Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 15, 2024, 6:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
193031 10 危険 CA Technologies - CA BrightStor HSM におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-5082 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
193032 4.3 警告 egov - eGov Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5078 2012-06-26 15:54 2007-10-4 Show GitHub Exploit DB Packet Storm
193033 4.3 警告 Alexander Palmo - SPHPBlog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5072 2012-06-26 15:54 2007-09-24 Show GitHub Exploit DB Packet Storm
193034 7.5 危険 Alexander Palmo - Simple PHP Blog の upload_img_cgi.php における任意のコードを実行される脆弱性 CWE-16
環境設定
CVE-2007-5071 2012-06-26 15:54 2007-09-24 Show GitHub Exploit DB Packet Storm
193035 5 警告 adam scheinberg - Adam Scheinberg Flip におけるログイン資格情報を含むファイルをダウンロードされる脆弱性 CWE-255
証明書・パスワード管理
CVE-2007-5063 2012-06-26 15:54 2007-09-24 Show GitHub Exploit DB Packet Storm
193036 7.5 危険 adam scheinberg - Adam Scheinberg Flip の account.php における管理者アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-5062 2012-06-26 15:54 2007-09-24 Show GitHub Exploit DB Packet Storm
193037 7.5 危険 csphere - Clansphere の mods/banners/navlist.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5061 2012-06-26 15:54 2007-09-24 Show GitHub Exploit DB Packet Storm
193038 4.3 警告 greensql - GreenSQL におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5059 2012-06-26 15:54 2007-09-24 Show GitHub Exploit DB Packet Storm
193039 4.3 警告 バラクーダネットワークス - Barracuda Spam Firewall の Web 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5058 2012-06-26 15:54 2007-09-24 Show GitHub Exploit DB Packet Storm
193040 6.8 警告 adodb lite
Transparent Technologies
journalness
sapid
pacercms
CMS Made Simple
- 複数の製品で使用される ADOdb Lite の adodb-perf-module.inc.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2007-5056 2012-06-26 15:54 2007-09-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 15, 2024, 4:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261251 - opera opera_browser Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, and possibly trigger downloading and execution of arbitrary programs, via a crafted web site. NVD-CWE-Other
CVE-2012-6460 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261252 - opera opera_browser The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by caus… CWE-20
 Improper Input Validation 
CVE-2012-6461 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261253 - opera opera_browser Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specification, which allows remote attackers to bypass intended page-content restrictions via a crafted request. CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-6462 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261254 - opera opera_browser Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript code that overrides methods of unspecified native … CWE-79
Cross-site Scripting
CVE-2012-6464 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261255 - opera opera_browser Opera before 12.12 allows remote attackers to spoof the address field via a high rate of HTTP requests. NVD-CWE-Other
CVE-2012-6471 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261256 - opera opera_browser Opera before 12.12 on UNIX uses weak permissions for the profile directory, which allows local users to obtain sensitive information by reading a (1) cache file, (2) password file, or (3) configurati… CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-6472 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261257 - samsung samsungdive The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows the activation of remote tracking, which might allow physically proximate attackers to defeat a pr… CWE-200
Information Exposure
CVE-2012-6337 2013-01-1 00:22 2012-12-31 Show GitHub Exploit DB Packet Storm
261258 - avg avg_antivirus The Anti-theft service in AVG AntiVirus for Android allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer." NVD-CWE-noinfo
CVE-2012-6335 2013-01-1 00:14 2012-12-31 Show GitHub Exploit DB Packet Storm
261259 - i-gen oplynx The Central application in i-GEN opLYNX before 2.01.9 allows remote attackers to bypass authentication via vectors involving the disabling of browser JavaScript support. CWE-287
Improper Authentication
CVE-2012-4688 2012-12-31 20:50 2012-12-31 Show GitHub Exploit DB Packet Storm
261260 - cerberusftp ftp_server Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cerberus FTP Server before 5.0.6.0 allow (1) remote attackers to inject arbitrary web script or HTML via a l… CWE-79
Cross-site Scripting
CVE-2012-6339 2012-12-31 20:50 2012-12-31 Show GitHub Exploit DB Packet Storm