Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 12:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201071 7.5 危険 enthrallweb - Enthrallweb eShopping Cart における SQL インジェクションの脆弱性 - CVE-2006-6073 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
201072 7.5 危険 bpg-infotech - BPG-InfoTech Easy Publisher の bpg/publications_list.asp における SQL インジェクションの脆弱性 - CVE-2006-6072 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
201073 7.5 危険 asp-nuke - ASP Nuke の module/account/register/register.asp における SQL インジェクションの脆弱性 - CVE-2006-6070 2012-06-26 15:37 2006-11-21 Show GitHub Exploit DB Packet Storm
201074 7.5 危険 20 20 applications - 20/20 DataShed における SQL インジェクションの脆弱性 - CVE-2006-6067 2012-06-26 15:37 2006-11-21 Show GitHub Exploit DB Packet Storm
201075 7.5 危険 dragon internet - Dragon Calendar / Events Listing における SQL インジェクションの脆弱性 - CVE-2006-6066 2012-06-26 15:37 2006-11-21 Show GitHub Exploit DB Packet Storm
201076 7.5 危険 fuzzball muck - Fuzzball MUCK の MPI におけるバッファオーバーフローの脆弱性 - CVE-2006-6064 2012-06-26 15:37 2006-11-21 Show GitHub Exploit DB Packet Storm
201077 10 危険 D-Link Systems, Inc. - D-Link DWL-G132 無線アダプタの A5AGU.SYS におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-6055 2012-06-26 15:37 2006-11-21 Show GitHub Exploit DB Packet Storm
201078 7.5 危険 clicktech - ClickTech Texas Rank'em における SQL インジェクションの脆弱性 - CVE-2006-6050 2012-06-26 15:37 2006-11-21 Show GitHub Exploit DB Packet Storm
201079 6.8 警告 Etomite Project - Etomite CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-6048 2012-06-26 15:37 2006-11-21 Show GitHub Exploit DB Packet Storm
201080 5.8 警告 Etomite Project - Etomite の manager/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-6047 2012-06-26 15:37 2006-11-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
981 - - - OpenAirInterface CN5G AMF (oai-cn5g-amf) <= 2.0.0 contains a null dereference in its handling of unsupported NGAP protocol messages which allows an attacker with network-adjacent access to the AMF to… - CVE-2024-24445 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
982 - - - pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the organizationCode parameter at project.php. - CVE-2023-27113 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
983 - - - pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the projectCode parameter at project.php. - CVE-2023-27112 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
984 7.5 HIGH
Network 		- - Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable vulnerabi… - CVE-2025-21510 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
985 6.5 MEDIUM
Network 		- - Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable vulnerabi… - CVE-2025-21509 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
986 - - - https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incorrect Access Control. The type of exploitation is: local. The component is: `nm --without-symbol-version` function. - CVE-2024-57360 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
987 - - - Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions. - CVE-2024-55959 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
988 - - - The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is vulnerable to Remote Code Execution via a modified MQTT broker message. - CVE-2024-42936 2025-01-24 01:15 2025-01-22 Show GitHub Exploit DB Packet Storm
989 - - - lunasvg v3.0.0 was discovered to contain a segmentation violation via the component gray_record_cell. - CVE-2024-57724 2025-01-24 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
990 - - - lunasvg v3.0.0 was discovered to contain a segmentation violation via the component composition_source_over. - CVE-2024-57723 2025-01-24 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm