Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192061 7.5 危険 Ipswitch, Inc. - Ipswitch WS_FTP LE におけるバッファオーバーフローの脆弱性 - CVE-2006-4974 2012-09-25 15:36 2006-09-24 Show GitHub Exploit DB Packet Storm
192062 5.1 警告 mybulletinboard - MyBB の archive/index.php/forum-4.html におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4972 2012-09-25 15:36 2006-09-24 Show GitHub Exploit DB Packet Storm
192063 5 警告 mybulletinboard - MyBB における重要な情報を取得される脆弱性 - CVE-2006-4971 2012-09-25 15:36 2006-09-24 Show GitHub Exploit DB Packet Storm
192064 6.8 警告 nextage - NextAge Cart におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4967 2012-09-25 15:36 2006-09-24 Show GitHub Exploit DB Packet Storm
192065 6.8 警告 neosys - Java 用の Neon WebMail におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4956 2012-09-25 15:36 2006-09-23 Show GitHub Exploit DB Packet Storm
192066 5 警告 neosys - Java 用の Neon WebMail におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4955 2012-09-25 15:36 2006-09-23 Show GitHub Exploit DB Packet Storm
192067 7.5 危険 neosys - Neon WebMail の updateuser サーブレットにおける任意のユーザの情報を変更される脆弱性 - CVE-2006-4954 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
192068 7.5 危険 neosys - Neon WebMail における SQL インジェクションの脆弱性 - CVE-2006-4953 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
192069 7.5 危険 neosys - Neon WebMail の updatemail サーブレットにおける電子メールメッセージを移動される脆弱性 - CVE-2006-4952 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
192070 7.5 危険 neosys - Neon WebMail における任意の JSP コードを実行される脆弱性 - CVE-2006-4951 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269301 - jgs-xa jgs-portal JGS-XA JGS-Portal 3.0.2 and earlier allows remote attackers to obtain the full server path via direct requests to (1) jgs_portal_ref.php, (2) jgs_portal_land.php, (3) jgs_portal_log.php, (4) jgs_port… NVD-CWE-Other
CVE-2005-1635 2016-10-18 12:21 2005-05-17 Show GitHub Exploit DB Packet Storm
269302 - yahoo messenger The Logfile feature in Yahoo! Messenger 5.x through 6.0 can be activated by a YMSGR: URL and writes all output to a single ypager.log file, even when there are multiple users, and does not properly w… NVD-CWE-Other
CVE-2005-1671 2016-10-18 12:21 2005-05-19 Show GitHub Exploit DB Packet Storm
269303 - timo_rossi picasm Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message. NVD-CWE-Other
CVE-2005-1679 2016-10-18 12:21 2005-05-20 Show GitHub Exploit DB Packet Storm
269304 - d-link dsl-502t
dsl-504t
dsl-562t
dsl-g604t 		D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or… NVD-CWE-Other
CVE-2005-1680 2016-10-18 12:21 2005-05-20 Show GitHub Exploit DB Packet Storm
269305 - bugada_andrea php_advanced_transfer_manager PHP remote file inclusion vulnerability in common.php in phpATM 1.21, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the include_location parameter … NVD-CWE-Other
CVE-2005-1681 2016-10-18 12:21 2005-05-20 Show GitHub Exploit DB Packet Storm
269306 - microsoft word Buffer overflow in winword.exe 10.2627.6714 and earlier in Microsoft Word for the Macintosh, before SP3 for Word 2002, allows remote attackers to cause a denial of service and possibly execute arbitr… NVD-CWE-Other
CVE-2005-1683 2016-10-18 12:21 2005-05-20 Show GitHub Exploit DB Packet Storm
269307 - episodex episodex_guestbook Cross-site scripting (XSS) vulnerability in default.asp for episodex guestbook allows remote attackers to inject arbitrary web script or HTML via the Name field and other fields. NVD-CWE-Other
CVE-2005-1684 2016-10-18 12:21 2005-05-20 Show GitHub Exploit DB Packet Storm
269308 - wordpress wordpress SQL injection vulnerability in wp-trackback.php in Wordpress 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the tb_id parameter. NVD-CWE-Other
CVE-2005-1687 2016-10-18 12:21 2005-05-20 Show GitHub Exploit DB Packet Storm
269309 - postnuke_software_foundation postnuke Multiple SQL injection vulnerabilities in Xanthia.php in the Xanthia module in PostNuke 0.750 allow remote attackers to execute arbitrary SQL commands via the (1) name or (2) module parameter. NVD-CWE-Other
CVE-2005-1694 2016-10-18 12:21 2005-05-24 Show GitHub Exploit DB Packet Storm
269310 - postnuke_software_foundation postnuke Multiple cross-site scripting (XSS) vulnerabilities in the RSS module in PostNuke 0.750 and 0.760RC2 and RC3 allow remote attackers to inject arbitrary web script or HTML via the (1) rss_url paramete… NVD-CWE-Other
CVE-2005-1695 2016-10-18 12:21 2005-05-24 Show GitHub Exploit DB Packet Storm