Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193021 4.3 警告 Google - Google Chrome の GIF デコーダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2012-2849 2012-08-8 11:18 2012-07-31 Show GitHub Exploit DB Packet Storm
193022 4.3 警告 Google - Google Chrome のドラッグ&ドロップにおけるファイルのアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2848 2012-08-8 11:01 2012-07-31 Show GitHub Exploit DB Packet Storm
193023 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2847 2012-08-8 11:00 2012-07-31 Show GitHub Exploit DB Packet Storm
193024 2.6 注意 アップル - iOS 上の Safari におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3426 2012-08-7 12:08 2011-10-17 Show GitHub Exploit DB Packet Storm
193025 2.6 注意 NHN Japan - Android 版 LINE における暗黙的 Intent の扱いに関する脆弱性 CWE-DesignError
CVE-2012-4005 2012-08-7 12:01 2012-08-7 Show GitHub Exploit DB Packet Storm
193026 5 警告 Google - Linux 上で稼働する Google Chrome におけるサービス運用妨害 (クロスプロセス干渉) の脆弱性 CWE-119
バッファエラー 		CVE-2012-2846 2012-08-7 11:53 2012-07-31 Show GitHub Exploit DB Packet Storm
193027 3.5 注意 シスコシステムズ - Cisco AnyConnect Secure Mobility Client におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-1370 2012-08-7 11:45 2012-08-6 Show GitHub Exploit DB Packet Storm
193028 5 警告 シスコシステムズ - Cisco IOS の MallocLite の実装におけるサービス運用妨害 (ルートプロセッサクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1367 2012-08-7 11:43 2012-08-6 Show GitHub Exploit DB Packet Storm
193029 4 警告 シスコシステムズ - Cisco Unified Computing System におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-DesignError
CVE-2012-1365 2012-08-7 11:04 2012-05-11 Show GitHub Exploit DB Packet Storm
193030 4 警告 シスコシステムズ - Cisco Unified Computing System におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-DesignError
CVE-2012-1364 2012-08-7 11:03 2012-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 12, 2025, 4:59 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270951 - igeneric ig_shop Multiple SQL injection vulnerabilities in display_review.php in iGeneric iG Shop 1.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) user_login_cookie param… NVD-CWE-Other
CVE-2007-0133 2011-03-8 11:48 2007-01-9 Show GitHub Exploit DB Packet Storm
270952 - hp openvms Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain "uninte… NVD-CWE-Other
CVE-2007-0139 2011-03-8 11:48 2007-01-9 Show GitHub Exploit DB Packet Storm
270953 - cisco ip_contact_center_enterprise
ip_contact_center_hosted
unified_contact_center_enterprise
unified_contact_center_hosted 		The JTapi Gateway process in Cisco Unified Contact Center Enterprise, Unified Contact Center Hosted, IP Contact Center Enterprise, and Cisco IP Contact Center Hosted 5.0 through 7.1 allows remote att… NVD-CWE-Other
CVE-2007-0198 2011-03-8 11:48 2007-01-11 Show GitHub Exploit DB Packet Storm
270954 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 5.0 through 5.1.1.0 allows remote attackers to obtain JSP source code and other sensitive information via certain "special URIs." NVD-CWE-Other
CVE-2006-7165 2011-03-8 11:48 2007-03-20 Show GitHub Exploit DB Packet Storm
270955 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 5.1.1.9 and earlier allows remote attackers to obtain JSP source code and other sensitive information via "a specific JSP URL." NVD-CWE-Other
CVE-2006-7166 2011-03-8 11:48 2007-03-20 Show GitHub Exploit DB Packet Storm
270956 - hosting_controller hosting_controller Directory traversal vulnerability in FolderManager/FolderManager.aspx in Hosting Controller 7c allows remote authenticated users to read and modify arbitrary files, and list arbitrary directories via… NVD-CWE-Other
CVE-2006-6814 2011-03-8 11:47 2006-12-29 Show GitHub Exploit DB Packet Storm
270957 - mxmania calendar_mx_basic Calendar MX BASIC 1.0.2 and earlier store sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for cale… NVD-CWE-Other
CVE-2006-6825 2011-03-8 11:47 2006-12-30 Show GitHub Exploit DB Packet Storm
270958 - efkan_forum efkan_forum Multiple SQL injection vulnerabilities in Efkan Forum 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the grup parameter in admin.asp, or the id parameter in (2) defa… NVD-CWE-Other
CVE-2006-6828 2011-03-8 11:47 2006-12-31 Show GitHub Exploit DB Packet Storm
270959 - efkan_forum efkan_forum Efkan Forum 1.0 and earlier store sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for forum.mdb. … NVD-CWE-Other
CVE-2006-6829 2011-03-8 11:47 2006-12-31 Show GitHub Exploit DB Packet Storm
270960 - joomla joomla Cross-site scripting (XSS) vulnerability in Joomla! before 1.0.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to poll.php or the module ti… CWE-79
Cross-site Scripting 		CVE-2006-6832 2011-03-8 11:47 2006-12-31 Show GitHub Exploit DB Packet Storm