Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 8, 2025, 12:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190031 4.3 警告 jex-treme - JEx-Treme Einfacher Passworschutz の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2013 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190032 5.8 警告 mimarsinan - MimarSinan CompreXX におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2012 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190033 6.8 警告 Mambo Foundation
Joomla!		 - Mambo および Joomla! 用の Takhopper コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2005 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190034 7.5 危険 inoutmailinglistmanager - InoutMailingListManager における SQL インジェクションの脆弱性 - CVE-2007-2004 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190035 6.8 警告 inoutmailinglistmanager - InoutMailingListManager における任意の PHP コードを実行される脆弱性 - CVE-2007-2003 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190036 6.8 警告 inoutmailinglistmanager - InoutMailingListManager における任意の PHP コードを実行される脆弱性 - CVE-2007-2002 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190037 7.5 危険 nazarkin.name - Weatimages の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1999 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190038 7.5 危険 hiox india - HGB における任意の PHP コードを挿入される脆弱性 - CVE-2007-1998 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190039 7.5 危険 mamboxchange - Mambo 用の com_zoom モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1992 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
190040 7.5 危険 lite-cms - lite-cms の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1984 2012-09-25 16:47 2007-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 8, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270991 - - - Directory traversal vulnerability in Dzip before 2.9 allows remote attackers to create arbitrary files via a filename containing a .. (dot dot) in a .dz archive. NVD-CWE-Other
CVE-2005-1874 2011-03-8 11:23 2005-06-9 Show GitHub Exploit DB Packet Storm
270992 - sun java_system_web_server Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and earlier allows attackers to read files. NVD-CWE-Other
CVE-2005-1889 2011-03-8 11:23 2005-06-7 Show GitHub Exploit DB Packet Storm
270993 - flatnuke flatnuke FlatNuke 2.5.3 allows remote attackers to obtain sensitive information via invalid parameters to certain scripts, which leaks the web document root in an error message. NVD-CWE-Other
CVE-2005-1893 2011-03-8 11:23 2005-06-9 Show GitHub Exploit DB Packet Storm
270994 - flatnuke flatnuke Cross-site scripting (XSS) vulnerability in FlatNuke 2.5.3 allows remote attackers to inject arbitrary web script or HTML via the border or back parameters to (1) help.php or (2) footer.php. NVD-CWE-Other
CVE-2005-1895 2011-03-8 11:23 2005-06-9 Show GitHub Exploit DB Packet Storm
270995 - flatnuke flatnuke Directory traversal vulnerability in thumb.php in FlatNuke 2.5.3 allows remote attackers to read arbitrary images or obtain the installation path via the image parameter. NVD-CWE-Other
CVE-2005-1896 2011-03-8 11:23 2005-06-9 Show GitHub Exploit DB Packet Storm
270996 - log4sh log4sh The log4sh_readProperties function in log4sh 1.2.5 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable log4sh.$$ filenames. NVD-CWE-Other
CVE-2005-1915 2011-03-8 11:23 2005-09-3 Show GitHub Exploit DB Packet Storm
270997 - trend_micro serverprotect Directory traversal vulnerability in the Crystal Report component (rptserver.asp) in Trend Micro ServerProtect Management Console 5.58, as used in Control Manager 2.5 and 3.0 and Damage Cleanup Serve… NVD-CWE-Other
CVE-2005-1930 2011-03-8 11:23 2005-12-15 Show GitHub Exploit DB Packet Storm
270998 - 3com 3c15100d Directory traversal vulnerability in the web server for 3Com Network Supervisor 5.0.2 allows remote attackers to read arbitrary files via ".." sequences in the URL to TCP port 21700. NVD-CWE-Other
CVE-2005-2020 2011-03-8 11:23 2005-09-8 Show GitHub Exploit DB Packet Storm
270999 - sun iplanet_messaging_server
one_messaging_server 		Unknown vulnerability in Webmail in iPlanet Messaging Server 5.2 Patch 1 and Sun ONE Messaging Server 6.2 allows remote attackers to execute arbitrary Javascript, possibly due to a cross-site scripti… NVD-CWE-noinfo
CWE-79
Cross-site Scripting 		CVE-2005-2022 2011-03-8 11:23 2005-06-17 Show GitHub Exploit DB Packet Storm
271000 - - - Multiple SQL injection vulnerabilities in Fortibus CMS 4.0.0 allow remote attackers to execute arbitrary SQL commands via (1) the username or password to logon.asp, (2) WeeklyNotesDisplay.asp, or (3)… NVD-CWE-Other
CVE-2005-2037 2011-03-8 11:23 2005-06-21 Show GitHub Exploit DB Packet Storm