Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
581 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso… 		Windows テレフォニー サービスのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2025-21233 2025-01-27 12:17 2025-01-14 Show GitHub Exploit DB Packet Storm
582 5.3 警告
Network 		F5 Networks
Fedora Project		 nginx open source
Fedora
NGINX plus 		F5 Networks の nginx open source 等複数ベンダの製品における NULL ポインタデリファレンスに関する脆弱性 CWE-476
CWE-476
CVE-2024-35200 2025-01-27 12:12 2024-05-29 Show GitHub Exploit DB Packet Storm
583 4.8 警告
Network 		F5 Networks
Fedora Project		 nginx open source
Fedora
NGINX plus 		F5 Networks の nginx open source 等複数ベンダの製品における境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-31079 2025-01-27 12:10 2024-05-29 Show GitHub Exploit DB Packet Storm
584 9.8 緊急
Network 		online job portal project online job portal code-projects の Online Job Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2023-41014 2025-01-27 11:55 2023-08-22 Show GitHub Exploit DB Packet Storm
585 9.6 緊急
Network 		Martin Barker RenderTune Martin Barker の RenderTune におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-25292 2025-01-27 11:55 2024-02-29 Show GitHub Exploit DB Packet Storm
586 7.2 重要
Network 		ZyXEL VMG4005-B50B ファームウェア
emg6726-b10a ファームウェア
vmg4005-b60a ファームウェア
vmg4005-b50a ファームウェア
vmg3927-b50b ファームウェア
VMG4927-B50A ファームウェア 		複数の ZyXEL 製品における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-9200 2025-01-27 11:55 2024-12-3 Show GitHub Exploit DB Packet Storm
587 9.8 緊急
Network 		デル Enterprise Storage Integrator for SAP Landscape Management デルの Enterprise Storage Integrator for SAP Landscape Management における脆弱性 CWE-284
CWE-noinfo
CVE-2023-39244 2025-01-27 11:41 2023-07-26 Show GitHub Exploit DB Packet Storm
588 7.5 重要
Network 		Comarch SA Comarch ERP XL Comarch SA の Comarch ERP XL におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
CWE-798
CVE-2023-4539 2025-01-27 11:41 2023-08-25 Show GitHub Exploit DB Packet Storm
589 9.8 緊急
Network 		utarit SoliPay Mobile App utarit の SoliPay Mobile App における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2023-5155 2025-01-27 11:41 2023-09-25 Show GitHub Exploit DB Packet Storm
590 8.1 重要
Network 		Schneider Electric Modicon M580 BMEP582020 ファームウェア
Modicon M580 BMEP581020 ファームウェア
Modicon M340 BMXP342030 ファームウェア
Modicon M340 BMXP342000 ファームウェア 		複数の Schneider Electric 製品における通信チャネルで送信中のメッセージの整合性への不適切な強制に関する脆弱性 CWE-924
通信チャネルで送信中のメッセージの整合性への不適切な強制 		CVE-2023-6408 2025-01-27 11:41 2023-11-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274441 - novell client Buffer overflow in the Novell Distributed Print Services (NDPS) Print Provider for Windows component (NDPPNT.DLL) in Novell Client 4.91 has unknown impact and remote attack vectors. NVD-CWE-Other
CVE-2006-6443 2011-03-8 11:46 2006-12-11 Show GitHub Exploit DB Packet Storm
274442 - trend_micro officescan
pc_cillin_-_internet_security_2006
serverprotect 		The Trend Micro scan engine before 8.320 for Windows and before 8.150 on HP-UX and AIX, as used in Trend Micro PC Cillin - Internet Security 2006, Office Scan 7.3, and Server Protect 5.58, allows rem… NVD-CWE-Other
CVE-2006-6458 2011-03-8 11:46 2006-12-12 Show GitHub Exploit DB Packet Storm
274443 - wikyblog wikyblog Multiple cross-site scripting (XSS) vulnerabilities in WBmap.php in WikyBlog 1.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) key, (2) d, (3) l, or (4) v pa… NVD-CWE-Other
CVE-2006-6466 2011-03-8 11:46 2006-12-12 Show GitHub Exploit DB Packet Storm
274444 - clam_anti-virus clamav Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a diff… NVD-CWE-Other
CVE-2006-6481 2011-03-8 11:46 2006-12-12 Show GitHub Exploit DB Packet Storm
274445 - sisco ax-s4_iccp
ax-s4_mms
iccp_toolkit
iso_stack
mms-ease 		The SISCO OSI stack, as used in SISCO MMS-EASE, ICCP Toolkit for MMS-EASE, AX-S4 MMS and AX-S4 ICCP, and possibly other control system applications, allows remote attackers to cause a denial of servi… NVD-CWE-Other
CVE-2006-6489 2011-03-8 11:46 2007-01-18 Show GitHub Exploit DB Packet Storm
274446 - openldap openldap Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c in OpenLDAP 2.4.3 and earlier, when OpenLDAP is compiled with the --enable-kbind (Kerberos KBIND) option, allows remote att… NVD-CWE-Other
CVE-2006-6493 2011-03-8 11:46 2006-12-13 Show GitHub Exploit DB Packet Storm
274447 - openldap openldap Successful exploitation requires that OpenLDAP allows the use of the LDAPv2 protocol, and is compiled with the --enable-kbind (Kerberos KBIND) option which has been disabled by default since version … NVD-CWE-Other
CVE-2006-6493 2011-03-8 11:46 2006-12-13 Show GitHub Exploit DB Packet Storm
274448 - mozilla firefox The "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends the URL of the feed when requesting favicon.ico icons, which results in a privacy leak that might allow feed viewing services to… NVD-CWE-Other
CVE-2006-6506 2011-03-8 11:46 2006-12-20 Show GitHub Exploit DB Packet Storm
274449 - mozilla firefox Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass Cross-Site Scripting (XSS) protection via vectors related to a Function.prototype regression error. NVD-CWE-Other
CVE-2006-6507 2011-03-8 11:46 2006-12-20 Show GitHub Exploit DB Packet Storm
274450 - gizzar gizzar PHP remote file inclusion vulnerability in guest.php in Gizzar 03162002 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter. NOTE: the provenance of… NVD-CWE-Other
CVE-2006-6527 2011-03-8 11:46 2006-12-14 Show GitHub Exploit DB Packet Storm