Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192041	10	危険	hexamail	-	Hexamail Server の pop3 サービスにおけるバッファオーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4646	2012-09-25 16:59	2007-08-31	Show	GitHub Exploit DB Packet Storm

192042	6.4	警告	nmdeluxe	-	NMDeluxe の index.php における SQL インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4645	2012-09-25 16:59	2007-08-31	Show	GitHub Exploit DB Packet Storm

192043	6.4	警告	pakupaku	-	Pakupaku CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4641	2012-09-25 16:59	2007-08-31	Show	GitHub Exploit DB Packet Storm

192044	6.4	警告	pakupaku	-	Pakupaku CMS の index.php における PHP ファイルを実行される脆弱性	CWE-264 CWE-94	CVE-2007-4640	2012-09-25 16:59	2007-08-31	Show	GitHub Exploit DB Packet Storm

192045	6.8	警告	impliedbydesign	-	Implied by Design Micro-CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4602	2012-09-25 16:59	2007-08-30	Show	GitHub Exploit DB Packet Storm

192046	4.6	警告	IBM	-	IBM SurePOS 500 におけるデフォルトパスワードの脆弱性	CWE-255 証明書・パスワード管理	CVE-2007-4598	2012-09-25 16:59	2007-08-30	Show	GitHub Exploit DB Packet Storm

192047	7.5	危険	The PHP Group	-	PHP の perl エクステンションにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-4596	2012-09-25 16:59	2007-08-30	Show	GitHub Exploit DB Packet Storm

192048	4.3	警告	IBM	-	IBM Rational ClearQuest の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4592	2012-09-25 16:59	2008-03-19	Show	GitHub Exploit DB Packet Storm

192049	4.3	警告	InterWorx	-	InterWorx-CP Webmaster Level におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4589	2012-09-25 16:59	2007-08-28	Show	GitHub Exploit DB Packet Storm

192050	4.3	警告	InterWorx	-	InterWorx-CP Server Admin Level におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4588	2012-09-25 16:59	2007-08-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267391	-	grandstream	gxp-2000	Grandstream GXP-2000 VoIP Desktop Phone, firmware version 1.1.0.5, allows remote attackers to cause a denial of service (hang or reboot) via a large amount of ASCII data sent to port (1) 5060/UDP, (2…	NVD-CWE-Other	CVE-2006-5231	2017-07-20 10:33	2006-10-11	Show	GitHub Exploit DB Packet Storm

267392	-	polycom	soundpoint_ip_301	Polycom SoundPoint IP 301 VoIP Desktop Phone, firmware version 1.4.1.0040, allows remote attackers to cause a denial of service (reboot) via (1) a long URL sent to the HTTP daemon and (2) unspecified…	NVD-CWE-Other	CVE-2006-5233	2017-07-20 10:33	2006-10-11	Show	GitHub Exploit DB Packet Storm

267393	-	dayana_networks	phponline	PHP remote file inclusion vulnerability in strload.php in Dayana Networks phpOnline (aka PHP-Online) 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the LangFile parameter.	NVD-CWE-Other	CVE-2006-5253	2017-07-20 10:33	2006-10-13	Show	GitHub Exploit DB Packet Storm

267394	-	compteur	compteur	PHP remote file inclusion vulnerability in compteur.php in Compteur 2 allows remote attackers to execute arbitrary PHP code via a URL in the cp parameter. NOTE: the provenance of this information is…	NVD-CWE-Other	CVE-2006-5260	2017-07-20 10:33	2006-10-13	Show	GitHub Exploit DB Packet Storm

267395	-	microsoft	dynamics_gp	Unspecified vulnerability in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allows remote attackers to cause a denial of service (crash) via an invalid magic number in a Distributed Pr…	CWE-20 Improper Input Validation	CVE-2006-5265	2017-07-20 10:33	2006-12-31	Show	GitHub Exploit DB Packet Storm

267396	-	microsoft	dynamics_gp	Multiple buffer overflows in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allow remote attackers to execute arbitrary code via (1) a crafted Distributed Process Manager (DPM) message…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2006-5266	2017-07-20 10:33	2006-12-31	Show	GitHub Exploit DB Packet Storm

267397	-	trend_micro	serverprotect	Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via vectors related to obtaining "administrative access to the RPC interface."	NVD-CWE-noinfo CWE-287 Improper Authentication	CVE-2006-5268	2017-07-20 10:33	2008-11-18	Show	GitHub Exploit DB Packet Storm

267398	-	trend_micro	serverprotect	Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via unknown vectors, probably related to an RPC inte…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2006-5269	2017-07-20 10:33	2008-11-18	Show	GitHub Exploit DB Packet Storm

267399	-	mcafee	e-business_server protectionpilot	Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary…	NVD-CWE-Other	CVE-2006-5271	2017-07-20 10:33	2007-07-12	Show	GitHub Exploit DB Packet Storm

267400	-	mcafee	common_management_agent e-business_server protectionpilot	Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute…	NVD-CWE-Other	CVE-2006-5272	2017-07-20 10:33	2007-07-12	Show	GitHub Exploit DB Packet Storm