Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 17, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193391 4.3 警告 PluXml - PluXml におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4675 2012-08-28 16:47 2012-04-16 Show GitHub Exploit DB Packet Storm
193392 5 警告 PluXml - PluXml におけるインストールパスを取得される脆弱性性 CWE-200
情報漏えい 		CVE-2012-4674 2012-08-28 16:46 2012-04-16 Show GitHub Exploit DB Packet Storm
193393 7.5 危険 PluXml - PluXml の update/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-2227 2012-08-28 16:44 2012-04-16 Show GitHub Exploit DB Packet Storm
193394 7.5 危険 Thomas Hunter - NeoInvoice の application/controllers/invoice.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-4673 2012-08-28 16:43 2012-08-26 Show GitHub Exploit DB Packet Storm
193395 7.5 危険 Thomas Hunter - NeoInvoice の signup_check.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3477 2012-08-28 16:40 2012-08-26 Show GitHub Exploit DB Packet Storm
193396 7.5 危険 DELL EMC (旧 EMC Corporation) - EMC ApplicationXtender Desktop および ApplicationXtender Web Access .NET におけるファイルをアップロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2289 2012-08-28 16:40 2012-08-26 Show GitHub Exploit DB Packet Storm
193397 5.8 警告 アップル - Apple iChat Server におけるドメインになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4672 2012-08-28 16:28 2012-08-25 Show GitHub Exploit DB Packet Storm
193398 5.8 警告 Psyced - psyced におけるドメインになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4671 2012-08-28 16:25 2012-08-25 Show GitHub Exploit DB Packet Storm
193399 6.4 警告 Tigase - Tigase XMPP Server におけるドメインになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4670 2012-08-28 16:22 2012-08-21 Show GitHub Exploit DB Packet Storm
193400 5.8 警告 Isode - M-Link におけるドメインになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4669 2012-08-28 16:19 2012-08-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 18, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275141 - mcafee epolicy_orchestrator The default installation of MSDE via McAfee ePolicy Orchestrator 2.0 through 3.0 allows attackers to execute arbitrary code via a series of steps that (1) obtain the database administrator username a… NVD-CWE-Other
CVE-2003-0148 2008-09-11 04:18 2003-08-27 Show GitHub Exploit DB Packet Storm
275142 - mcafee epolicy_orchestrator Heap-based buffer overflow in ePO agent for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request containing long parameters. NVD-CWE-Other
CVE-2003-0149 2008-09-11 04:18 2003-08-27 Show GitHub Exploit DB Packet Storm
275143 - apple mac_os_x
mac_os_x_server 		DirectoryServices in MacOS X trusts the PATH environment variable to locate and execute the touch command, which allows local users to execute arbitrary commands by modifying the PATH to point to a d… NVD-CWE-Other
CVE-2003-0171 2008-09-11 04:18 2003-05-5 Show GitHub Exploit DB Packet Storm
275144 - xfsdump
sgi 		xfsdump
irix 		xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges. NVD-CWE-Other
CVE-2003-0173 2008-09-11 04:18 2003-05-5 Show GitHub Exploit DB Packet Storm
275145 - apple mac_os_x
mac_os_x_server 		Mac OS X before 10.2.5 allows guest users to modify the permissions of the DropBox folder and read unauthorized files. NVD-CWE-Other
CVE-2003-0198 2008-09-11 04:18 2003-05-5 Show GitHub Exploit DB Packet Storm
275146 - gs-common gs-common ps2epsi creates insecure temporary files when calling ghostscript, which allows local attackers to overwrite arbitrary files. NVD-CWE-Other
CVE-2003-0207 2008-09-11 04:18 2003-05-5 Show GitHub Exploit DB Packet Storm
275147 - cisco catos Unknown vulnerability in Cisco Catalyst 7.5(1) allows local users to bypass authentication and gain access to the enable mode without a password. NVD-CWE-noinfo
CWE-287
Improper Authentication 		CVE-2003-0216 2008-09-11 04:18 2003-05-12 Show GitHub Exploit DB Packet Storm
275148 - happycgi happymall Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter for the (1) normal_html.cgi or (2) member_html.cgi scripts. NVD-CWE-Other
CVE-2003-0243 2008-09-11 04:18 2003-05-27 Show GitHub Exploit DB Packet Storm
275149 - kde kopete The GnuPG plugin in kopete before 0.6.2 does not properly cleanse the command line when executing gpg, which allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2003-0256 2008-09-11 04:18 2003-05-27 Show GitHub Exploit DB Packet Storm
275150 - fuzz fuzz fuzz 0.6 and earlier creates temporary files insecurely, which could allow local users to gain root privileges. NVD-CWE-Other
CVE-2003-0261 2008-09-11 04:18 2003-05-27 Show GitHub Exploit DB Packet Storm