Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188361 7.5 危険 hazelpress - HazelPress の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2135 2012-09-25 17:38 2010-06-2 Show GitHub Exploit DB Packet Storm
188362 7.5 危険 http-solution - Project Man の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2134 2012-09-25 17:38 2010-06-2 Show GitHub Exploit DB Packet Storm
188363 7.5 危険 my little homepage - my little forum の contact.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2133 2012-09-25 17:38 2010-06-2 Show GitHub Exploit DB Packet Storm
188364 7.5 危険 Mario Matzulla - TYPO3 用の Calendar Base エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2131 2012-09-25 17:38 2010-06-2 Show GitHub Exploit DB Packet Storm
188365 6.8 警告 Jextensions - Joomla! 用の com_jeajaxeventcalendar コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2129 2012-09-25 17:38 2010-06-1 Show GitHub Exploit DB Packet Storm
188366 7.5 危険 Jextensions - Joomla! 用の com_jequoteform コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2128 2012-09-25 17:38 2010-06-1 Show GitHub Exploit DB Packet Storm
188367 7.5 危険 jv2design - JV2 Folder Gallery の gallery.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2127 2012-09-25 17:38 2010-06-1 Show GitHub Exploit DB Packet Storm
188368 6.8 警告 joelrowley - Joomla! 用の simpledownload コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2122 2012-09-25 17:38 2010-06-1 Show GitHub Exploit DB Packet Storm
188369 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2119 2012-09-25 17:38 2010-06-1 Show GitHub Exploit DB Packet Storm
188370 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6 および 8 におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2118 2012-09-25 17:38 2010-06-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269751 - - - Multiple directory traversal vulnerabilities in AZ Bulletin board (AZbb) before 1.0.08 allow (1) remote authenticated users with administrative privileges to delete arbitrary files via a .. (dot dot)… NVD-CWE-Other
CVE-2005-1201 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
269752 - knusperleicht shoutbox_script Shoutbox SCRIPT 3.0.2 and earlier allows remote attackers to obtain sensitive information via a direct request to db/settings.dat, which displays usernames and password hashes. NVD-CWE-Other
CVE-2005-1220 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
269753 - netref netref cat_for_gen.php in Annuaire Netref 4.2 allows remote attackers to execute arbitrary PHP code by setting the ad_direct parameter to reference cat_for_gen.php, then including the code in the m_for_raci… NVD-CWE-Other
CVE-2005-1222 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
269754 - ocean12_technologies calendar_manager_pro Multiple SQL injection vulnerabilities in Ocean12 Calendar manager 1.01 allow remote attackers to execute arbitrary SQL commands via the Admin_id field. NVD-CWE-Other
CVE-2005-1223 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
269755 - coppermine coppermine_photo_gallery SQL injection vulnerability in Coppermine Photo Gallery 1.3.2 allows remote attackers to execute arbitrary SQL commands via the favs parameter to (1) init.inc.php or (2) zipdownload.php. NVD-CWE-Other
CVE-2005-1225 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
269756 - coppermine coppermine_photo_gallery Coppermine Photo Gallery 1.3.2 stores passwords in plaintext, which allows remote attackers to obtain sensitive information. NVD-CWE-Other
CVE-2005-1226 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
269757 - phprojekt phprojekt Cross-site scripting (XSS) vulnerability in PHProjekt 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatroom text submission form. NVD-CWE-Other
CVE-2005-1227 2017-07-11 10:32 2005-04-20 Show GitHub Exploit DB Packet Storm
269758 - gnu cpio Directory traversal vulnerability in cpio 2.6 and earlier allows remote attackers to write to arbitrary directories via a .. (dot dot) in a cpio file. NVD-CWE-Other
CVE-2005-1229 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
269759 - php_labs profile Cross-site scripting (XSS) vulnerability in index.php in PHP Labs proFile allows remote attackers to inject arbitrary web script or HTML via the (1) dir or (2) file parameters. NVD-CWE-Other
CVE-2005-1233 2017-07-11 10:32 2005-04-20 Show GitHub Exploit DB Packet Storm
269760 - ibm iseries_as_400 By design, the built-in FTP server for iSeries AS/400 systems does not support a restricted document root, which allows attackers to read or write arbitrary files, including sensitive QSYS databases,… NVD-CWE-Other
CVE-2005-1238 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm