Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 27, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200911	7.5	危険	deep cms	-	Deep CMS の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5251	2012-06-26 15:37	2006-10-12	Show	GitHub Exploit DB Packet Storm

200912	5.1	警告	blueshoes	-	BlueShoes の lib/googlesearch/GoogleSearch.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5250	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

200913	7.8	危険	eazy cart	-	Eazy Cart における顧客データベースをダウンロードされる脆弱性	-	CVE-2006-5248	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

200914	6.8	警告	eazy cart	-	Eazy Cart におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5247	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

200915	5	警告	eazy cart	-	Eazy Cart における価格および他の重要なフィールドを変更される脆弱性	-	CVE-2006-5246	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

200916	7.5	危険	eazy cart	-	Eazy Cart における管理アクセス権を取得される脆弱性	-	CVE-2006-5245	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

200917	7.5	危険	Etomite Project	-	Etomite CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-5242	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

200918	5.1	警告	docmint	-	Docmint の engine/require.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5240	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

200919	4.3	警告	expblog	-	eXpBlog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2006-5239	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

200920	10	危険	blue smiley organizer	-	Blue Smiley Organizer のファイルアップロードモジュールにおける詳細不明な脆弱性	-	CVE-2006-5238	2012-06-26 15:37	2006-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 28, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
961	-		-	-	PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) in /view-medhistory.php and /admin/view-patient.php.	-	CVE-2024-56990	2025-01-22 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

962	-		-	-	In multiple locations, there is a possible way to read protected files due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges need…	-	CVE-2018-9464	2025-01-22 01:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

963	-		-	-	In onAttachFragment of ShareIntentActivity.java, there is a possible way for an app to read files in the messages app due to a race condition. This could lead to local escalation of privilege with no…	-	CVE-2018-9461	2025-01-22 01:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

964	-		-	-	In BnDmAgent::onTransact of dm_agent.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges need…	-	CVE-2018-9405	2025-01-22 01:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

965	-		-	-	In many locations, there is a possible way to access kernel memory in user space due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privil…	-	CVE-2018-9401	2025-01-22 01:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

966	-		-	-	In multiple functions of mnh-sm.c, there is a possible way to trigger a heap overflow due to an integer overflow. This could lead to local escalation of privilege with no additional execution privile…	-	CVE-2018-9387	2025-01-22 01:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

967	6.3	MEDIUM Network	-	-	A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/new_submit.php. The manipulation of t…	-	CVE-2025-0532	2025-01-22 01:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

968	-		-	-	PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) in /edit-profile.php via the parameter $address.	-	CVE-2024-56998	2025-01-22 00:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

969	-		-	-	PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) in /doctor/index.php via the 'Email' parameter.	-	CVE-2024-56997	2025-01-22 00:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

970	-		-	-	CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Cross-site request forgery allows an unauthenticated attacker to hijack the aut…	-	CVE-2024-53829	2025-01-22 00:15	2025-01-22	Show	GitHub Exploit DB Packet Storm