Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193371 7.5 危険 open newsletter - Open Newsletter の settings.php などのスクリプトにおける不正な管理者の操作を実行される脆弱性 - CVE-2006-6785 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
193372 7.5 危険 netbula - Netbula Anyboard における SQL インジェクションの脆弱性 - CVE-2006-6784 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
193373 7.5 危険 logahead - logahead UNU における任意のファイルをアップロードされる脆弱性 CWE-287
不適切な認証 		CVE-2006-6783 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
193374 5 警告 hlstats - HLstats における重要な情報を取得される脆弱性 - CVE-2006-6781 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
193375 9.4 危険 oftpd - oftpd におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6767 2012-09-25 15:36 2007-01-16 Show GitHub Exploit DB Packet Storm
193376 7.5 危険 hlstats - HLstats のログインフォームにおける SQL インジェクションの脆弱性 - CVE-2006-6780 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
193377 6.8 警告 vBulletin Solutions, Inc. - Jelsoft vBulletin におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6779 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
193378 6.8 警告 irokez - Irokez CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6771 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
193379 6.8 警告 jinzora - Jinzora Media Jukebox における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6770 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
193380 6.8 警告 php live - PHP Live! におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6769 2012-09-25 15:36 2006-12-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274511 - jonathan_bravata scarecrow Cross-site scripting (XSS) vulnerability in ScareCrow 2.13 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter to (1) forum.cgi and (2) post.cgi, or (3)… NVD-CWE-Other
CVE-2005-4307 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
274512 - ssh tectia_server SSH Tectia Server 5.0.0 (A, F, and T), when allowing host-based authentication only, allows users to log in with the wrong credentials. NVD-CWE-Other
CVE-2005-4310 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
274513 - dcscripts dcforum
dcforum\+ 		Cross-site scripting (XSS) vulnerability in DCForum 6.25 and earlier, and possibly DCForum+ 1.x, allows remote attackers to inject arbitrary web script or HTML via (1) the page parameter in dcboard.p… NVD-CWE-Other
CVE-2005-4311 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
274514 - - - SQL injection vulnerability in index.php in AlmondSoft Almond Classifieds 5.02 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2005-4312 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
274515 - ppcal_shopping_cart ppcal_shopping_cart Cross-site scripting (XSS) vulnerability in ppcal.cgi in PPCal Shopping Cart 3.3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) stop and (2) user parameters. NVD-CWE-Other
CVE-2005-4314 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
274516 - sourcefire snort Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet. NVD-CWE-Other
CVE-2005-3252 2011-03-8 11:26 2005-10-19 Show GitHub Exploit DB Packet Storm
274517 - avaya
proxim 		wireless_ap-3
wireless_ap-4
wireless_ap-5
wireless_ap-6
wireless_ap-7
wireless_ap-8
ap-2000
ap-4000
ap-600
ap-700 		Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-400… NVD-CWE-Other
CVE-2005-3253 2011-03-8 11:26 2005-12-16 Show GitHub Exploit DB Packet Storm
274518 - squid squid The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses. NVD-CWE-Other
CVE-2005-3258 2011-03-8 11:26 2005-10-20 Show GitHub Exploit DB Packet Storm
274519 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to (1) left.php, (2) queryframe.… NVD-CWE-Other
CVE-2005-3301 2011-03-8 11:26 2005-10-24 Show GitHub Exploit DB Packet Storm
274520 - clam_anti-virus clamav The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file. NVD-CWE-Other
CVE-2005-3303 2011-03-8 11:26 2005-11-5 Show GitHub Exploit DB Packet Storm