Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 19, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199641 3.5 注意 flippet.org - Wawi における特定のディレクトリにアクセスされる脆弱性 - CVE-2006-6514 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
199642 3.5 注意 flippet.org - Wawi の CControl::Download 関数におけるルート配下のファイルタイプをダウンロードされる脆弱性 - CVE-2006-6513 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
199643 3.5 注意 flippet.org - Wawi の Browse 関数におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6512 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
199644 6.8 警告 dadaimc - dadaIMC における任意の PHP コードを実行される脆弱性 - CVE-2006-6511 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
199645 6.6 警告 CA Technologies - CA Anti-Virus および CA Internet Security Suite の VetMONNT.sys ドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6496 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
199646 7.5 危険 easypage - EasyPage における SQL インジェクションの脆弱性 - CVE-2006-6486 2012-06-26 15:38 2006-12-12 Show GitHub Exploit DB Packet Storm
199647 2.6 注意 アドビシステムズ - Adobe ColdFusion MX における任意の Web スクリプトまたは HTML を挿入される脆弱性 - CVE-2006-6483 2012-06-26 15:38 2006-12-12 Show GitHub Exploit DB Packet Storm
199648 5 警告 アドビシステムズ - Adobe ColdFusion MX における重要な情報を取得される脆弱性 - CVE-2006-6482 2012-06-26 15:38 2006-12-12 Show GitHub Exploit DB Packet Storm
199649 7.5 危険 cm68 news - CM68 News の engine/oldnews.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6462 2012-06-26 15:38 2006-12-11 Show GitHub Exploit DB Packet Storm
199650 7.5 危険 duware - DUware DUdirectory の admin/default.asp における SQL インジェクションの脆弱性 - CVE-2006-6455 2012-06-26 15:38 2006-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
561 - - - Mattermost Mobile Apps versions <=2.22.0 fail to properly handle specially crafted attachment names, which allows an attacker to crash the mobile app for any user who opened a channel containing the … - CVE-2025-0476 2025-01-16 09:15 2025-01-16 Show GitHub Exploit DB Packet Storm
562 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2021-39275. - CVE-2022-21384 2025-01-16 09:15 2025-01-16 Show GitHub Exploit DB Packet Storm
563 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2022-21371 - CVE-2021-35685 2025-01-16 09:15 2025-01-16 Show GitHub Exploit DB Packet Storm
564 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2022-21306. - CVE-2021-35684 2025-01-16 09:15 2025-01-16 Show GitHub Exploit DB Packet Storm
565 - - - SQL Injection vulnerability in dingfanzuCMS v.1.0 allows a local attacker to execute arbitrary code via not filtering the content correctly at the "checkOrder.php" shopId module. - CVE-2025-22976 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
566 - - - SQL Injection vulnerability in DDSN Net Pty Ltd (DDSN Interactive) DDSN Interactive cm3 Acora CMS 10.1.1 allows an attacker to execute arbitrary code via the table parameter. - CVE-2025-22964 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
567 6.1 MEDIUM
Network 		- - The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the showdata and initiate_restore parameters in all versions up to, and includin… CWE-79
Cross-site Scripting 		CVE-2025-0215 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
568 - - - An arbitrary file upload vulnerability in the UI login page logo upload function of Process Maker pm4core-docker 4.1.21-RC7 allows attackers to execute arbitrary code via uploading a crafted PHP or H… - CVE-2024-41454 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
569 - - - Insecure permissions in Aginode GigaSwitch v5 allows attackers to access sensitive information via using the SCP command. - CVE-2024-39967 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
570 - - - An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclo… - CVE-2025-0107 2025-01-16 08:15 2025-01-11 Show GitHub Exploit DB Packet Storm