Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 21, 2025, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193321 4.3 警告 マイクロソフト - Microsoft Systems Management Server および System Center Configuration Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2536 2012-09-14 15:52 2012-09-11 Show GitHub Exploit DB Packet Storm
193322 4.3 警告 マイクロソフト - Microsoft Visual Studio Team Foundation Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1892 2012-09-14 15:51 2012-09-11 Show GitHub Exploit DB Packet Storm
193323 7.8 危険 シスコシステムズ - Cisco ASA-CX Context-Aware Security モジュールおよび Prime Security Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4629 2012-09-14 14:05 2012-09-12 Show GitHub Exploit DB Packet Storm
193324 7.8 危険 シスコシステムズ - Cisco Unified Presence および Jabber Extensible Communications Platform におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-3935 2012-09-14 14:03 2012-09-12 Show GitHub Exploit DB Packet Storm
193325 4.3 警告 Mono Project - Mono におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3382 2012-09-14 11:21 2012-07-12 Show GitHub Exploit DB Packet Storm
193326 3.6 注意 GNOME Project - GNOME Rhythmbox の Context モジュールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-3355 2012-09-14 11:16 2012-07-17 Show GitHub Exploit DB Packet Storm
193327 7.6 危険 Globus - Globus Toolkit の GridFTP における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3292 2012-09-14 11:08 2012-05-17 Show GitHub Exploit DB Packet Storm
193328 7.5 危険 Network UPS Tools - NUT の upsd 内の common/parseconf.c の addchar 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2944 2012-09-14 11:00 2012-05-29 Show GitHub Exploit DB Packet Storm
193329 7.8 危険 Linux - Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2012-2744 2012-09-14 10:43 2012-08-9 Show GitHub Exploit DB Packet Storm
193330 5 警告 Boehm-Demers-Weiser - Boehm-Demers-Weiser GC における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2673 2012-09-14 10:34 2012-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 21, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267981 - netenberg fantastico_de_luxe Netenberg Fantastico De Luxe 2.8 uses database file names that contain the associated usernames, which allows local users to determine valid usernames and conduct brute force attacks by reading the f… NVD-CWE-Other
CVE-2004-2398 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267982 - winftp_server winftp_server WinFTP Server 1.6 stores username and password credentials in plaintext in the data\user.wfd file, which allows local users to gain access to the credentials. NVD-CWE-Other
CVE-2004-2400 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267983 - ipswitch imail_express Stack-based buffer overflow in Ipswitch IMail Express Web Messaging before 8.05 might allow remote attackers to execute arbitrary code via an HTML message with long "tag text." NVD-CWE-Other
CVE-2004-2401 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267984 - yabb yabb Cross-site scripting (XSS) vulnerability in YaBB.pl in YaBB 1 GOLD SP 1.3.2 allows remote attackers to inject arbitrary web script or HTML via a hex-encoded to parameter. NOTE: some sources say that… NVD-CWE-Other
CVE-2004-2402 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267985 - yabb yabb Cross-site request forgery (CSRF) vulnerability in YaBB 1 GOLD SP 1.3.2 allows remote attackers to perform unauthorized actions as the administrative user via a link or IMG tag to YaBB.pl that specif… NVD-CWE-Other
CVE-2004-2403 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267986 - f-secure f-secure_anti-virus
f-secure_for_firewalls
f-secure_internet_security
internet_gatekeeper 		Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and earlier, allows remote attackers to bypass scanning or cause a denial of service (crash or module rest… NVD-CWE-Other
CVE-2004-2405 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267987 - vserver linux-vserver Linux VServer 1.27 and earlier, 1.3.9 and earlier, and 1.9.1 and earlier shares /proc permissions across all virtual and host servers, which allows local users with the ability to set permissions in … NVD-CWE-Other
CVE-2004-2408 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267988 - samhain_labs samhain Buffer overflow in the sh_hash_compdata function for Samhain 1.8.9 through 2.0.1, when running in update mode ("-t update"), might allow attackers to execute arbitrary code. NVD-CWE-Other
CVE-2004-2409 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267989 - virtual_programming vp-asp The CleanseMessage function in shop$db.asp for VP-ASP Shopping Cart 4.0 through 5.0 does not sufficiently cleanse inputs, which allows remote attackers to conduct cross-site scripting (XSS) attacks t… NVD-CWE-Other
CVE-2004-2411 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
267990 - virtual_programming vp-asp Multiple SQL injection vulnerabilities in VP-ASP Shopping Cart 4.0 through 5.0 allow remote attackers to execute arbitrary SQL commands via the catalogid parameter in (1) shopreviewlist.asp and (2) s… NVD-CWE-Other
CVE-2004-2412 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm