Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 13, 2025, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189951 7.5 危険 index script - IndexScript における SQL インジェクションの脆弱性 - CVE-2007-4163 2012-09-25 16:59 2007-07-26 Show GitHub Exploit DB Packet Storm
189952 5 警告 mldonkey - MLDonkey における IP ブロックリストを回避される脆弱性 - CVE-2007-4100 2012-09-25 16:59 2007-07-31 Show GitHub Exploit DB Packet Storm
189953 7.5 危険 idevSpot - IDevSpot PhpHostBot における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-4094 2012-09-25 16:59 2007-07-30 Show GitHub Exploit DB Packet Storm
189954 7.8 危険 minb - minb におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 - CVE-2007-4093 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
189955 5 警告 ifoto - iFoto の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4092 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
189956 7.5 危険 index script - IndexScript の show_cat.php における SQL インジェクションの脆弱性 - CVE-2007-4069 2012-09-25 16:47 2007-07-26 Show GitHub Exploit DB Packet Storm
189957 7.8 危険 Tenable, Inc. - Nessus Vulnerability Scanner の SCANCTRL.ScanCtrlCtrl.1 ActiveX コントロールにおける任意のファイルを削除される脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4062 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
189958 9.3 危険 Tenable, Inc. - Nessus Vulnerability Scanner の特定の ActiveX コントロールにおけるディレクトリトラバーサルの脆弱性 - CVE-2007-4061 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
189959 6.5 警告 Neocrome - Neocrome Seditio の pfs.php における任意の PHP コードをアップロードされる脆弱性 - CVE-2007-4057 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
189960 7.5 危険 php123 - PHP123 Top Sites の category.php における SQL インジェクションの脆弱性 - CVE-2007-4054 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270291 - linux linux_kernel Unspecified vulnerability in the EXT4_IOC_MOVE_EXT (aka move extents) ioctl implementation in the ext4 filesystem in the Linux kernel 2.6.32-git6 and earlier allows local users to cause a denial of s… NVD-CWE-noinfo
CVE-2009-4306 2012-03-19 13:00 2009-12-13 Show GitHub Exploit DB Packet Storm
270292 - linux linux_kernel The fuse_ioctl_copy_user function in the ioctl handler in fs/fuse/file.c in the Linux kernel 2.6.29-rc1 through 2.6.30.y uses the wrong variable in an argument to the kunmap function, which allows lo… NVD-CWE-Other
CVE-2009-4410 2012-03-19 13:00 2009-12-25 Show GitHub Exploit DB Packet Storm
270293 - linux linux_kernel The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a de… CWE-399
 Resource Management Errors 		CVE-2007-6733 2012-03-19 13:00 2010-03-17 Show GitHub Exploit DB Packet Storm
270294 - cacti cacti SQL injection vulnerability in graph.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via a crafted rra_id parameter in a GET request in conjunction with a va… CWE-89
SQL Injection 		CVE-2010-2092 2012-02-16 13:04 2010-05-28 Show GitHub Exploit DB Packet Storm
270295 - cacti cacti SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter. CWE-89
SQL Injection 		CVE-2010-1431 2012-02-16 13:02 2010-05-5 Show GitHub Exploit DB Packet Storm
270296 - hp power_manager Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-3999 2012-02-14 12:49 2010-01-21 Show GitHub Exploit DB Packet Storm
270297 - cafuego simple_document_management_system Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and earlier allow remote attackers to execute arbitrary SQL commands via the (1) folder_id parameter in list… CWE-89
SQL Injection 		CVE-2005-3877 2012-02-7 14:00 2005-11-29 Show GitHub Exploit DB Packet Storm
270298 - sitracker support_incident_tracker Multiple unspecified vulnerabilities in Salford Software Support Incident Tracker (SiT!) before 3.30 have unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2007-5635 2012-02-2 14:00 2007-10-24 Show GitHub Exploit DB Packet Storm
270299 - kde kdelibs KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle atta… CWE-310
Cryptographic Issues 		CVE-2009-2702 2012-01-19 12:40 2009-09-9 Show GitHub Exploit DB Packet Storm
270300 - semanticscuttle semanticscuttle Multiple cross-site request forgery (CSRF) vulnerabilities in SemanticScuttle before 0.91 allow remote attackers to (1) hijack the authentication of administrators via unknown vectors or (2) hijack t… CWE-352
 Origin Validation Error 		CVE-2009-0708 2012-01-5 14:00 2009-02-24 Show GitHub Exploit DB Packet Storm