Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200901 5 警告 Avahi - Avahi の avahi-core/dns.c の consume_labels 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6870 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200902 10 危険 enigma2 - Enigma2 Coppermine Bridge における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6864 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200903 4.3 警告 Docebo - Docebo LMS の modules/credits/credits.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6857 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200904 5 警告 aidex - AIDeX Mini-WebServer におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6855 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200905 7.5 危険 de marchi daniele - De Marchi Daniele QuickCam VC Linux デバイスドライバにおける任意のコードを実行される脆弱性 - CVE-2006-6854 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200906 7.5 危険 cahier de textes - Cahier de texte (CDT) の administration/index.php における不正な管理者操作を実行される脆弱性 - CVE-2006-6849 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200907 7.5 危険 aspticker - ASPTicker の admin.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-6848 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200908 7.5 危険 cybercoded - WYWO InOut Board における SQL インジェクションの脆弱性 - CVE-2006-6846 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200909 6.8 警告 CMS Made Simple - CMS Made Simple の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6845 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
200910 6.8 警告 CMS Made Simple - CMS Made Simple の optional user comment モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6844 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1981 9.9 CRITICAL
Network 		- - A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker to execute arbitrary commands as the root user on an affected device. This vulnerability is due to insecure des… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-20124 2025-02-6 02:15 2025-02-6 Show GitHub Exploit DB Packet Storm
1982 5.3 MEDIUM
Network 		wpjobportal wp_job_portal The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to unauthorized arbitrary emails sending due to a missing capability check on the… CWE-862
 Missing Authorization 		CVE-2024-13371 2025-02-6 01:16 2025-02-1 Show GitHub Exploit DB Packet Storm
1983 - - - HCL iAutomate is affected by a session fixation vulnerability.  An attacker could hijack a victim's session ID from their authenticated session. - CVE-2024-42207 2025-02-6 01:15 2025-02-6 Show GitHub Exploit DB Packet Storm
1984 7.5 HIGH
Network 		- - This is a similar, but different vulnerability than the issue reported as CVE-2024-39549. A double-free vulnerability in the routing process daemon (rpd) of Juniper Networks Junos OS and Junos OS Ev… CWE-415
 Double Free 		CVE-2024-39564 2025-02-6 01:15 2025-02-6 Show GitHub Exploit DB Packet Storm
1985 - - - Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to a flaw in the installation process. Successful exploitation of this issue may allow attackers with us… - CVE-2024-11468 2025-02-6 01:15 2025-02-5 Show GitHub Exploit DB Packet Storm
1986 - - - When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode of the input file, and… - CVE-2025-0374 2025-02-6 01:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1987 - - - On 64-bit systems, the implementation of VOP_VPTOFH() in the cd9660, tarfs and ext2fs filesystems overflows the destination FID buffer by 4 bytes, a stack buffer overflow. A NFS server that exports … - CVE-2025-0373 2025-02-6 01:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1988 5.3 MEDIUM
Network 		wpjobportal wp_job_portal The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.6 v… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-13372 2025-02-6 01:11 2025-02-1 Show GitHub Exploit DB Packet Storm
1989 4.3 MEDIUM
Network 		wpjobportal wp_job_portal The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.6 v… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-13425 2025-02-6 01:08 2025-02-1 Show GitHub Exploit DB Packet Storm
1990 4.3 MEDIUM
Network 		wpjobportal wp_job_portal The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.6 v… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-13429 2025-02-6 01:05 2025-02-1 Show GitHub Exploit DB Packet Storm