Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193391 5 警告 SilverStripe - SilverStripe におけるバージョン情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5078 2012-09-20 10:40 2010-12-21 Show GitHub Exploit DB Packet Storm
193392 6.8 警告 SilverStripe - SilverStripe の core/model/Translatable.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4824 2012-09-20 10:38 2010-12-21 Show GitHub Exploit DB Packet Storm
193393 4.3 警告 SilverStripe - SilverStripe におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4823 2012-09-20 10:35 2010-12-21 Show GitHub Exploit DB Packet Storm
193394 4.3 警告 SilverStripe - SilverStripe の core/model/MySQLDatabase.php におけるページへの SQL クエリを取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4822 2012-09-20 10:31 2010-12-21 Show GitHub Exploit DB Packet Storm
193395 6.4 警告 Sami Kiminki - Drupal 用 Redirecting click bouncer モジュールにおけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2012-2062 2012-09-19 16:43 2012-03-14 Show GitHub Exploit DB Packet Storm
193396 6.8 警告 Nijskens Raf - Drupal 用 Admin tools モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2061 2012-09-19 16:41 2012-03-14 Show GitHub Exploit DB Packet Storm
193397 4.3 警告 Nijskens Raf - Drupal 用 Admin tools モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2060 2012-09-19 16:40 2012-03-14 Show GitHub Exploit DB Packet Storm
193398 4.3 警告 Steve Lockwood - Drupal 用 ticketyboo News Ticker モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2059 2012-09-19 16:40 2012-03-14 Show GitHub Exploit DB Packet Storm
193399 5 警告 Ubercart.org - Drupal 用 Ubercart Payflow モジュールにおける支払いをねつ造される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2058 2012-09-19 16:39 2012-03-14 Show GitHub Exploit DB Packet Storm
193400 6.8 警告 Ubercart.org - Drupal 用 Ubercart Bulk Stock Updater モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2057 2012-09-19 16:33 2012-03-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 23, 2025, 5:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269751 - apache http_server Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument. NOTE: since htdigest is normally only locally accessible and not setui… NVD-CWE-Other
CVE-2002-1658 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269752 - iatek portalapp user_profile.asp in PortalApp 2.2 allows local users to gain privileges by modifying the user_id variable. NVD-CWE-Other
CVE-2002-1659 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269753 - jelsoft vbulletin calendar.php in vBulletin before 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the command parameter. CWE-78
OS Command  		CVE-2002-1660 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269754 - leafnode leafnode The leafnode server in leafnode 1.9.20 to 1.9.29 allows remote attackers to cause a denial of service (infinite loop) when leafnode requests a cross-posted article to one group whose name is a prefix… NVD-CWE-Other
CVE-2002-1661 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269755 - mambo mambo_site_server Multiple cross-site scripting (XSS) vulnerabilities in Mambo Site Server 4.0.11 allow remote attackers to execute arbitrary script on other clients via (1) search.php and (2) the "Your name" field du… NVD-CWE-Other
CVE-2002-1662 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269756 - oracle e-business_suite Unknown vulnerability in Oracle E-Business Suite 11i.1 through 11i.6 allows remote attackers to execute unauthorized PL/SQL procedures by modifying the Oracle Applications URL. NVD-CWE-Other
CVE-2002-1666 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269757 - freebsd freebsd The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of se… NVD-CWE-Other
CVE-2002-1667 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269758 - hp hp-ux
hp-ux_series_700
hp-ux_series_800 		HP-UX 11.11 and earlier allows local users to cause a denial of service (kernel deadlock), due to a "file system weakness" that is possibly via an mmap() system call and performing an I/O operation u… NVD-CWE-Other
CVE-2002-1668 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269759 - freebsd freebsd pkg_add in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation. NVD-CWE-Other
CVE-2002-1669 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
269760 - webmin webmin Webmin 0.92, when installed from an RPM, creates /var/webmin with insecure permissions (world readable), which could allow local users to read the root user's cookie-based authentication credentials … NVD-CWE-Other
CVE-2002-1672 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm