Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 5, 2025, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191251	7.5	危険	The Document Foundation OpenOffice.org Project	-	OpenOffice.org および LibreOffice におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2665	2012-09-14 10:27	2012-08-1	Show	GitHub Exploit DB Packet Storm

191252	4.3	警告	ownCloud	-	ownCloud の files/ajax/download.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2398	2012-09-14 10:21	2012-04-20	Show	GitHub Exploit DB Packet Storm

191253	6.8	警告	ownCloud	-	ownCloud におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2397	2012-09-14 10:20	2012-04-20	Show	GitHub Exploit DB Packet Storm

191254	5.8	警告	ownCloud	-	ownCloud の index.php におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2012-2270	2012-09-14 10:18	2012-04-20	Show	GitHub Exploit DB Packet Storm

191255	4.3	警告	ownCloud	-	ownCloud におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2269	2012-09-14 10:14	2012-04-20	Show	GitHub Exploit DB Packet Storm

191256	5	警告	Apache Software Foundation	-	Apache HTTP Server の mod_fcgid モジュールにおけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-119 バッファエラー	CVE-2012-1181	2012-09-14 10:12	2012-03-19	Show	GitHub Exploit DB Packet Storm

191257	4.3	警告	F5 Networks	-	BIG-IP Application Security Manager にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2975	2012-09-13 17:20	2012-09-11	Show	GitHub Exploit DB Packet Storm

191258	6	警告	Open Source Competency Center Nurul Hidayah Hamazulan	-	OSCC MyMeeting および MyMesyuarat における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-3572	2012-09-13 16:42	2012-09-11	Show	GitHub Exploit DB Packet Storm

191259	7.5	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer SP におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2012-3234	2012-09-13 15:30	2012-09-7	Show	GitHub Exploit DB Packet Storm

191260	6.8	警告	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer SP におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2410	2012-09-13 15:27	2012-09-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 5, 2025, 4:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271601	-	post_affiliate_pro	post_affiliate_pro	merchants/index.php in Post Affiliate Pro 2.0.4 and earlier, with magic_quotes_gpc disabled, allows remote attackers to include arbitrary local files via the md parameter, possibly due to a directory…	NVD-CWE-Other	CVE-2005-3910	2009-10-9 13:33	2005-11-30	Show	GitHub Exploit DB Packet Storm

271602	-	babe_logger	babe_logger	SQL injection vulnerability in Babe Logger 2 allows remote attackers to execute arbitrary SQL commands via the (1) gal parameter to index.php or (2) id parameter to comments.php.	NVD-CWE-Other	CVE-2005-3920	2009-10-9 13:33	2005-11-30	Show	GitHub Exploit DB Packet Storm

271603	-	socketkb	socketkb	PHP file include vulnerability in SocketKB 1.1.0 and earlier allows remote attackers to include arbitrary local files via the __f parameter.	NVD-CWE-Other	CVE-2005-3936	2009-10-9 13:33	2005-12-1	Show	GitHub Exploit DB Packet Storm

271604	-	softbiz	b2b_trading_marketplace_script	SQL injection vulnerability in Softbiz B2B Trading Marketplace Script 1.1 and earler allows remote attackers to execute arbitrary SQL commands via the cid parameter in (1) selloffers.php, (2) buyoffe…	NVD-CWE-Other	CVE-2005-3937	2009-10-9 13:33	2005-12-1	Show	GitHub Exploit DB Packet Storm

271605	-	softbiz	faq	SQL injection vulnerability in Softbiz FAQ Script 1.1 and earler allows remote attackers to execute arbitrary SQL commands via the id parameter in (1) index.php, (2) faq_qanda.php, (3) refer_friend.p…	NVD-CWE-Other	CVE-2005-3938	2009-10-9 13:33	2005-12-1	Show	GitHub Exploit DB Packet Storm

271606	-	inotify	incron	incron 0.5.5 does not initialize supplementary groups when running a process from a user's incrontabs, which causes the process to be run with the incrond supplementary groups and allows local users …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-3589	2009-10-9 00:30	2009-10-9	Show	GitHub Exploit DB Packet Storm

271607	-	dave_reid gabor_hojtsy	commentrss	Comment RSS 5.x before 5.x-2.2 and 6.x before 6.x-2.2, a module for Drupal, does not properly enforce permissions when a link is added to the RSS feed, which allows remote attackers to obtain the nod…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-3568	2009-10-8 13:00	2009-10-7	Show	GitHub Exploit DB Packet Storm

271608	-	openbsd	openbsd	OpenBSD 4.4, 4.5, and 4.6, when running on an i386 kernel, does not properly handle XMM exceptions, which allows local users to cause a denial of service (kernel panic) via unspecified vectors.	NVD-CWE-Other	CVE-2009-3572	2009-10-8 13:00	2009-10-7	Show	GitHub Exploit DB Packet Storm

271609	-	openbsd	openbsd	Per: http://marc.info/?l=openbsd-security-announce&m=125474331811594 XMM exceptions are incorrectly handled in the OpenBSD/i386 kernel, resulting in a kernel panic that can be triggered by a loca…	NVD-CWE-Other	CVE-2009-3572	2009-10-8 13:00	2009-10-7	Show	GitHub Exploit DB Packet Storm

271610	-	freebsd	freebsd	Race condition in the Pipe (IPC) close function in FreeBSD 6.3 and 6.4 allows local users to cause a denial of service (crash) or gain privileges via vectors related to kqueues, which triggers a use …	CWE-362 Race Condition	CVE-2009-3527	2009-10-7 13:00	2009-10-7	Show	GitHub Exploit DB Packet Storm