Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 27, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192411 4.3 警告 holtstraeter - Sascha Schroeder krypt の enkrypt.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1509 2012-09-25 16:47 2007-03-20 Show GitHub Exploit DB Packet Storm
192412 4.3 警告 JBMC Software - DirectAdmin の CMD_USER_STATS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1508 2012-09-25 16:47 2007-03-20 Show GitHub Exploit DB Packet Storm
192413 7.5 危険 OpenAFS - OpenAFS のデフォルト設定における権限を取得される脆弱性 CWE-16
環境設定 		CVE-2007-1507 2012-09-25 16:47 2007-03-19 Show GitHub Exploit DB Packet Storm
192414 4.3 警告 オラクル - Oracle Portal の PORTAL.wwv_main.render_warning_screen におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1506 2012-09-25 16:47 2007-03-19 Show GitHub Exploit DB Packet Storm
192415 9.3 危険 マカフィー - McAfee ePO などの製品におけるスタックベースのオーバーフローの脆弱性 - CVE-2007-1498 2012-09-25 16:47 2007-03-16 Show GitHub Exploit DB Packet Storm
192416 6.8 警告 nukescripts - NukeSentinel におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1494 2012-09-25 16:47 2007-03-16 Show GitHub Exploit DB Packet Storm
192417 7.5 危険 nukescripts - NukeSentinel の nukesentinel.php における任意の SQL コマンドを実行される脆弱性 - CVE-2007-1493 2012-09-25 16:47 2007-03-16 Show GitHub Exploit DB Packet Storm
192418 7.1 危険 マイクロソフト - Microsoft Windows XP の winmm.dll におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1492 2012-09-25 16:47 2007-03-16 Show GitHub Exploit DB Packet Storm
192419 7.5 危険 k5n.us - WebCalendar における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-1483 2012-09-25 16:47 2007-03-16 Show GitHub Exploit DB Packet Storm
192420 4.3 警告 liqua - WBBlog の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-1482 2012-09-25 16:47 2007-03-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269561 - xine xine
xine-lib 		Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows remote attackers to execute arbitrary code via a (1) DVD or (2) MPEG subpicture header where the sec… NVD-CWE-Other
CVE-2004-1379 2017-07-11 10:30 2004-09-16 Show GitHub Exploit DB Packet Storm
269562 - phpgroupware phpgroupware Multiple SQL injection vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to execute arbitrary SQL statements via the (1) order, (2) project_id, (3) pro_main, or (4) hours_… NVD-CWE-Other
CVE-2004-1383 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
269563 - phpgroupware phpgroupware Multiple cross-site scripting (XSS) vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) kp3, (2) type, (3) msg, (4) forum_… NVD-CWE-Other
CVE-2004-1384 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
269564 - phpgroupware phpgroupware phpGroupWare 0.9.16.003 and earlier allows remote attackers to gain sensitive information via (1) unexpected characters in the session ID such as shell metacharacters, (2) an invalid appname paramete… NVD-CWE-Other
CVE-2004-1385 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
269565 - tiki tikiwiki_cms\/groupware TikiWiki before 1.8.4.1 does not properly verify uploaded images, which could allow remote attackers to upload and execute arbitrary PHP scripts, a different vulnerability than CVE-2005-0200. CWE-20
 Improper Input Validation  		CVE-2004-1386 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
269566 - veritas netbackup Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1, and 4.5, DataCenter 3.4, 3.4.1, and 4.5, Enterprise Server 5.1, and NetBackup… NVD-CWE-Other
CVE-2004-1389 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
269567 - qnx rtos
rtp 		Multiple buffer overflows in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allow remote attackers to execute arbitrary code via a long argument to the (1) -F, (2) name, (3) en, (4) upscript, (5) downscrip… NVD-CWE-Other
CVE-2004-1390 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
269568 - qnx rtos
rtp 		Untrusted execution path vulnerability in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allows local users to execute arbitrary programs by modifying the PATH environment variable to point to a malicious … NVD-CWE-Other
CVE-2004-1391 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
269569 - monolith_productions contract_jack
no_one_lives_forever_2
tron 		The Lithtech engine, as used in (1) Contract Jack 1.1 and earlier, (2) No one lives forever 2 1.3 and earlier, (3) Tron 2.0 1.042 and earlier, (4) F.E.A.R. (First Encounter Assault and Recon), and po… NVD-CWE-Other
CVE-2004-1395 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
269570 - nullsoft winamp Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data… NVD-CWE-Other
CVE-2004-1396 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm