Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 30, 2025, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200991 2.1 注意 cryptocard - CRYPTOCard CRYPTO-Server における資格情報を取得される脆弱性 - CVE-2006-6145 2012-06-26 15:37 2006-11-28 Show GitHub Exploit DB Packet Storm
200992 4.9 警告 アップル - Apple Mac OS X AppleTalk におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6130 2012-06-26 15:37 2006-11-27 Show GitHub Exploit DB Packet Storm
200993 4.6 警告 アップル - Apple Mac OS X の fatfile_getarch2 における整数オーバーフローの脆弱性 - CVE-2006-6129 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
200994 2.1 注意 アップル - Apple Mac OS X におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6126 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
200995 6.8 警告 biba software - SeleniumServer Web Server におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6124 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
200996 7.5 危険 creascripts - CreaScripts Creadirectory の search.asp における SQL インジェクションの脆弱性 - CVE-2006-6083 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
200997 2.6 注意 Coppermine Photo Gallery - CPG における任意の変数を設定される脆弱性 - CVE-2006-6123 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
200998 9.3 危険 日本エイサー - Acer Notebook の LunchApp.APlunch ActiveX コントロールにおける任意のコマンドを実行される脆弱性 - CVE-2006-6121 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
200999 7.5 危険 fipsasp - fipsGallery の index1.asp における SQL インジェクションの脆弱性 - CVE-2006-6117 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
201000 7.5 危険 fipsasp - fipsForum の default2.asp における SQL インジェクションの脆弱性 - CVE-2006-6116 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 30, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1001 - - - ps_contactinfo, a PrestaShop module for displaying store contact information, has a cross-site scripting (XSS) vulnerability in versions up to and including 3.3.2. This can not be exploited in a fres… CWE-79
Cross-site Scripting 		CVE-2025-24027 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1002 - - - Unrestricted Upload of File with Dangerous Type vulnerability in NgocCode WP Load Gallery allows Upload a Web Shell to a Web Server. This issue affects WP Load Gallery: from n/a through 2.1.6. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-23942 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1003 - - - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in NotFound Image Gallery Box by CRUDLab allows PHP Local File Inclusion. This is… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2025-23938 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1004 - - - Deserialization of Untrusted Data vulnerability in NotFound Quick Count allows Object Injection. This issue affects Quick Count: from n/a through 3.00. CWE-502
 Deserialization of Untrusted Data 		CVE-2025-23932 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1005 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WordPress Local SEO allows Blind SQL Injection. This issue affects WordPress Local SEO: … CWE-89
SQL Injection 		CVE-2025-23931 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1006 - - - Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Multi Uploader for Gravity Forms allows Upload a Web Shell to a Web Server. This issue affects Multi Uploader for Gravity For… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-23921 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1007 - - - Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Smallerik File Browser allows Upload a Web Shell to a Web Server. This issue affects Smallerik File Browser: from n/a through… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-23918 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1008 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Menus Plus+ allows SQL Injection. This issue affects Menus Plus+: from n/a through 1.9.6. CWE-89
SQL Injection 		CVE-2025-23910 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1009 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Download Codes allows Reflected XSS. This issue affects WP Download Codes: from n/a t… CWE-79
Cross-site Scripting 		CVE-2025-23882 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1010 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Block Pack allows Reflected XSS. This issue affects WP Block Pack: from n/a through 1… CWE-79
Cross-site Scripting 		CVE-2025-23874 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm