions). The affected device do not properly restrict the user permission for the registry k… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2025-23403 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1615 7.4 HIGH
Network 		- - A vulnerability has been identified in Teamcenter (All versions < V14.3.0.0). The SSO login service of affected applications accepts user-controlled input that could specify a link to an external sit… CWE-601
Open Redirect 		CVE-2025-23363 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1616 4.9 MEDIUM
Network 		- - The SuperSaaS – online appointment scheduling plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘after’ parameter in all versions up to, and including, 2.1.12 due to insuffici… CWE-79
Cross-site Scripting 		CVE-2025-0862 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1617 6.5 MEDIUM
Network 		- - A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0) (All versions < V4.7), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0) (All versions < V4.7), S… CWE-1286
 Improper Validation of Syntactic Correctness of Input 		CVE-2025-24812 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1618 7.5 HIGH
Network 		- - A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-… CWE-404
 Improper Resource Shutdown or Release 		CVE-2025-24811 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1619 4.3 MEDIUM
Network 		- - A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-… CWE-284
Improper Access Control 		CVE-2025-24532 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1620 7.2 HIGH
Network 		- - A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-… CWE-20
 Improper Input Validation  		CVE-2025-24499 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm