Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
471 7 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における有効期限後または解放後のリソースの操作に関する脆弱性 CWE-672
有効期限後または解放後のリソースの操作 		CVE-2021-47069 2025-01-10 16:17 2021-05-22 Show GitHub Exploit DB Packet Storm
472 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-47039 2025-01-10 16:15 2021-04-21 Show GitHub Exploit DB Packet Storm
473 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2021-47035 2025-01-10 16:12 2021-04-7 Show GitHub Exploit DB Packet Storm
474 6.5 警告
Network 		sixlabors imagesharp sixlabors の imagesharp における保存または転送前の重要な情報の削除に関する脆弱性 CWE-212
CWE-226
CVE-2024-32036 2025-01-10 15:57 2024-04-15 Show GitHub Exploit DB Packet Storm
475 7.5 重要
Network 		AlayaCare Procura AlayaCare の Procura における認証に関する脆弱性 CWE-1394
CWE-287
CVE-2023-6451 2025-01-10 15:37 2023-11-30 Show GitHub Exploit DB Packet Storm
476 7 重要
Local 		クアルコム APQ8017 ファームウェア
AR6003 ファームウェア
Snapdragon 630 Mobile ファームウェア
9206 lte modem ファームウェア
Snapdragon 636 Mobile ファームウェア 		複数のクアルコム製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2017-18153 2025-01-10 15:31 2024-11-26 Show GitHub Exploit DB Packet Storm
477 7.6 重要
Network 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 Sales のなりすましの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-49053 2025-01-10 15:20 2024-11-26 Show GitHub Exploit DB Packet Storm
478 4.1 警告
Network 		マイクロソフト Microsoft Dynamics 365 Dynamics 365 Customer Insights のなりすましの脆弱性 CWE-79
CWE-79
CVE-2024-30047 2025-01-10 15:19 2024-05-14 Show GitHub Exploit DB Packet Storm
479 8.8 重要
Network 		Atakan Au 1 click disable all Atakan Au の WordPress 用 1 click disable all におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-21749 2025-01-10 15:18 2024-02-28 Show GitHub Exploit DB Packet Storm
480 5.3 警告
Network 		Themeperch Build & Control Block Patterns - Boost up Gutenberg Editor Themeperch の WordPress 用 Build & Control Block Patterns - Boost up Gutenberg Editor における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-1095 2025-01-10 15:14 2024-03-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275851 - sensesites commonsense_cms SQL injection vulnerability in search.php in SenseSites CommonSense CMS 5.0 allows remote attackers to execute arbitrary SQL commands via the Date parameter. NOTE: the provenance of this information… NVD-CWE-Other
CVE-2006-3576 2008-09-6 06:07 2006-07-13 Show GitHub Exploit DB Packet Storm
275852 - lifetype lifetype SQL injection vulnerability in index.php in LifeType 1.0.5 allows remote attackers to execute arbitrary SQL commands via the Date parameter in a Default op. NVD-CWE-Other
CVE-2006-3577 2008-09-6 06:07 2006-07-13 Show GitHub Exploit DB Packet Storm
275853 - fujitsu serverview Directory traversal vulnerability in Fujitsu ServerView 2.50 up to 3.60L98 and 4.10L11 up to 4.11L81 allows remote attackers to read arbitrary files via unspecified vectors. NVD-CWE-Other
CVE-2006-3578 2008-09-6 06:07 2006-07-13 Show GitHub Exploit DB Packet Storm
275854 - fujitsu serverview Cross-site scripting (XSS) vulnerability in Fujitsu ServerView 2.50 up to 3.60L98 and 4.10L11 up to 4.11L81 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2006-3579 2008-09-6 06:07 2006-07-13 Show GitHub Exploit DB Packet Storm
275855 - fujitsu serverview This vulnerability is addressed in the following product releases: Fujitsu, ServerView, 3.60L99 Fujitsu, ServerView, 4.20L11B CWE-79
Cross-site Scripting 		CVE-2006-3579 2008-09-6 06:07 2006-07-13 Show GitHub Exploit DB Packet Storm
275856 - ubuntu ubuntu_linux passwd before 1:4.0.13 on Ubuntu 6.06 LTS leaves the root password blank instead of locking it when the administrator selects the "Go Back" option after the final "Installation complete" message and … NVD-CWE-Other
CVE-2006-3597 2008-09-6 06:07 2006-07-19 Show GitHub Exploit DB Packet Storm
275857 - cutephp cutenews Cross-site scripting (XSS) vulnerability in Index.PHP in CuteNews 1.4.5 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: the provenance of this information i… NVD-CWE-Other
CVE-2006-3661 2008-09-6 06:07 2006-07-19 Show GitHub Exploit DB Packet Storm
275858 - kde kdebase The KDE PAM configuration shipped with Fedora Core 5 causes KDM passwords to be cached, which allows attackers to login without a password by attempting to log in multiple times. NVD-CWE-Other
CVE-2006-3742 2008-09-6 06:07 2006-09-7 Show GitHub Exploit DB Packet Storm
275859 - lucid_designs lucid_calendar Cross-site scripting (XSS) vulnerability in Cal.PHP3 in Chris Lea Lucid Calendar 0.22 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. NOTE: the provenance … NVD-CWE-Other
CVE-2006-3025 2008-09-6 06:06 2006-06-15 Show GitHub Exploit DB Packet Storm
275860 - lucid_designs lucid_calendar Lucid Designs, Lucid Calendar, 0.22 is unsupported. A new, supported version of this product will be released in the near future. NVD-CWE-Other
CVE-2006-3025 2008-09-6 06:06 2006-06-15 Show GitHub Exploit DB Packet Storm