Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 10, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189241 7.5 危険 ヒューレット・パッカード - HPVR の特定の ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0213 2012-09-25 16:59 2008-02-5 Show GitHub Exploit DB Packet Storm
189242 7.8 危険 ヒューレット・パッカード - HP OV NNM の ovtopmd におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-0212 2012-09-25 16:59 2008-02-4 Show GitHub Exploit DB Packet Storm
189243 4.3 警告 medialand - RotaBanner Local の account/index.html におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0200 2012-09-25 16:59 2008-01-9 Show GitHub Exploit DB Packet Storm
189244 7.5 危険 netrisk - NetRisk の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0185 2012-09-25 16:59 2008-01-9 Show GitHub Exploit DB Packet Storm
189245 4.3 警告 Liferay - Liferay Portal の Admin ポートレットにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-0182 2012-09-25 16:59 2008-01-10 Show GitHub Exploit DB Packet Storm
189246 4.3 警告 Liferay - Liferay Portal の Admin ポートレットにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0181 2012-09-25 16:59 2008-01-10 Show GitHub Exploit DB Packet Storm
189247 4.3 警告 Liferay - Liferay Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0180 2012-09-25 16:59 2008-01-10 Show GitHub Exploit DB Packet Storm
189248 2.6 注意 Liferay - Liferay Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0179 2012-09-25 16:59 2008-01-10 Show GitHub Exploit DB Packet Storm
189249 4.3 警告 Liferay - Liferay Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0178 2012-09-25 16:59 2008-02-4 Show GitHub Exploit DB Packet Storm
189250 6.8 警告 ikiwiki - ikiwiki の Plugin/passwordauth.pm における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0169 2012-09-25 16:59 2008-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270541 - phpffl phpffl Multiple PHP remote file inclusion vulnerabilities in phpFFL 1.24 allow remote attackers to execute arbitrary PHP code via a URL in the PHPFFL_FILE_ROOT parameter to (1) admin.php, (2) custom_pages.p… CWE-94
Code Injection 		CVE-2007-4935 2011-03-8 11:59 2007-09-19 Show GitHub Exploit DB Packet Storm
270542 - baofeng storm Multiple buffer overflows in a certain ActiveX control in sparser.dll in Baofeng Storm 2.8 and earlier allow remote attackers to execute arbitrary code via malformed input in an unknown set of argume… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-4943 2011-03-8 11:59 2007-09-19 Show GitHub Exploit DB Packet Storm
270543 - redhat certificate_server Certificate Server 7.2 in Red Hat Certificate System (RHCS) does not properly handle new revocations that occur while a Certificate Revocation List (CRL) is being generated, which might prevent certa… CWE-255
Credentials Management 		CVE-2007-4994 2011-03-8 11:59 2007-11-7 Show GitHub Exploit DB Packet Storm
270544 - gnome balsa Stack-based buffer overflow in the ir_fetch_seq function in balsa before 2.3.20 might allow remote IMAP servers to execute arbitrary code via a long response to a FETCH command. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-5007 2011-03-8 11:59 2007-12-13 Show GitHub Exploit DB Packet Storm
270545 - icewarp merak_mail_server Cross-site scripting (XSS) vulnerability in the Webmail interface for IceWarp Merak Mail Server before 9.0.0 allows remote attackers to inject arbitrary JavaScript via a javascript: URI in an attribu… CWE-79
Cross-site Scripting 		CVE-2007-5046 2011-03-8 11:59 2007-09-24 Show GitHub Exploit DB Packet Storm
270546 - ibm aix Buffer overflow in lpd in bos.rte.printers in AIX 5.2 and 5.3 allows local users with printq group privileges to gain root privileges. NVD-CWE-Other
CVE-2007-4236 2011-03-8 11:58 2007-08-9 Show GitHub Exploit DB Packet Storm
270547 - ibm aix Buffer overflow in the atm subset in arp in devices.common.IBM.atm.rte in AIX 5.2 and 5.3 allows local users to gain root privileges. NVD-CWE-Other
CVE-2007-4237 2011-03-8 11:58 2007-08-9 Show GitHub Exploit DB Packet Storm
270548 - ibm aix AIX 5.2 and 5.3 install pioinit with user and group ownership of bin, which allows local users with bin or possibly printq privileges to gain root privileges by modifying pioinit. NVD-CWE-Other
CVE-2007-4238 2011-03-8 11:58 2007-08-9 Show GitHub Exploit DB Packet Storm
270549 - ibm db2_universal_database Directory traversal vulnerability in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary files via a .. (dot dot) in an unspecified environment variable, whi… CWE-22
Path Traversal 		CVE-2007-4271 2011-03-8 11:58 2007-08-19 Show GitHub Exploit DB Packet Storm
270550 - trend_micro pc-cillin_internet_security_2007
scan_engine 		The Trend Micro AntiVirus scan engine before 8.550-1001, as used in Trend Micro PC-Cillin Internet Security 2007, and Tmxpflt.sys 8.320.1004 and 8.500.0.1002, has weak permissions (Everyone:Write) fo… CWE-264
CWE-119
Permissions, Privileges, and Access Controls
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-4277 2011-03-8 11:58 2007-10-31 Show GitHub Exploit DB Packet Storm