Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201381	7.5	危険	DeltaScripts	-	PHP Classifieds における SQL インジェクションの脆弱性	-	CVE-2006-5208	2012-06-26 15:37	2006-10-10	Show	GitHub Exploit DB Packet Storm

201382	10	危険	CA Technologies	-	複数の CA 製品で使用される RPC インターフェースにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-5171	2012-06-26 15:37	2007-01-11	Show	GitHub Exploit DB Packet Storm

201383	5	警告	アドビシステムズ	-	Adobe Breeze Licensed Server および Breeze Licensed Server における任意のファイルを読まれる脆弱性	-	CVE-2006-5200	2012-06-26 15:37	2006-10-10	Show	GitHub Exploit DB Packet Storm

201384	2.1	注意	アドビシステムズ	-	Adobe Contribute Publishing Server におけるサーバへのアクセス権限を取得される脆弱性	-	CVE-2006-5199	2012-06-26 15:37	2006-10-10	Show	GitHub Exploit DB Packet Storm

201385	7.5	危険	bulletin board ace	-	BBaCE の includes/functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5187	2012-06-26 15:37	2006-10-10	Show	GitHub Exploit DB Packet Storm

201386	7.5	危険	dayfox designs	-	Dayfox Designs Dayfox Blog における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5183	2012-06-26 15:37	2006-10-10	Show	GitHub Exploit DB Packet Storm

201387	7.5	危険	dan jensen	-	Dan Jensen Travelsized CMS の frontpage.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5182	2012-06-26 15:37	2006-10-10	Show	GitHub Exploit DB Packet Storm

201388	7.5	危険	baumedia	-	Sebastian Baumann の include/main.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5180	2012-06-26 15:37	2006-10-10	Show	GitHub Exploit DB Packet Storm

201389	5.1	警告	basilix	-	BasiliX における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5167	2012-06-26 15:37	2006-10-5	Show	GitHub Exploit DB Packet Storm

201390	7.5	危険	deluxebb	-	DeluxeBB の cp/sig.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5154	2012-06-26 15:37	2006-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1121	-		-	-	Fedora Repository 3.8.x includes a service account (fedoraIntCallUser) with default credentials and privileges to read read local files by manipulating datastreams. Fedora Repository 3.8.1 was releas…	-	CVE-2025-23012	2025-01-24 06:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1122	-		-	-	Fedora Repository 3.8.1 allows path traversal when extracting uploaded archives ("Zip Slip"). A remote, authenticated attacker can upload a specially crafted archive that will extract an arbitrary JS…	-	CVE-2025-23011	2025-01-24 06:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1123	-		-	-	Cross Site Scripting vulnerability in sunnygkp10 Online Exam System master version allows a remote attacker to obtain sensitive information via the w parameter.	-	CVE-2024-57370	2025-01-24 06:15	2025-01-18	Show	GitHub Exploit DB Packet Storm

1124	4.9	MEDIUM Network	-	-	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vul…	-	CVE-2025-21491	2025-01-24 05:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

1125	4.9	MEDIUM Network	-	-	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vul…	-	CVE-2025-21490	2025-01-24 05:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

1126	6.1	MEDIUM Network	-	-	Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite (component: Region Mapping). Supported versions that are affected are 12.2.3-12.2.10. Easily exploitable vu…	-	CVE-2025-21489	2025-01-24 05:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

1127	5.4	MEDIUM Network	-	-	Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Business Logic Infra SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable …	-	CVE-2024-21245	2025-01-24 05:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

1128	7.8	HIGH Local	google	android	In ip6_append_data of ip6_output.c, there is a possible way to achieve code execution due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution priv…	CWE-787 Out-of-bounds Write	CVE-2018-9389	2025-01-24 04:56	2025-01-18	Show	GitHub Exploit DB Packet Storm

1129	5.5	MEDIUM Local	google	android	In NlpService, there is a possible way to obtain location information due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges neede…	CWE-862 Missing Authorization	CVE-2018-9406	2025-01-24 04:55	2025-01-18	Show	GitHub Exploit DB Packet Storm

1130	5.5	MEDIUM Local	google	android	In endCallForSubscriber of PhoneInterfaceManager.java, there is a possible way to prevent access to emergency services due to a logic error in the code. This could lead to a local denial of service w…	NVD-CWE-noinfo	CVE-2017-13322	2025-01-24 04:54	2025-01-18	Show	GitHub Exploit DB Packet Storm