Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 3, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192661	7.5	危険	ScriptsFeed.com	-	ScriptsFeed Scripts Directory の info.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2905	2012-06-26 16:19	2010-07-28	Show	GitHub Exploit DB Packet Storm

192662	9.3	危険	DELL EMC (旧 EMC Corporation)	-	EMC Celerra NAS 機器におけるユーザのデータディレクトリ内の任意のファイルを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2860	2012-06-26 16:19	2010-08-5	Show	GitHub Exploit DB Packet Storm

192663	5	警告	boesch-it	-	SimpNews の news.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2859	2012-06-26 16:19	2010-07-24	Show	GitHub Exploit DB Packet Storm

192664	4.3	警告	boesch-it	-	SimpNews の news.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2858	2012-06-26 16:19	2010-07-24	Show	GitHub Exploit DB Packet Storm

192665	6.8	警告	Daniel James Scott	-	Joomla! 用の Music Manager コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2857	2012-06-26 16:19	2010-07-24	Show	GitHub Exploit DB Packet Storm

192666	5	警告	gonzalo maser Joomla!	-	Joomla! 用の InterJoomla ArtForms コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2848	2012-06-26 16:19	2010-07-24	Show	GitHub Exploit DB Packet Storm

192667	7.5	危険	gonzalo maser Joomla!	-	Joomla! 用の InterJoomla ArtForms コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2847	2012-06-26 16:19	2010-07-24	Show	GitHub Exploit DB Packet Storm

192668	4.3	警告	gonzalo maser Joomla!	-	Joomla! 用の InterJoomla ArtForms コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2846	2012-06-26 16:19	2010-07-24	Show	GitHub Exploit DB Packet Storm

192669	7.8	危険	シスコシステムズ	-	Cisco Unified Presence の PE サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2840	2012-06-26 16:19	2010-08-25	Show	GitHub Exploit DB Packet Storm

192670	7.8	危険	シスコシステムズ	-	Cisco Unified Presence の SIPD におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2839	2012-06-26 16:19	2010-08-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 4, 2025, 4:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271291	-	francois_suter rene_fritz	devlog	Cross-site scripting (XSS) vulnerability in the Developer log (devlog) extension 2.9.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-0326	2010-01-18 14:00	2010-01-16	Show	GitHub Exploit DB Packet Storm

271292	-	rastislav_birka	cs2_unitconv	Cross-site scripting (XSS) vulnerability in the Unit Converter (cs2_unitconv) extension 1.0.4 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-0328	2010-01-18 14:00	2010-01-16	Show	GitHub Exploit DB Packet Storm

271293	-	julian_fries	jf_easymaps	SQL injection vulnerability in the Googlemaps for tt_news (jf_easymaps) extension 1.0.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2010-0330	2010-01-18 14:00	2010-01-16	Show	GitHub Exploit DB Packet Storm

271294	-	typo3	majordomo	Cross-site scripting (XSS) vulnerability in the Majordomo extension 1.1.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-0345	2010-01-18 14:00	2010-01-16	Show	GitHub Exploit DB Packet Storm

271295	-	sambar	sambar_server	search.dll Sambar ISAPI Search utility in Sambar Server 4.4 Beta 3 allows remote attackers to read arbitrary directories by specifying the directory in the query parameter.	NVD-CWE-Other	CVE-2000-0835	2010-01-16 14:00	2000-11-14	Show	GitHub Exploit DB Packet Storm

271296	-	webtrends	reporting_center	WebTrends Reporting Center 4.0d allows remote attackers to determine the real path of the web server via a GET request to get_od_toc.pl with an empty Profile parameter, which leaks the pathname in an…	CWE-200 Information Exposure	CVE-2002-0596	2010-01-16 14:00	2002-06-18	Show	GitHub Exploit DB Packet Storm

271297	-	fedoraproject	sssd	System Security Services Daemon (SSSD) before 1.0.1, when the krb5 auth_provider is configured but the KDC is unreachable, allows physically proximate attackers to authenticate, via an arbitrary pass…	CWE-287 Improper Authentication	CVE-2010-0014	2010-01-15 14:00	2010-01-15	Show	GitHub Exploit DB Packet Storm

271298	-	sap	sap_kernel	Unspecified vulnerability in sapstartsrv.exe in the SAP Kernel 6.40, 7.00, 7.01, 7.10, 7.11, and 7.20, as used in SAP NetWeaver 7.x and SAP Web Application Server 6.x and 7.x, allows remote attackers…	NVD-CWE-noinfo	CVE-2009-4603	2010-01-13 22:33	2010-01-13	Show	GitHub Exploit DB Packet Storm

271299	-	zeeways	zeejobsite	Cross-site scripting (XSS) vulnerability in basic_search_result.php in Zeeways ZeeJobsite 3x allows remote attackers to inject arbitrary web script or HTML via the title parameter.	CWE-79 Cross-site Scripting	CVE-2009-4601	2010-01-13 22:15	2010-01-13	Show	GitHub Exploit DB Packet Storm

271300	-	phpwares	php_inventory	SQL injection vulnerability in index.php in PHP Inventory 1.2 allows remote authenticated users to execute arbitrary SQL commands via the sup_id parameter in a suppliers details action. NOTE: the pr…	CWE-89 SQL Injection	CVE-2009-4595	2010-01-13 14:00	2010-01-13	Show	GitHub Exploit DB Packet Storm