Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 29, 2025, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189831 7.5 危険 manzovi - ProQuiz の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6312 2012-09-25 17:27 2009-02-27 Show GitHub Exploit DB Packet Storm
189832 7.5 危険 gwm - Galatolo WebManager における管理者権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-6300 2012-09-25 17:27 2009-02-26 Show GitHub Exploit DB Packet Storm
189833 7.5 危険 maran - Maran PHP Shop の admin.php における管理者アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6296 2012-09-25 17:27 2009-02-26 Show GitHub Exploit DB Packet Storm
189834 6.8 警告 niclor - nicLOR Sito の includefile.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6290 2012-09-25 17:27 2009-02-26 Show GitHub Exploit DB Packet Storm
189835 7.8 危険 interface-medien - Interface Medien ibase の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6288 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
189836 6.5 警告 ortus.nirn - CMS Ortus の engine/users/users_edit_pub.inc における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6282 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
189837 6.8 警告 mjcreation - FamilyProject の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6274 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
189838 6 警告 myktools - MyKtools の configuration_script.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6273 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
189839 7.5 危険 miticdjd - Dragan Mitic Apoll の admin/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6272 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
189840 7.5 危険 miticdjd - Dragan Mitic Apoll の admin/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6270 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268941 - cvsup cvsup Certain third-party packages for CVSup 16.1h, such as SuSE Linux, contain untrusted paths in the ELF RPATH fields of certain executables, which could allow local users to execute arbitrary code by ca… NVD-CWE-Other
CVE-2004-2133 2017-07-11 10:31 2004-01-29 Show GitHub Exploit DB Packet Storm
268942 - microsoft outlook_express Outlook Express 6.0, when sending multipart e-mail messages using the "Break apart messages larger than" setting, leaks the BCC recipients of the message to the addresses listed in the To and CC fiel… NVD-CWE-Other
CVE-2004-2137 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
268943 - jorg_schilling sdd Unknown vulnerability in the remote tape support (remote.c) in the RMT client for Jorg Schilling sdd 1.28 and 1.31 has unknown impact and attack vectors. NVD-CWE-Other
CVE-2004-2142 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
268944 - mambo mambo_portal SQL injection vulnerability in the ReMOSitory Server add-on module to Mambo Portal 4.5.1 (1.09) and earlier allows remote attackers to execute arbitrary SQL commands via the filecatid parameter in th… NVD-CWE-Other
CVE-2004-2143 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
268945 - pd9_software megabbs SQL injection vulnerability in PD9 Software MegaBBS 2 and 2.1 allows remote attackers to execute arbitrary SQL commands via the (1) sortdir or (2) criteria parameter to ladder-log.asp or the (3) memb… NVD-CWE-Other
CVE-2004-2145 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
268946 - pd9_software megabbs CRLF injection vulnerability in PD9 Software MegaBBS 2 and 2.1 allows attackers to conduct HTTP response splitting attacks via the fid parameter in a writenew action to thread-post.asp. NVD-CWE-Other
CVE-2004-2146 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
268947 - slava_astashonok fprobe Unknown local vulnerability in the "change user" feature of Slava Astashonok Fprobe 1.0.5 and earlier has unknown impact and attack vectors. NVD-CWE-Other
CVE-2004-2148 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
268948 - virtual_projects chatman Chatman 1.1.1 RC1 and earlier allows remote attackers to cause a denial of service (memory consumption or application crash) via a very large data size. NVD-CWE-Other
CVE-2004-2151 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
268949 - mediawiki mediawiki Cross-site scripting (XSS) vulnerability in 'raw' page output mode for MediaWiki 1.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML. NVD-CWE-Other
CVE-2004-2152 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
268950 - real_estate_management_software real_estate_management_software Multiple unknown vulnerabilities in Real Estate Management Software 1.0 have unknown impact and attack vectors. NVD-CWE-Other
CVE-2004-2153 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm