Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191481	7.5	危険	id-commerce	-	ID-Commerce の liste.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0281	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191482	7.5	危険	mtcms	-	MTCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0280	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191483	5	警告	ingate	-	Ingate Firewall などの SIP モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-0263	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191484	5	警告	Mambo Foundation	-	Mambo の search コンポーネントなどにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-0261	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191485	5	警告	minimal design	-	minimal Gallery におけるコンフィギュレーション情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2008-0260	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191486	6.4	警告	minimal design	-	minimal Gallery の _mg/php/mg_thumbs.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0259	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191487	4.3	警告	php running management	-	phpRunMan の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0258	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191488	7.5	危険	matteo binda	-	Matteo Binda ASP Photo Gallery における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0256	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191489	7.5	危険	igamingcms	-	iGaming の archive.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0255	2012-09-25 16:59	2008-01-15	Show	GitHub Exploit DB Packet Storm

191490	10	危険	photopost	-	PhotoPost vBGallery における任意のファイルをアップロードされる脆弱性	CWE-20 CWE-94	CVE-2008-0251	2012-09-25 16:59	2008-01-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268121	-	hitachi	cosminexus_collaboration_portal groupmax_collaboration_portal groupmax_collaboration_web_client	Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration…	NVD-CWE-Other	CVE-2005-4322	2017-07-20 10:29	2005-12-17	Show	GitHub Exploit DB Packet Storm

268122	-	hitachi	cosminexus_collaboration_portal groupmax_collaboration_portal groupmax_collaboration_web_client	Unspecified vulnerability in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration Web Client 07-00 through …	NVD-CWE-Other	CVE-2005-4323	2017-07-20 10:29	2005-12-17	Show	GitHub Exploit DB Packet Storm

268123	-	driverse	driverse	Multiple unspecified vulnerabilities in Driverse before 0.56b have unknown impact and attack vectors, related to (1) a "ptrace exploit" and (2) "some other potential security problems."	NVD-CWE-Other	CVE-2005-4325	2017-07-20 10:29	2005-12-17	Show	GitHub Exploit DB Packet Storm

268124	-	apc	powerchute_network_shutdown	The web interface for American Power Conversion (APC) PowerChute Network Shutdown performs all communication in cleartext (base64-encoded), which allows remote attackers to sniff authentication crede…	NVD-CWE-Other	CVE-2005-4326	2017-07-20 10:29	2005-12-17	Show	GitHub Exploit DB Packet Storm

268125	-	anthony_boyd	phpbb_blog	Invalid SQL syntax error in blog.php in phpBB Blog 2.2.2 and earlier allows remote attackers to obtain the full path of the application via an invalid permalink parameter to index.php, which produces…	NVD-CWE-Other	CVE-2005-4346	2017-07-20 10:29	2005-12-19	Show	GitHub Exploit DB Packet Storm

268126	-	dragonfly freebsd linux openbsd	dragonfly freebsd linux_kernel openbsd	The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another…	NVD-CWE-Other	CVE-2005-4351	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

268127	-	box_uk	amaxus	Directory traversal vulnerability in Amaxus 3 and earlier allows remote attackers to access arbitrary files via ".." sequences in the change parameter.	NVD-CWE-Other	CVE-2005-4376	2017-07-20 10:29	2005-12-20	Show	GitHub Exploit DB Packet Storm

268128	-	-	-	Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to inject arbitrary web script or HTML via the (1) sort_mode parameter to (a) fisheye/list_g…	NVD-CWE-Other	CVE-2005-4379	2017-07-20 10:29	2005-12-20	Show	GitHub Exploit DB Packet Storm

268129	-	bitweaver	bitweaver	Multiple SQL injection vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to execute arbitrary SQL commands via the (1) sort_mode parameter to (a) fisheye/list_galleries.php, (b) …	CWE-89 SQL Injection	CVE-2005-4380	2017-07-20 10:29	2005-12-20	Show	GitHub Exploit DB Packet Storm

268130	-	citysoft	community_enterprise	SQL injection vulnerability in CitySoft Community Enterprise 4.x allows remote attackers to execute arbitrary SQL commands via the (1) nodeID, (2) pageID, (3) ID, and (4) parentid parameter to index.…	CWE-89 SQL Injection	CVE-2005-4382	2017-07-20 10:29	2005-12-20	Show	GitHub Exploit DB Packet Storm