Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192491	3.7	注意	オラクル	-	Oracle Virtualization の Oracle VM VirtualBox コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0105	2012-09-4 09:59	2012-01-17	Show	GitHub Exploit DB Packet Storm

192492	10	危険	ブルーコートシステムズ	-	Windows 上で稼働する Blue Coat Reporter におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-5127	2012-09-3 19:04	2011-09-6	Show	GitHub Exploit DB Packet Storm

192493	5	警告	ブルーコートシステムズ	-	Blue Coat ProxySG における重要な認証情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-5126	2012-09-3 19:02	2011-06-16	Show	GitHub Exploit DB Packet Storm

192494	4.3	警告	ブルーコートシステムズ	-	Blue Coat Director におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5125	2012-09-3 18:52	2011-09-8	Show	GitHub Exploit DB Packet Storm

192495	10	危険	ブルーコートシステムズ	-	Blue Coat で使用される BCAAA コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5124	2012-09-3 18:38	2011-04-4	Show	GitHub Exploit DB Packet Storm

192496	4.3	警告	ブルーコートシステムズ	-	Blue Coat ProxySG の Java 管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5192	2012-09-3 18:15	2010-09-29	Show	GitHub Exploit DB Packet Storm

192497	9.3	危険	ブルーコートシステムズ	-	Blue Coat ProxyAV アプライアンスにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-5191	2012-09-3 18:13	2010-06-19	Show	GitHub Exploit DB Packet Storm

192498	5	警告	ブルーコートシステムズ	-	Blue Coat ProxySG のアクティブコンテンツの変換機能における JavaScript の検出を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-5190	2012-09-3 18:12	2010-10-1	Show	GitHub Exploit DB Packet Storm

192499	9.3	危険	ブルーコートシステムズ	-	Blue Coat ProxySG における任意の CLI コマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-5189	2012-09-3 18:09	2010-06-14	Show	GitHub Exploit DB Packet Storm

192500	4	警告	Mozilla Foundation	-	Bugzilla におけるクロスサイトスクリプティングの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0466	2012-09-3 16:46	2012-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
270411	-	nlnetlabs	unbound	Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.	CWE-399 Resource Management Errors	CVE-2010-0969	2011-06-2 13:00	2010-03-17	Show	GitHub Exploit DB Packet Storm

270412	-	php	php	The zip:// URL wrapper provided by the PECL zip extension in PHP before 4.4.7, and 5.2.0 and 5.2.1, does not implement safemode or open_basedir checks, which allows remote attackers to read ZIP archi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-1460	2011-05-24 13:00	2007-03-15	Show	GitHub Exploit DB Packet Storm

270413	-	trend_micro	serverprotect_earthagent	Trend Micro ServerProtect EarthAgent for Windows Management Console 5.58 and possibly earlier versions, when running with Trend Micro Control Manager 2.5 and 3.0, and Damage Cleanup Server 1.1, allow…	CWE-399 Resource Management Errors	CVE-2005-1928	2011-05-20 13:00	2005-12-15	Show	GitHub Exploit DB Packet Storm

270414	-	eric_fichot	downfile	DownFile 1.3 allows remote attackers to gain administrator privileges via a direct request to (1) update.php, (2) del.php, and (3) add_form.php.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-2819	2011-05-19 13:00	2005-09-8	Show	GitHub Exploit DB Packet Storm

270415	-	realnetworks	realone_player realplayer	Unquoted Windows search path vulnerability in RealNetworks RealPlayer 10.5 6.0.12.1040 through 6.0.12.1348, RealPlayer 10, RealOne Player v2, RealOne Player v1, and RealPlayer 8 before 20060322 might…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-2936	2011-05-19 13:00	2005-11-18	Show	GitHub Exploit DB Packet Storm

270416	-	horde	horde	Unspecified cross-site scripting (XSS) vulnerability in Horde before 2.2.9 allows remote attackers to inject arbitrary web script or HTML via "not properly escaped error messages".	CWE-79 Cross-site Scripting	CVE-2005-3570	2011-05-19 13:00	2005-11-16	Show	GitHub Exploit DB Packet Storm

270417	-	sun	java_communications_services_delegated_administrator	Unspecified vulnerability in System Communications Services 6 Delegated Administrator 2005Q1 in Sun Java System Messaging Server 2005Q1 allows remote attackers to obtain the Top-Level Administrator (…	NVD-CWE-noinfo	CVE-2005-4045	2011-05-19 13:00	2005-12-7	Show	GitHub Exploit DB Packet Storm

270418	-	apple	quicktime	Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not properly restrict QTObject subclassing, which allows remote attackers to execute arbitrary code via a web page containing a user-define…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-2388	2011-05-18 13:00	2007-05-30	Show	GitHub Exploit DB Packet Storm

270419	-	cisco	cli cbos ids ios ios_xr	Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows context-dependent attackers to cause a denial of service (device restart and BGP routing table rebuild) via certain regular expressions…	NVD-CWE-noinfo CWE-20 Improper Input Validation	CVE-2007-4430	2011-05-18 13:00	2007-08-21	Show	GitHub Exploit DB Packet Storm

270420	-	aertherwide	exiftags	Unspecified vulnerability in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability t…	NVD-CWE-noinfo	CVE-2007-6354	2011-05-13 13:00	2007-12-19	Show	GitHub Exploit DB Packet Storm