Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189571 5 警告 pecio-cms - Pecio CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1519 2012-09-25 17:27 2009-05-4 Show GitHub Exploit DB Packet Storm
189572 7.5 危険 IceWarp, Inc. - IceWarp の Merak Mail Server におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1516 2012-09-25 17:27 2009-05-4 Show GitHub Exploit DB Packet Storm
189573 6.8 警告 Konstanty Bialkowski - libmodplug の src/load_pat.cpp の PATinst 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1513 2012-09-25 17:27 2009-05-4 Show GitHub Exploit DB Packet Storm
189574 6.5 警告 keir davis - X-Forum における Config.php に任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-1512 2012-09-25 17:27 2009-05-1 Show GitHub Exploit DB Packet Storm
189575 7.8 危険 マイクロソフト - Microsoft Windows XP SP3 の GDI+ におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1511 2012-09-25 17:27 2009-05-1 Show GitHub Exploit DB Packet Storm
189576 7.5 危険 koschtit - KoschtIT Image Gallery におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1510 2012-09-25 17:27 2009-05-1 Show GitHub Exploit DB Packet Storm
189577 7.5 危険 myiosoft - MyioSoft AjaxPortal の ajaxp_backend.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1509 2012-09-25 17:27 2009-05-1 Show GitHub Exploit DB Packet Storm
189578 7.5 危険 keir davis - X-Forum の xforum_validateUser 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1508 2012-09-25 17:27 2009-05-1 Show GitHub Exploit DB Packet Storm
189579 6.8 警告 Intelliants - eLitius の classes/Xp.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1506 2012-09-25 17:27 2009-05-1 Show GitHub Exploit DB Packet Storm
189580 7.5 危険 matteoiammarrone - S-Cms の plugin.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1502 2012-09-25 17:27 2009-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266611 - cisco unified_callmanager
unified_communications_manager 		Buffer overflow in the Centralized TFTP File Locator Service in Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(3), and Unified CallManager 5.0, allows remote attacke… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-5538 2017-07-29 10:33 2007-10-18 Show GitHub Exploit DB Packet Storm
266612 - cisco unified_contact_center_enterprise
unified_contact_center_hosted
unified_icm_hosted
unified_intelligent_contact_management_enterprise 		Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise (ICME), Unified ICM Hosted (ICMH), Unified Contact Center Enterprise (UCCE), Unified Contact Center Hosted (UCCH),… NVD-CWE-noinfo
CVE-2007-5539 2017-07-29 10:33 2007-10-18 Show GitHub Exploit DB Packet Storm
266613 - opera opera_browser Unspecified vulnerability in Opera before 9.24, when using an "external" newsgroup or e-mail client, allows remote attackers to execute arbitrary commands via unknown vectors. CWE-20
 Improper Input Validation  		CVE-2007-5541 2017-07-29 10:33 2007-10-18 Show GitHub Exploit DB Packet Storm
266614 - netgear ssl312 Cross-site scripting (XSS) vulnerability in cgi-bin/welcome (aka the login page) in Netgear SSL312 PROSAFE SSL VPN-Concentrator 25 allows remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting 		CVE-2007-5562 2017-07-29 10:33 2007-10-19 Show GitHub Exploit DB Packet Storm
266615 - galmeta galmeta_post PHP remote file inclusion vulnerability in _lib/fckeditor/upload_config.php in Galmeta Post 0.11 allows remote attackers to execute arbitrary PHP code via a URL in the DDS parameter. CWE-94
Code Injection 		CVE-2007-5567 2017-07-29 10:33 2007-10-19 Show GitHub Exploit DB Packet Storm
266616 - treble_designs 1024_cms Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 allows remote attackers to perform some actions as administrators, as demonstrated by (1) an unspecified action that creates a file c… CWE-352
 Origin Validation Error 		CVE-2007-5575 2017-07-29 10:33 2007-10-19 Show GitHub Exploit DB Packet Storm
266617 - secureideas basic_analysis_and_security_engine Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qr… CWE-287
Improper Authentication 		CVE-2007-5578 2017-07-29 10:33 2007-10-19 Show GitHub Exploit DB Packet Storm
266618 - pligg pligg_cms login.php in Pligg CMS 9.5 uses a guessable confirmation code when resetting a forgotten password, which allows remote attackers with knowledge of a username to reset that user's password by calculat… CWE-255
Credentials Management 		CVE-2007-5579 2017-07-29 10:33 2007-10-19 Show GitHub Exploit DB Packet Storm
266619 - cisco unified_meetingplace Multiple cross-site scripting (XSS) vulnerabilities in mpweb/scripts/mpx.dll in Cisco Unified MeetingPlace 5.4 and earlier and 6.0 allow remote attackers to inject arbitrary web script or HTML via th… CWE-79
Cross-site Scripting 		CVE-2007-5581 2017-07-29 10:33 2007-11-8 Show GitHub Exploit DB Packet Storm
266620 - cisco firewall_services_module Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.2(3) allows remote attackers to cause a denial of service (device reload) via crafted "data in the control-plane path with Layer 7… NVD-CWE-Other
CVE-2007-5584 2017-07-29 10:33 2007-12-20 Show GitHub Exploit DB Packet Storm