Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190351	10	危険	karjasoft	-	KarjaSoft Sami FTP Server におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5106	2012-09-25 17:17	2008-11-17	Show	GitHub Exploit DB Packet Storm

190352	5	警告	karjasoft	-	KarjaSoft の Sami FTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-5105	2012-09-25 17:17	2008-11-17	Show	GitHub Exploit DB Packet Storm

190353	9.3	危険	OptiPNG	-	OptiPNG の BMP リーダにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5101	2012-09-25 17:17	2008-11-17	Show	GitHub Exploit DB Packet Storm

190354	10	危険	マイクロソフト	-	Microsoft .NET Framework 2.0 の strong name (SN) 実装における保護メカニズムを回避される脆弱性	CWE-310 暗号の問題	CVE-2008-5100	2012-09-25 17:17	2008-11-17	Show	GitHub Exploit DB Packet Storm

190355	7.5	危険	myfwb	-	MyFWB の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5097	2012-09-25 17:17	2008-11-14	Show	GitHub Exploit DB Packet Storm

190356	7.5	危険	knowledgebase-script	-	PHPKB Knowledge Base Software における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5088	2012-09-25 17:17	2008-11-14	Show	GitHub Exploit DB Packet Storm

190357	4.6	警告	htop	-	htop におけるファイルを変更される脆弱性	CWE-200 情報漏えい	CVE-2008-5076	2012-09-25 17:17	2008-11-14	Show	GitHub Exploit DB Packet Storm

190358	9.3	危険	Novell	-	Novell ZENworks Desktop Management の ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5073	2012-09-25 17:17	2008-11-14	Show	GitHub Exploit DB Packet Storm

190359	4.3	警告	k-lite	-	K-Lite Mega Codec Pack の vsfilter.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-5072	2012-09-25 17:17	2008-11-14	Show	GitHub Exploit DB Packet Storm

190360	4.3	警告	kkeim	-	Kmita Gallery におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5068	2012-09-25 17:17	2008-11-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266731	-	cisco	unified_contact_center_enterprise unified_contact_center_hosted unified_icm_hosted unified_intelligent_contact_management_enterprise	Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise (ICME), Unified ICM Hosted (ICMH), Unified Contact Center Enterprise (UCCE), Unified Contact Center Hosted (UCCH),…	NVD-CWE-noinfo	CVE-2007-5539	2017-07-29 10:33	2007-10-18	Show	GitHub Exploit DB Packet Storm

266732	-	opera	opera_browser	Unspecified vulnerability in Opera before 9.24, when using an "external" newsgroup or e-mail client, allows remote attackers to execute arbitrary commands via unknown vectors.	CWE-20 Improper Input Validation	CVE-2007-5541	2017-07-29 10:33	2007-10-18	Show	GitHub Exploit DB Packet Storm

266733	-	netgear	ssl312	Cross-site scripting (XSS) vulnerability in cgi-bin/welcome (aka the login page) in Netgear SSL312 PROSAFE SSL VPN-Concentrator 25 allows remote attackers to inject arbitrary web script or HTML via t…	CWE-79 Cross-site Scripting	CVE-2007-5562	2017-07-29 10:33	2007-10-19	Show	GitHub Exploit DB Packet Storm

266734	-	galmeta	galmeta_post	PHP remote file inclusion vulnerability in _lib/fckeditor/upload_config.php in Galmeta Post 0.11 allows remote attackers to execute arbitrary PHP code via a URL in the DDS parameter.	CWE-94 Code Injection	CVE-2007-5567	2017-07-29 10:33	2007-10-19	Show	GitHub Exploit DB Packet Storm

266735	-	treble_designs	1024_cms	Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 allows remote attackers to perform some actions as administrators, as demonstrated by (1) an unspecified action that creates a file c…	CWE-352 Origin Validation Error	CVE-2007-5575	2017-07-29 10:33	2007-10-19	Show	GitHub Exploit DB Packet Storm

266736	-	secureideas	basic_analysis_and_security_engine	Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qr…	CWE-287 Improper Authentication	CVE-2007-5578	2017-07-29 10:33	2007-10-19	Show	GitHub Exploit DB Packet Storm

266737	-	pligg	pligg_cms	login.php in Pligg CMS 9.5 uses a guessable confirmation code when resetting a forgotten password, which allows remote attackers with knowledge of a username to reset that user's password by calculat…	CWE-255 Credentials Management	CVE-2007-5579	2017-07-29 10:33	2007-10-19	Show	GitHub Exploit DB Packet Storm

266738	-	cisco	unified_meetingplace	Multiple cross-site scripting (XSS) vulnerabilities in mpweb/scripts/mpx.dll in Cisco Unified MeetingPlace 5.4 and earlier and 6.0 allow remote attackers to inject arbitrary web script or HTML via th…	CWE-79 Cross-site Scripting	CVE-2007-5581	2017-07-29 10:33	2007-11-8	Show	GitHub Exploit DB Packet Storm

266739	-	cisco	firewall_services_module	Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.2(3) allows remote attackers to cause a denial of service (device reload) via crafted "data in the control-plane path with Layer 7…	NVD-CWE-Other	CVE-2007-5584	2017-07-29 10:33	2007-12-20	Show	GitHub Exploit DB Packet Storm

266740	-	mnogosearch	mnogosearch	Cross-site scripting (XSS) vulnerability in mnoGoSearch before 3.2.43 allows remote attackers to inject arbitrary web script or HTML via the t parameter in search.cgi, as reachable from search.htm-di…	CWE-79 Cross-site Scripting	CVE-2007-5588	2017-07-29 10:33	2007-10-20	Show	GitHub Exploit DB Packet Storm