Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201321	7.5	危険	Castor Project	-	2le.net Castor PHP Web Builder における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5481	2012-06-26 15:37	2006-10-24	Show	GitHub Exploit DB Packet Storm

201322	5.1	警告	Castor Project	-	2le.net Castor PHP Web Builder の lib/rs.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5480	2012-06-26 15:37	2006-10-24	Show	GitHub Exploit DB Packet Storm

201323	2.6	注意	Drupal	-	Drupal における任意のフォーム情報を取得される脆弱性	-	CVE-2006-5477	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

201324	7.5	危険	Drupal	-	Drupal におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2006-5476	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

201325	6.8	警告	Drupal	-	Drupal の XML パーサにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5475	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

201326	2.1	注意	Avahi	-	Avahi における Avahi へのネットワーク変更を傍受される脆弱性	-	CVE-2006-5461	2012-06-26 15:37	2006-11-14	Show	GitHub Exploit DB Packet Storm

201327	7.5	危険	alex	-	Download-Engine における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5459	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

201328	4.3	警告	casinosoft	-	Casinosoft Casino Script の登録フォームにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5457	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

201329	4.3	警告	dev	-	DEV WMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5447	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

201330	5.1	警告	casinosoft	-	Casinosoft Casino Script の lobby/config.php における SQL インジェクションの脆弱性	-	CVE-2006-5446	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1761	9.8	CRITICAL Network	openimageio	openimageio	OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component OpenImageIO_v3_1_0::farmhash::inlined::Fetch64(char const*).	CWE-787 Out-of-bounds Write	CVE-2024-55192	2025-01-30 00:36	2025-01-24	Show	GitHub Exploit DB Packet Storm

1762	9.8	CRITICAL Network	openimageio	openimageio	OpenImageIO v3.1.0.0dev was discovered to contain a segmentation violation via the component /OpenImageIO/string_view.h.	NVD-CWE-Other	CVE-2024-55193	2025-01-30 00:27	2025-01-24	Show	GitHub Exploit DB Packet Storm

1763	9.8	CRITICAL Network	openimageio	openimageio	OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component /OpenImageIO/fmath.h.	CWE-787 Out-of-bounds Write	CVE-2024-55194	2025-01-30 00:19	2025-01-24	Show	GitHub Exploit DB Packet Storm

1764	-		-	-	An issue in the reset password interface of ruoyi v4.8.0 allows attackers with Admin privileges to cause a Denial of Service (DoS) by duplicating the login name of the account.	-	CVE-2024-57439	2025-01-30 00:15	2025-01-30	Show	GitHub Exploit DB Packet Storm

1765	-		-	-	RuoYi v4.8.0 was discovered to allow unauthorized attackers to view the session ID of the admin in the system monitoring. This issue can allow attackers to impersonate Admin users via using a crafted…	-	CVE-2024-57436	2025-01-30 00:15	2025-01-30	Show	GitHub Exploit DB Packet Storm

1766	-		-	-	Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Mediu…	CWE-416 Use After Free	CVE-2025-0762	2025-01-30 00:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

1767	-		-	-	The Competition Form WordPress plugin through 2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used again…	-	CVE-2024-12749	2025-01-30 00:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

1768	-		-	-	A vulnerability, which was classified as critical, was found in ESAFENET CDG V5. Affected is an unknown function of the file /sdTodoDetail.jsp. The manipulation of the argument flowId leads to sql in…	-	CVE-2025-0792	2025-01-30 00:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

1769	-		-	-	A vulnerability, which was classified as critical, has been found in ESAFENET CDG V5. This issue affects some unknown processing of the file /sdDoneDetail.jsp. The manipulation of the argument flowId…	-	CVE-2025-0791	2025-01-30 00:15	2025-01-29	Show	GitHub Exploit DB Packet Storm

1770	-		-	-	A vulnerability classified as problematic was found in ESAFENET CDG V5. This vulnerability affects unknown code of the file /doneDetail.jsp. The manipulation of the argument curpage leads to cross si…	-	CVE-2025-0790	2025-01-30 00:15	2025-01-29	Show	GitHub Exploit DB Packet Storm