Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205261 7.5 危険 Joomla!
Jextensions		 - Joomla! 用 JExtensions JE Director コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4862 2012-02-9 11:07 2011-10-5 Show GitHub Exploit DB Packet Storm
205262 7.5 危険 webSPELL - webSPELL の asearch.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4861 2012-02-9 11:06 2011-10-5 Show GitHub Exploit DB Packet Storm
205263 7.5 危険 Galaxyscriptz - MyPhpAuction の product_desc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4860 2012-02-9 11:05 2011-10-5 Show GitHub Exploit DB Packet Storm
205264 7.5 危険 WebAsyst - WebAsyst Shop-Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4859 2012-02-9 11:05 2011-10-5 Show GitHub Exploit DB Packet Storm
205265 5 警告 Joerg Risse - DNET Live-Stats の team.rc5-72.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4858 2012-02-9 11:04 2011-10-5 Show GitHub Exploit DB Packet Storm
205266 7.5 危険 Curtiss Grymala - CAG CMS の click.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4857 2012-02-9 11:03 2011-10-5 Show GitHub Exploit DB Packet Storm
205267 7.5 危険 ASP indir - xWeblog の arsiv.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4856 2012-02-9 11:03 2011-10-5 Show GitHub Exploit DB Packet Storm
205268 7.5 危険 ASP indir - xWeblog の oku.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4855 2012-02-9 11:02 2011-10-5 Show GitHub Exploit DB Packet Storm
205269 6.8 警告 Zuitu - Zuitu の ajax/coupon.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4854 2012-02-9 11:02 2011-10-5 Show GitHub Exploit DB Packet Storm
205270 7.5 危険 Chill Creations - Joomla! 用 ccInvoices コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4853 2012-02-9 11:01 2011-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1621 5.9 MEDIUM
Network 		- - A vulnerability has been identified in APOGEE PXC Series (BACnet) (All versions), APOGEE PXC Series (P2 Ethernet) (All versions), TALON TC Series (BACnet) (All versions). Affected devices contain an … CWE-125
Out-of-bounds Read 		CVE-2024-54090 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1622 7.5 HIGH
Network 		- - A vulnerability has been identified in APOGEE PXC Series (BACnet) (All versions), APOGEE PXC Series (P2 Ethernet) (All versions), TALON TC Series (BACnet) (All versions). Affected devices contain a w… CWE-326
Inadequate Encryption Strength 		CVE-2024-54089 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1623 7.5 HIGH
Network 		- - A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.90), SIPROTEC 5 6MD85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 6MD86 (CP300) (All versions >= V8.80 < V9.… CWE-1392
 Use of Default Credentials 		CVE-2024-54015 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1624 6.7 MEDIUM
Local 		- - A vulnerability has been identified in ModelSim (All versions < V2025.1), Questa (All versions < V2025.1). An example setup script contained in affected applications allows a specific executable file… CWE-427
 Uncontrolled Search Path Element 		CVE-2024-53977 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1625 4.6 MEDIUM
Physics 		- - A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5 6MD85 (CP300) (All versions), SIPROTEC 5 6MD86 (CP200) (All version… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2024-53651 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1626 6.8 MEDIUM
Physics 		- - A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.90), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5 6MD85 (CP300) (All versions < V9.90), SIPROTEC 5 6MD86 (CP2… CWE-489
Exposure of Data Element to Wrong Session  		CVE-2024-53648 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1627 6.4 MEDIUM
Network 		- - The GeoDirectory – WP Business Directory Plugin and Classified Listings Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the display_name profile parameter in all versi… CWE-79
Cross-site Scripting 		CVE-2024-13506 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1628 5.3 MEDIUM
Network 		- - The login functionality of the web server in affected devices does not normalize the response times of login attempts. An unauthenticated remote attacker could exploit this side-channel information t… CWE-203
 Information Exposure Through Discrepancy 		CVE-2023-37482 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1629 8.8 HIGH
Network 		- - A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC PCS neo V4.1 (All versions < V4.1 Update 2), SIMATIC PCS neo V5.0 (All versions < V5.0 Update 1), SIMOCODE ES V19 (… CWE-613
 Insufficient Session Expiration 		CVE-2024-45386 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1630 5.3 MEDIUM
Network 		- - A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-… CWE-400
 Uncontrolled Resource Consumption 		CVE-2024-23814 2025-02-11 20:15 2025-02-11 Show GitHub Exploit DB Packet Storm