Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
187911	9.3	危険	Speed Dreams Bernhard Wymann	-	TORCS および Speed Dreams におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-1189	2012-10-11 14:34	2012-02-17	Show	GitHub Exploit DB Packet Storm

187912	5	警告	Inpsyde	-	WordPress 用 BackWPup プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-5208	2012-10-11 14:06	2012-10-8	Show	GitHub Exploit DB Packet Storm

187913	7.5	危険	Google	-	Google Chrome における脆弱性	CWE-noinfo 情報不足	CVE-2012-5111	2012-10-11 10:33	2012-10-8	Show	GitHub Exploit DB Packet Storm

187914	5	警告	Google	-	Google Chrome のコンポジタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-5110	2012-10-11 10:32	2012-10-8	Show	GitHub Exploit DB Packet Storm

187915	5	警告	Google	-	Google Chrome の International Components for Unicode 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-5109	2012-10-11 10:32	2012-10-8	Show	GitHub Exploit DB Packet Storm

187916	9.3	危険	Google	-	Google Chrome における任意のコードを実行される脆弱性	CWE-362 競合状態	CVE-2012-5108	2012-10-11 10:31	2012-10-8	Show	GitHub Exploit DB Packet Storm

187917	7.5	危険	Google	-	Google Chrome で使用される Skia におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2012-2900	2012-10-11 10:31	2012-10-8	Show	GitHub Exploit DB Packet Storm

187918	6.8	警告	Cerberus, LLC	-	Cerberus FTP Server にクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2999	2012-10-11 10:20	2012-10-5	Show	GitHub Exploit DB Packet Storm

187919	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3643	2012-10-11 10:04	2012-09-13	Show	GitHub Exploit DB Packet Storm

187920	6.8	警告	IBM	-	IBM Lotus Notes Traveler の servlet/traveler におけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-5309	2012-10-10 16:54	2012-10-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275361	-	xerox	workcentre_5632 workcentre_5638 workcentre_5645 workcentre_5655 workcentre_5665 workcentre_5675 workcentre_5687	Multiple unspecified vulnerabilities in the Network Controller and Web Server in Xerox WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, and 5687 allow remote attackers to (1) access mailboxes via unkno…	CWE-200 Information Exposure	CVE-2010-0548	2010-02-5 14:00	2010-02-5	Show	GitHub Exploit DB Packet Storm

275362	-	ircd-hybrid ircd-ratbox oftc	ircd-hybrid ircd-ratbox oftc-hybrid	Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allo…	CWE-189 Numeric Errors	CVE-2009-4016	2010-02-5 14:00	2010-02-5	Show	GitHub Exploit DB Packet Storm

275363	-	comtrend	ct-507it_adsl_router	Cross-site scripting (XSS) vulnerability in scvrtsrv.cmd in Comtrend CT-507IT ADSL Router allows remote attackers to inject arbitrary web script or HTML via the srvName parameter.	CWE-79 Cross-site Scripting	CVE-2010-0470	2010-02-3 14:00	2010-02-3	Show	GitHub Exploit DB Packet Storm

275364	-	viewvc	viewvc	query.py in the query interface in ViewVC before 1.1.3 does not reject configurations that specify an unsupported authorizer for a root, which might allow remote attackers to bypass intended access r…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-0005	2010-02-2 14:00	2010-01-30	Show	GitHub Exploit DB Packet Storm

275365	-	zeus	zeus_web_server	Cross-site scripting (XSS) vulnerability in Zeus Web Server before 4.3r5, when SSL is enabled for the admin server, allows remote attackers to inject arbitrary web script or HTML via unspecified vect…	CWE-79 Cross-site Scripting	CVE-2010-0363	2010-02-2 14:00	2010-01-21	Show	GitHub Exploit DB Packet Storm

275366	-	zabbix	zabbix	SQL injection vulnerability in the get_history_lastid function in the nodewatcher component in Zabbix Server before 1.6.8 allows remote attackers to execute arbitrary SQL commands via a crafted reque…	CWE-89 SQL Injection	CVE-2009-4499	2010-02-2 14:00	2010-01-1	Show	GitHub Exploit DB Packet Storm

275367	-	mozilla	seamonkey thunderbird	Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APP_TYPE_MAIL or APP_TYPE_EDITOR, which makes it easier for remote a…	CWE-200 Information Exposure	CVE-2009-4629	2010-02-2 14:00	2010-01-30	Show	GitHub Exploit DB Packet Storm

275368	-	cisco	unified_meetingplace	Multiple unspecified vulnerabilities in the web server in Cisco Unified MeetingPlace 7 before 7.0(2.3) hotfix 5F, 6 before 6.0.639.3, and possibly 5 allow remote attackers to create (1) user or (2) a…	NVD-CWE-noinfo	CVE-2010-0140	2010-01-31 14:00	2010-01-29	Show	GitHub Exploit DB Packet Storm

275369	-	cisco	unified_meetingplace	Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml Affected Products Vulnerable Products Cisco Unified MeetingPlace versions 5, 6, and 7 are each affec…	NVD-CWE-noinfo	CVE-2010-0140	2010-01-31 14:00	2010-01-29	Show	GitHub Exploit DB Packet Storm

275370	-	cisco	unified_meetingplace	MeetingTime in Cisco Unified MeetingPlace 6 before MR5, and possibly 5, allows remote authenticated users to gain privileges via a modified authentication sequence, aka Bug ID CSCsv66530.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-0142	2010-01-31 14:00	2010-01-29	Show	GitHub Exploit DB Packet Storm