Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
187101	7.1	危険	アドビシステムズ	-	Adobe ColdFusion におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-5674	2012-11-21 15:37	2012-11-19	Show	GitHub Exploit DB Packet Storm

187102	3.5	注意	Firebird Project	-	Firebird の TraceManager におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-5529	2012-11-21 15:36	2012-07-5	Show	GitHub Exploit DB Packet Storm

187103	4.3	警告	Google	-	Google Web Toolkit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4563	2012-11-21 15:32	2012-11-20	Show	GitHub Exploit DB Packet Storm

187104	6.4	警告	UNINETT	-	radsecproxy におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4566	2012-11-21 15:28	2012-11-20	Show	GitHub Exploit DB Packet Storm

187105	6.4	警告	UNINETT	-	radsecproxy におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4523	2012-11-21 15:18	2012-11-20	Show	GitHub Exploit DB Packet Storm

187106	5.8	警告	Belkin International	-	複数の Belkin Wireless Router 製品におけるネットワークにアクセスされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-4366	2012-11-21 14:17	2012-11-20	Show	GitHub Exploit DB Packet Storm

187107	4.3	警告	Andreas Gohr Fedora Project	-	Fedora で使用される DokuWiki における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-3354	2012-11-21 14:14	2012-11-20	Show	GitHub Exploit DB Packet Storm

187108	6.4	警告	Icecast	-	icecast における制御文字を挿入される脆弱性	CWE-noinfo 情報不足	CVE-2011-4612	2012-11-21 14:05	2012-06-11	Show	GitHub Exploit DB Packet Storm

187109	5.8	警告	BIGACE	-	BIGACE におけるセッション固定の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5173	2012-11-21 14:01	2012-11-21	Show	GitHub Exploit DB Packet Storm

187110	4.3	警告	Havalite	-	Havalite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5919	2012-11-20 18:17	2012-11-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275751	-	mono	mono	The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as dem…	CWE-79 Cross-site Scripting	CVE-2010-1459	2010-09-9 14:41	2010-05-28	Show	GitHub Exploit DB Packet Storm

275752	-	otrs	otrs	Multiple SQL injection vulnerabilities in Kernel/System/Ticket.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.1.x before 2.1.9, 2.2.x before 2.2.9, 2.3.x before 2.3.5, and 2.4.x before 2.4.7 …	CWE-89 SQL Injection	CVE-2010-0438	2010-09-9 14:39	2010-02-10	Show	GitHub Exploit DB Packet Storm

275753	-	php	php	The safe_mode implementation in PHP before 5.2.13 does not properly handle directory pathnames that lack a trailing / (slash) character, which allows context-dependent attackers to bypass intended ac…	CWE-20 Improper Input Validation	CVE-2010-1129	2010-08-31 14:42	2010-03-27	Show	GitHub Exploit DB Packet Storm

275754	-	viewvc	viewvc	lib/viewvc.py in ViewVC 1.0.5 uses the content-type parameter in the HTTP request for the Content-Type header in the HTTP response, which allows remote attackers to cause content to be misinterpreted…	NVD-CWE-noinfo	CVE-2008-4325	2010-08-30 13:00	2008-10-1	Show	GitHub Exploit DB Packet Storm

275755	-	blackboard	blackboard_learning_and_community_post_systems	Multiple cross-site scripting (XSS) vulnerabilities in messaging/course/composeMessage.jsp in BlackBoard Learning System 6.3.1.593 and earlier in BlackBoard Academic Suite allow remote attackers to i…	CWE-79 Cross-site Scripting	CVE-2007-5227	2010-08-30 13:00	2007-10-6	Show	GitHub Exploit DB Packet Storm

275756	-	uninet	statsplus	Cross-site scripting (XSS) vulnerability in stat.pl in StatsPlus 1.25 allows remote attackers to inject arbitrary web script or HTML via (1) HTTP_USER_AGENT or (2) HTTP_REFERER, which is written to s…	CWE-79 Cross-site Scripting	CVE-2002-2330	2010-08-30 13:00	2002-12-31	Show	GitHub Exploit DB Packet Storm

275757	-	novell	iprint	Buffer overflow in the ActiveX control in Novell iPrint Client 4.38 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors, as dem…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-3176	2010-08-25 14:36	2009-09-12	Show	GitHub Exploit DB Packet Storm

275758	-	avahi	avahi-daemon	The originates_from_local_legacy_unicast_socket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast …	CWE-399 Resource Management Errors	CVE-2009-0758	2010-08-12 23:13	2009-03-4	Show	GitHub Exploit DB Packet Storm

275759	-	squid-cache	squid	The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.STABLE24 and 2.7 before 2.7.STABLE8, and htcp.cc in 3.0 before 3.0.STABLE24, allows remote attackers to cause a denial of service (…	NVD-CWE-Other	CVE-2010-0639	2010-08-2 13:00	2010-02-16	Show	GitHub Exploit DB Packet Storm

275760	-	squid-cache	squid	Per: http://cwe.mitre.org/data/definitions/476.html 'NULL Pointer Dereference'	NVD-CWE-Other	CVE-2010-0639	2010-08-2 13:00	2010-02-16	Show	GitHub Exploit DB Packet Storm