Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 28, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190321	1.9	注意	マイクロソフト	-	Microsoft Vista の Bitlocker における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3893	2012-09-25 17:17	2008-09-3	Show	GitHub Exploit DB Packet Storm

190322	3.5	注意	lussumo	-	Lussumo Vanilla の account.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3874	2012-09-25 17:17	2008-08-29	Show	GitHub Exploit DB Packet Storm

190323	4.3	警告	IBM	-	Lotus Domino の IBM Lotus Quickr サービスにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3860	2012-09-25 17:17	2008-08-29	Show	GitHub Exploit DB Packet Storm

190324	4.3	警告	IBM	-	IBM DB2 の Downlevel DB2RA Support コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3858	2012-09-25 17:17	2008-08-28	Show	GitHub Exploit DB Packet Storm

190325	4.6	警告	IBM	-	IBM DB2 の Base Service Utilities コンポーネントにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3857	2012-09-25 17:17	2008-08-28	Show	GitHub Exploit DB Packet Storm

190326	7.5	危険	IBM	-	Unix および Linux 用の IBM DB2 のルーチン基盤コンポーネントにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3856	2012-09-25 17:17	2008-08-28	Show	GitHub Exploit DB Packet Storm

190327	4.6	警告	IBM	-	IBM DB2 の DAS における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3855	2012-09-25 17:17	2008-08-28	Show	GitHub Exploit DB Packet Storm

190328	7.8	危険	IBM	-	IBM DB2 におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3854	2012-09-25 17:17	2008-08-28	Show	GitHub Exploit DB Packet Storm

190329	9.3	危険	IBM	-	IBM DB2 の DAS サーバプログラムにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3853	2012-09-25 17:17	2008-08-28	Show	GitHub Exploit DB Packet Storm

190330	6.5	警告	IBM	-	IBM DB2 の CLR ストアドプロシージャの配置における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3852	2012-09-25 17:17	2008-08-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 28, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
270001	-	-	-	Sambar Server before 6.0 beta 6 allows remote attackers to obtain sensitive information via direct requests to the default scripts (1) environ.pl and (2) testcgi.exe.	NVD-CWE-Other	CVE-2003-1284	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

270002	-	sambar	sambar_server	Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) isapi/testisa.dll, (2)…	NVD-CWE-Other	CVE-2003-1285	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

270003	-	sambar	sambar_server	HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface…	NVD-CWE-Other	CVE-2003-1286	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

270004	-	sambar	sambar_server	Sambar Server before 6.0 beta 3 allows attackers with physical access to execute arbitrary code via a request with an MS-DOS device name such as com1.pl, con.pl, or aux.pl, which causes Perl to read …	NVD-CWE-Other	CVE-2003-1287	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

270005	-	microsoft	windows_nt	The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.	NVD-CWE-Other	CVE-1999-0593	2017-07-11 10:29	1999-01-1	Show	GitHub Exploit DB Packet Storm

270006	-	-	-	The netstat service is running, which provides sensitive information to remote attackers.	NVD-CWE-Other	CVE-1999-0650	2017-07-11 10:29	1999-01-1	Show	GitHub Exploit DB Packet Storm

270007	-	linux	linux_kernel	The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names.	CWE-16 Configuration	CVE-1999-0656	2017-07-11 10:29	1999-01-1	Show	GitHub Exploit DB Packet Storm

270008	-	linux	linux_kernel	This Common Vulnerabilities and Exposures (CVE) entry is a configuration issue and not a software flaw. As such, it doesn’t fit in the CVE software flaw list. The Common Vulnerability Scoring System …	CWE-16 Configuration	CVE-1999-0656	2017-07-11 10:29	1999-01-1	Show	GitHub Exploit DB Packet Storm

270009	-	hp	hp-ux	Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line argument.	NVD-CWE-Other	CVE-1999-1089	2017-07-11 10:29	1996-12-13	Show	GitHub Exploit DB Packet Storm

270010	-	sco	cmw internet_faststart open_desktop openserver openserver_enterprise_system	Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file.	NVD-CWE-Other	CVE-1999-1185	2017-07-11 10:29	1998-10-6	Show	GitHub Exploit DB Packet Storm