Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190241	6.8	警告	lovedesigner	-	Lito Lite CMS の cate.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5636	2012-09-25 17:17	2008-12-17	Show	GitHub Exploit DB Packet Storm

190242	6.8	警告	Little CMS	-	CMS little の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5628	2012-09-25 17:17	2008-12-17	Show	GitHub Exploit DB Packet Storm

190243	10	危険	MPlayer project	-	MPlayer の libmpdemux/demux_vqf.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5616	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

190244	7.5	危険	joomitaly	-	Joomla! 用の jmovies コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5607	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

190245	5	警告	natterchat	-	Natterchat におけるデータベースファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5602	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

190246	5	警告	merlix	-	Merlix Teamworx Server におけるデータベースファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5600	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

190247	7.5	危険	merlix	-	Merlix Teamworx Server の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5599	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

190248	5	警告	iwrite	-	Nightfall Personal Diary におけるデータベースファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5592	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

190249	4.3	警告	iwrite	-	Nightfall Personal Diary の login.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5591	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

190250	7.5	危険	kalptaru infotech	-	Kalptaru Infotech Product Sales Framework における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5590	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266671	-	vobcopy	vobcopy	vobcopy 0.5.14 allows local users to append data to an arbitrary file, or create an arbitrary new file, via a symlink attack on the (1) /tmp/vobcopy.bla or (2) /tmp/vobcopy_0.5.14.log temporary file.	CWE-59 Link Following	CVE-2007-5718	2017-07-29 10:33	2007-10-31	Show	GitHub Exploit DB Packet Storm

266672	-	ourgame.com	globallink	Stack-based buffer overflow in a certain ActiveX control in GLChat.ocx 2.5.1.32 in GlobalLink 2.7.0.8, as used in Ourgame GLWorld and possibly other products, allows remote attackers to execute arbit…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5722	2017-07-29 10:33	2007-10-31	Show	GitHub Exploit DB Packet Storm

266673	-	sun	solaris	Unspecified vulnerability in the Stream Control Transmission Protocol (sctp) functionality in Sun Solaris 10, when at least one SCTP socket is in the LISTEN state, allows remote attackers to cause a …	NVD-CWE-noinfo	CVE-2007-5726	2017-07-29 10:33	2007-10-31	Show	GitHub Exploit DB Packet Storm

266674	-	phppgadmin	phppgadmin	Cross-site scripting (XSS) vulnerability in phpPgAdmin 3.5 to 4.1.1, and possibly 4.1.2, allows remote attackers to inject arbitrary web script or HTML via certain input available in PHP_SELF in (1) …	CWE-79 Cross-site Scripting	CVE-2007-5728	2017-07-29 10:33	2007-10-31	Show	GitHub Exploit DB Packet Storm

266675	-	wesnoth	wesnoth	Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown…	CWE-22 Path Traversal	CVE-2007-5742	2017-07-29 10:33	2007-12-1	Show	GitHub Exploit DB Packet Storm

266676	-	liferea	liferea	Liferea before 1.4.6 uses weak permissions (0644) for the feedlist.opml backup file, which allows local users to obtain credentials.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-5751	2017-07-29 10:33	2007-11-1	Show	GitHub Exploit DB Packet Storm

266677	-	light_fman_php	light_fman_php	Unspecified vulnerability in Light FMan PHP (lfman or lightfman) before 2.0rc1 has unknown impact and attack vectors related to "actions."	NVD-CWE-noinfo	CVE-2007-5753	2017-07-29 10:33	2007-11-1	Show	GitHub Exploit DB Packet Storm

266678	-	aol	radio	Multiple stack-based buffer overflows in the AOL AmpX ActiveX control in AmpX.dll 2.6.1.11 in AOL Radio allow remote attackers to execute arbitrary code via long arguments to unspecified methods.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5755	2017-07-29 10:33	2007-11-14	Show	GitHub Exploit DB Packet Storm

266679	-	ibm	db2_universal_database	Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5758	2017-07-29 10:33	2008-04-17	Show	GitHub Exploit DB Packet Storm

266680	-	motorola	netoctopus	The NantSys device 5.0.0.115 in Motorola netOctopus 5.1.2 build 1011 has weak permissions for the \\.\NantSys device interface (nantsys.sys), which allows local users to gain privileges or cause a de…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-5761	2017-07-29 10:33	2008-01-9	Show	GitHub Exploit DB Packet Storm