Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189891 7.8 危険 justin hagstrom - Justin Hagstrom AutoIndex PHP Scrpit の classes/Url.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5984 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
189892 4.3 警告 justin hagstrom - Justin Hagstrom AutoIndex PHP Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5983 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
189893 3.3 注意 Lantronix, Inc. - Lantronix SCS3200 におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2007-5981 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
189894 7.5 危険 jportal - JPortal の mailer.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5974 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
189895 7.5 危険 jportal - JPortal の articles.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5973 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
189896 9 危険 MIT Kerberos - krb5 の lib/kdb/kdb_default.c におけるメモリ二重解放の脆弱性 CWE-119
バッファエラー 		CVE-2007-5972 2012-09-25 16:59 2007-12-5 Show GitHub Exploit DB Packet Storm
189897 5.8 警告 MySQL AB - MySQL における任意のテーブルの権限を取得される脆弱性 CWE-DesignError
CVE-2007-5970 2012-09-25 16:59 2007-12-10 Show GitHub Exploit DB Packet Storm
189898 4.7 警告 KDE project - kdebase におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-5963 2012-09-25 16:59 2007-12-19 Show GitHub Exploit DB Packet Storm
189899 4.9 警告 IBM - Windows 上で稼働する IBM IDS におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-5957 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
189900 7.2 危険 IBM - IBM IDS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5956 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269481 - jimmy the_includer includer.cgi in The Includer allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the URL or (2) the template parameter. NVD-CWE-Other
CVE-2005-0689 2016-10-18 12:13 2005-03-7 Show GitHub Exploit DB Packet Storm
269482 - gene6 g6_ftp_server Gene6 FTP Server does not properly restrict access to the control console, which allows local users to modify the server configuration and gain privileges, as demonstrated by defining a SITE command. NVD-CWE-Other
CVE-2005-0690 2016-10-18 12:13 2005-03-7 Show GitHub Exploit DB Packet Storm
269483 - socialmpn socialmpn PHP remote file inclusion vulnerability in article mode for modules.php in SocialMPN allows remote attackers to execute arbitrary PHP code by modifying the name parameter to reference a URL on a remo… NVD-CWE-Other
CVE-2005-0691 2016-10-18 12:13 2005-03-6 Show GitHub Exploit DB Packet Storm
269484 - php_fusion php_fusion Cross-site scripting (XSS) vulnerability in fusion_core.php for PHP-Fusion 5.x allows remote attackers to inject arbitrary web script or HTML via a message with IMG bbcode containing character-encode… NVD-CWE-Other
CVE-2005-0692 2016-10-18 12:13 2005-03-6 Show GitHub Exploit DB Packet Storm
269485 - hosting_controller hosting_controller Hosting Controller 6.1 Hotfix 1.7 and earlier stores log files under the web root, which allows remote attackers to obtain sensitive information via a direct request to HCDiskQuotaService.csv. NVD-CWE-Other
CVE-2005-0694 2016-10-18 12:13 2005-03-7 Show GitHub Exploit DB Packet Storm
269486 - hosting_controller hosting_controller The password recovery feature (forgotpassword.asp) in Hosting Controller 6.1 Hotfix 1.7 and earlier allows remote attackers to determine the owner's e-mail address by providing a portion of the domai… NVD-CWE-Other
CVE-2005-0695 2016-10-18 12:13 2005-03-7 Show GitHub Exploit DB Packet Storm
269487 - oracle database_server Directory traversal vulnerability in Oracle Database Server 8i and 9i allows remote attackers to read or rename arbitrary files via "\\.\\.." (modified dot dot backslash) sequences to UTL_FILE funct… NVD-CWE-Other
CVE-2005-0701 2016-10-18 12:13 2005-03-7 Show GitHub Exploit DB Packet Storm
269488 - gamearena experience2 PHP remote file inclusion vulnerability in modules.php in eXPerience2 allows remote attackers to execute arbitrary PHP code by modifying the file parameter to reference a URL on a remote web server t… NVD-CWE-Other
CVE-2005-0721 2016-10-18 12:13 2005-05-2 Show GitHub Exploit DB Packet Storm
269489 - seth_m._knorr biz_mail_form CRLF injection vulnerability in bizmail.cgi in Biz Mail Form before 2.2 allows remote attackers to bypass the email check and send spam e-mail via CRLF sequences and forged mail headers in the email … NVD-CWE-Other
CVE-2005-0493 2016-10-18 12:12 2005-05-2 Show GitHub Exploit DB Packet Storm
269490 - seth_m._knorr biz_mail_form Upgrade to newest version. NVD-CWE-Other
CVE-2005-0493 2016-10-18 12:12 2005-05-2 Show GitHub Exploit DB Packet Storm