Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2041	6.4	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3645	2025-01-14 18:49	2024-04-22	Show	GitHub Exploit DB Packet Storm

2042	5.3	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor における重要な情報のセキュアでない格納に関する脆弱性	CWE-922 重要な情報のセキュアでない格納	CVE-2024-3733	2025-01-14 18:48	2024-04-25	Show	GitHub Exploit DB Packet Storm

2043	6.5	警告 Network	lunary	lunary	lunary におけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 CWE-821	CVE-2024-4154	2025-01-14 18:48	2024-05-21	Show	GitHub Exploit DB Packet Storm

2044	5.3	警告 Network	GLPI-PROJECT.ORG	GLPI	GLPI-PROJECT.ORG の GLPI におけるセッションの固定化の脆弱性	CWE-287 CWE-384 CWE-79	CVE-2024-50339	2025-01-14 18:48	2024-12-12	Show	GitHub Exploit DB Packet Storm

2045	7.1	重要 Local	Huawei	HarmonyOS EMUI	Huawei の EMUI および HarmonyOS における脆弱性	CWE-16 CWE-noinfo	CVE-2024-54099	2025-01-14 18:48	2024-12-12	Show	GitHub Exploit DB Packet Storm

2046	5.3	警告 Network	Huawei	NIP6600 ファームウェア NIP6800 ファームウェア Secospace USG6500 ファームウェア NIP6300 ファームウェア IPS Module ファームウェア Secospace USG6300 ファームウェア USG6000V ファー…	複数の Huawei 製品における境界外読み取りに関する脆弱性	CWE-125 CWE-125	CVE-2020-1821	2025-01-14 18:48	2024-12-28	Show	GitHub Exploit DB Packet Storm

2047	5.3	警告 Network	Huawei	NIP6600 ファームウェア NIP6800 ファームウェア Secospace USG6500 ファームウェア NIP6300 ファームウェア IPS Module ファームウェア Secospace USG6300 ファームウェア USG6000V ファー…	複数の Huawei 製品における境界外読み取りに関する脆弱性	CWE-125 CWE-125	CVE-2020-1823	2025-01-14 18:48	2024-12-28	Show	GitHub Exploit DB Packet Storm

2048	7.2	重要 Network	Huawei	Mate 30 ファームウェア	Huawei の Mate 30 ファームウェアにおける境界外読み取りに関する脆弱性	CWE-125 CWE-125 CWE-787	CVE-2020-9211	2025-01-14 18:48	2020-02-18	Show	GitHub Exploit DB Packet Storm

2049	9.8	緊急 Network		-	CSZ CMS における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2024-25414	2025-01-14 18:48	2024-02-16	Show	GitHub Exploit DB Packet Storm

2050	9.8	緊急 Network	マイクロソフト	Microsoft Update Catalog	Microsoft Update カタログの特権昇格の脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2024-49147	2025-01-14 18:08	2024-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280341	-	datawizard	ftpxq	FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read or write arbitrary files via unknown vectors. NOTE: the provenance of this information is unknown…	NVD-CWE-Other	CVE-2006-5569	2008-09-6 06:12	2006-10-28	Show	GitHub Exploit DB Packet Storm

280342	-	snitz_communications	snitz_forums_2000	SQL injection vulnerability in pop_mail.asp in Snitz Forums 2000 3.4.06 allows remote attackers to execute arbitrary SQL commands via the RC parameter. NOTE: the provenance of this information is un…	NVD-CWE-Other	CVE-2006-5603	2008-09-6 06:12	2006-10-31	Show	GitHub Exploit DB Packet Storm

280343	-	fully_modded_phpbb	fully_modded_phpbb	PHP remote file inclusion vulnerability in player/includes/common.php in Teake Nutma Foing, as modified in Fully Modded phpBB (phpbbfm) 2021.4.40, allows remote attackers to execute arbitrary PHP cod…	NVD-CWE-Other	CVE-2006-5610	2008-09-6 06:12	2006-10-31	Show	GitHub Exploit DB Packet Storm

280344	-	ig_shop	ig_shop	Cross-site scripting (XSS) vulnerability in change_pass.php in iG Shop 1.4 allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vulnerability than CVE-2006…	NVD-CWE-Other	CVE-2006-5632	2008-09-6 06:12	2006-11-1	Show	GitHub Exploit DB Packet Storm

280345	-	ubuntu	ubuntu_linux	Ubuntu Linux 6.10 for the PowerPC (PPC) allows local users to cause a denial of service (resource consumption) by using the (1) sys_get_robust_list and (2) sys_set_robust_list functions to create pro…	NVD-CWE-Other	CVE-2006-5648	2008-09-6 06:12	2006-12-14	Show	GitHub Exploit DB Packet Storm

280346	-	ubuntu	ubuntu_linux	Unspecified vulnerability in the "alignment check exception handling" in Ubuntu 5.10, 6.06 LTS, and 6.10 for the PowerPC (PPC) allows local users to cause a denial of service (kernel panic) via unspe…	NVD-CWE-Other	CVE-2006-5649	2008-09-6 06:12	2006-12-14	Show	GitHub Exploit DB Packet Storm

280347	-	alt-n	mdaemon	Multiple unspecified vulnerabilities in MDaemon and WorldClient in Alt-N Technologies MDaemon before 9.50 allow attackers to cause a denial of service (memory consumption) via unspecified vectors res…	NVD-CWE-Other	CVE-2006-5708	2008-09-6 06:12	2006-11-4	Show	GitHub Exploit DB Packet Storm

280348	-	alt-n	mdaemon	This vulnerability is addressed in the following product release: Alt-N Technologies, MDaemon, 9.50	NVD-CWE-Other	CVE-2006-5708	2008-09-6 06:12	2006-11-4	Show	GitHub Exploit DB Packet Storm

280349	-	punbb	punbb	Multiple SQL injection vulnerabilities in PunBB before 1.2.14 allow remote authenticated administrators to execute arbitrary SQL commands via unspecified vectors.	NVD-CWE-Other	CVE-2006-5738	2008-09-6 06:12	2006-11-7	Show	GitHub Exploit DB Packet Storm

280350	-	punbb	punbb	Successful exploitation requires that the attacker is an authenticated Administrator.	NVD-CWE-Other	CVE-2006-5738	2008-09-6 06:12	2006-11-7	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed