Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
361 5.5 警告
Local 		Linux
Debian		 Debian GNU/Linux
Linux Kernel 		Linux の Linux Kernel 等複数ベンダの製品における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-26771 2025-01-28 15:33 2024-01-22 Show GitHub Exploit DB Packet Storm
362 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2023-52646 2025-01-28 15:31 2023-02-3 Show GitHub Exploit DB Packet Storm
363 7.8 重要
Local 		PaperCut Software International Pty PaperCut MF
PaperCut NG 		PaperCut Software International Pty の PaperCut MF および PaperCut NG における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
CWE-59
CVE-2024-3037 2025-01-28 15:23 2024-05-14 Show GitHub Exploit DB Packet Storm
364 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd. の w30e ファームウェアにおける OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-3880 2025-01-28 15:23 2024-04-16 Show GitHub Exploit DB Packet Storm
365 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. tx9 pro ファームウェア Shenzhen Tenda Technology Co.,Ltd. の tx9 pro ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4112 2025-01-28 15:23 2024-04-24 Show GitHub Exploit DB Packet Storm
366 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. ax1806 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の ax1806 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4239 2025-01-28 15:23 2024-04-26 Show GitHub Exploit DB Packet Storm
367 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. i21 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の i21 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4251 2025-01-28 15:23 2024-04-27 Show GitHub Exploit DB Packet Storm
368 5.4 警告
Network 		moveaddons move addons for elementor moveaddons の WordPress 用 move addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-34562 2025-01-28 15:23 2024-05-8 Show GitHub Exploit DB Packet Storm
369 6.1 警告
Network 		JetBrains TeamCity JetBrains の TeamCity におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-36372 2025-01-28 15:23 2024-05-29 Show GitHub Exploit DB Packet Storm
370 7.5 重要
Network 		eProsima Fast-DDS eProsima の Fast-DDS における脆弱性 CWE-20
CWE-noinfo
CVE-2024-30258 2025-01-28 15:14 2024-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274361 - pnamazu pnamazu Cross-site scripting (XSS) vulnerability in pnamazu 2006.02.28 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NVD-CWE-Other
CVE-2006-6782 2011-03-8 11:46 2006-12-28 Show GitHub Exploit DB Packet Storm
274362 - ultimate_php_board ultimate_php_board Direct static code injection vulnerability in chat/login.php in Ultimate PHP Board (UPB) 2.0b1 and earlier allows remote attackers to inject arbitrary PHP code via the username parameter, which is in… NVD-CWE-Other
CVE-2006-6790 2011-03-8 11:46 2006-12-28 Show GitHub Exploit DB Packet Storm
274363 - baalasp smart_form_portal Cross-site scripting (XSS) vulnerability in addpost1.asp in BaalAsp forum allows remote attackers to inject arbitrary web script or HTML via the name parameter. NOTE: The provenance of this informat… NVD-CWE-Other
CVE-2006-6075 2011-03-8 11:45 2006-11-25 Show GitHub Exploit DB Packet Storm
274364 - ibm websphere_application_server Multiple unspecified vulnerabilities in IBM WebSphere Application Server 6.1.0 before Fix Pack 3 (6.1.0.3) have unknown impact and attack vectors, related to (1) a "Potential security vulnerability" … NVD-CWE-Other
CVE-2006-6135 2011-03-8 11:45 2006-11-28 Show GitHub Exploit DB Packet Storm
274365 - ibm websphere_application_server IBM WebSphere Application Server 6.1.0 before Fix Pack 3 (6.1.0.3) does not perform EAL4 authentication checks at the proper time during "registering of response operation," which has unknown impact … NVD-CWE-noinfo
CVE-2006-6136 2011-03-8 11:45 2006-11-28 Show GitHub Exploit DB Packet Storm
274366 - sisfo_kampus sisfo_kampus Directory traversal vulnerability in downloadexcel.php in Sisfo Kampus 2006 (Semarang 3) allows remote attackers to read arbitrary files via the fn parameter. NOTE: the provenance of this informatio… NVD-CWE-Other
CVE-2006-6139 2011-03-8 11:45 2006-11-28 Show GitHub Exploit DB Packet Storm
274367 - sisfo_kampus sisfo_kampus PHP remote file inclusion vulnerability in Sisfo Kampus 2006 (Semarang 3) allows remote attackers to execute arbitrary PHP code via a URL in the slnt parameter to (1) index.php and (2) print.php. NO… NVD-CWE-Other
CVE-2006-6140 2011-03-8 11:45 2006-11-28 Show GitHub Exploit DB Packet Storm
274368 - takeshi_kanno haru_free_pdf_library Buffer overflow in the HPDF_Page_Circle function in hpdf_page_operator.c in Takeshi Kanno Haru Free PDF Library (libharu2, aka libharu) 2.0.7 and earlier allows context-dependent attackers to cause a… NVD-CWE-Other
CVE-2006-6146 2011-03-8 11:45 2006-11-29 Show GitHub Exploit DB Packet Storm
274369 - messagerie_locale messagerie_locale PHP remote file inclusion vulnerability in centre.php in Messagerie Locale as of 20061127 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: the provenance … NVD-CWE-Other
CVE-2006-6151 2011-03-8 11:45 2006-11-29 Show GitHub Exploit DB Packet Storm
274370 - mplayer
xine 		mplayer
real_media_input_plugin 		Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-lib, (2) MPlayer 1.0rc1 and earlier, and possibly other… NVD-CWE-Other
CVE-2006-6172 2011-03-8 11:45 2006-12-1 Show GitHub Exploit DB Packet Storm