Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191011	4.3	警告	fullrevolution	-	Full Revolution aspWebAlbum の album.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6977	2012-06-26 16:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

191012	6.8	警告	dd-wrt	-	DD-WRT 24 sp2 の apply.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6975	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

191013	6.8	警告	dd-wrt	-	DD-WRT 24 sp1 の apply.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6974	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

191014	5	警告	Alt-N	-	WorldClient in Alt-N MDaemon における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2008-6967	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

191015	7.5	危険	aj square	-	AJ Square AJ Auction Pro Platinum Skin #1 における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6966	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

191016	7.5	危険	aj square	-	AJ Square AJ Auction OOPD における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-6965	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

191017	7.2	危険	Avira	-	複数の Avira 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6962	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

191018	9.3	危険	chilkatsoft	-	ChilkatSocket.dll の ChilkatSocket.ChilkatSocket.1 における任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2008-6959	2012-06-26 16:10	2009-08-12	Show	GitHub Exploit DB Packet Storm

191019	6.5	警告	Comsenz Technology	-	Crossday Discuz! Board の wap/index.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6958	2012-06-26 16:10	2009-08-12	Show	GitHub Exploit DB Packet Storm

191020	7.5	危険	Discuz	-	Crossday Discuz! Board の member.php における任意ユーザのパスワードをリセットされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6957	2012-06-26 16:10	2009-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264331	-	horde	horde_application_framework	Cross-site request forgery (CSRF) vulnerability in the Horde Application Framework before 3.3.9 allows remote attackers to hijack the authentication of unspecified victims for requests to a preferenc…	CWE-352 Origin Validation Error	CVE-2010-3694	2011-07-12 11:39	2010-11-10	Show	GitHub Exploit DB Packet Storm

264332	-	horde	horde_application_framework	Cross-site scripting (XSS) vulnerability in util/icon_browser.php in the Horde Application Framework before 3.3.9 allows remote attackers to inject arbitrary web script or HTML via the subdir paramet…	CWE-79 Cross-site Scripting	CVE-2010-3077	2011-07-12 11:38	2010-11-10	Show	GitHub Exploit DB Packet Storm

264333	-	opera	opera_browser	Unspecified vulnerability in the printing functionality in Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page.	NVD-CWE-noinfo	CVE-2011-2611	2011-07-11 13:00	2011-07-1	Show	GitHub Exploit DB Packet Storm

264334	-	opera	opera_browser	Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by progorod.ru.	NVD-CWE-noinfo	CVE-2011-2612	2011-07-11 13:00	2011-07-1	Show	GitHub Exploit DB Packet Storm

264335	-	opera	opera_browser	The Array.prototype.join method in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a non-array object that contains initial holes.	CWE-399 Resource Management Errors	CVE-2011-2613	2011-07-11 13:00	2011-07-1	Show	GitHub Exploit DB Packet Storm

264336	-	opera	opera_browser	The SVG implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving a path on which many characters are drawn.	CWE-399 Resource Management Errors	CVE-2011-2614	2011-07-11 13:00	2011-07-1	Show	GitHub Exploit DB Packet Storm

264337	-	opera	opera_browser	Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application hang) via unknown content on a web page, as demonstrated by domiteca.com.	NVD-CWE-noinfo	CVE-2011-2615	2011-07-11 13:00	2011-07-1	Show	GitHub Exploit DB Packet Storm

264338	-	opera	opera_browser	Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (memory consumption) via unknown content on a web page, as demonstrated by test262.ecmascript.org.	NVD-CWE-noinfo	CVE-2011-2616	2011-07-11 13:00	2011-07-1	Show	GitHub Exploit DB Packet Storm

264339	-	opera	opera_browser	Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors related to selecting a text node, and closed pop-up windows, remov…	NVD-CWE-noinfo	CVE-2011-2617	2011-07-11 13:00	2011-07-1	Show	GitHub Exploit DB Packet Storm

264340	-	opera	opera_browser	Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via web script that moves a (1) AUDIO element or (2) VIDEO element between windows.	CWE-399 Resource Management Errors	CVE-2011-2618	2011-07-11 13:00	2011-07-1	Show	GitHub Exploit DB Packet Storm