Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192921 5 警告 Kerio Technologies - Sunbelt Kerio Personal Firewall の fwdrv.sys ドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5153 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
192922 6.8 警告 マイクロソフト - Microsoft Internet Explorer 6 におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5152 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
192923 6.5 警告 openbiblio - OpenBiblio の reports system における SQL インジェクションの脆弱性 - CVE-2006-5150 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
192924 7.5 危険 openbiblio - OpenBiblio におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-5149 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
192925 7.5 危険 olate - OlateDownload における SQL インジェクションの脆弱性 - CVE-2006-5145 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
192926 6.8 警告 olate - OlateDownload の userupload.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5144 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
192927 7.5 危険 kevin a. gordon - Kevin A. Gordon Open Geo Targeting における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5141 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
192928 7.5 危険 lappy512 - Lappy512 phpkimagehost の display.php における SQL インジェクションの脆弱性 - CVE-2006-5140 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
192929 5 警告 mkportal - MkPortal における Web サイトコンテンツを破損される脆弱性 - CVE-2006-5139 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
192930 4 警告 ヒューレット・パッカード - Mercury SiteScope におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5134 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267881 - herberlin bremsserver Directory traversal vulnerability in BremsServer 1.2.4 allows remote attackers to read arbitrary files via ".." (dot dot) sequences in the URL. NVD-CWE-Other
CVE-2004-2112 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267882 - herberlin bremsserver Cross-site scripting (XSS) vulnerability in BremsServer 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the URL. NVD-CWE-Other
CVE-2004-2113 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267883 - internetnow proxynow Stack-based and heap-based buffer overflows in ProxyNow! 2.75 and earlier allow remote attackers to execute arbitrary code via a GET request with a long ftp:// URL. NVD-CWE-Other
CVE-2004-2114 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267884 - oracle http_server Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTTP Server 1.3.22, based on Apache, allow remote attackers to execute arbitrary script as other users via the (1) action, (2) username, … NVD-CWE-Other
CVE-2004-2115 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267885 - reptile_web_server reptile_web_server Reptile Web Server allows remote attackers to cause a denial of service (CPU consumption) via multiple incomplete GET requests without the HTTP version. NVD-CWE-Other
CVE-2004-2120 2017-07-11 10:31 2004-01-23 Show GitHub Exploit DB Packet Storm
267886 - borland_software web_server_for_corel_paradox Multiple directory traversal vulnerabilities in Borland Web Server (BWS) 1.0b3 and earlier allow remote attackers to read and download arbitrary files via (1) multi-dot "......" sequences, or (2) "%5… NVD-CWE-Other
CVE-2004-2121 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267887 - intra_forum intra_forum Cross-site scripting (XSS) vulnerability in intraforum_db.cgi in Intra Forum allows remote attackers to inject arbitrary web script or HTML via the (1) use_last_read or (2) forum parameters. NVD-CWE-Other
CVE-2004-2122 2017-07-11 10:31 2004-01-24 Show GitHub Exploit DB Packet Storm
267888 - nextplace e-commerce_asp_engine Multiple cross-site scripting (XSS) vulnerabilities in Nextplace.com E-Commerce ASP Engine allow remote attackers to inject arbitrary web script or HTML via the (1) level parameter of productdetail.a… NVD-CWE-Other
CVE-2004-2123 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267889 - gallery_project gallery The register_globals simulation capability in Gallery 1.3.1 through 1.4.1 allows remote attackers to modify the HTTP_POST_VARS variable and conduct a PHP remote file inclusion attack via the GALLERY_… NVD-CWE-Other
CVE-2004-2124 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267890 - iss blackice_agent_server
blackice_pc_protection
blackice_server_protection
realsecure_desktop 		Buffer overflow in blackd.exe for BlackICE PC Protection 3.6 and other versions before 3.6.ccb, with application protection off, allows local users to gain system privileges by modifying the .INI fil… NVD-CWE-Other
CVE-2004-2125 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm