Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 21, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193411 4.3 警告 Geeklog - Geeklog の admin/configuration.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5159 2012-09-12 10:00 2011-01-2 Show GitHub Exploit DB Packet Storm
193412 4.3 警告 Geeklog - Geeklog の admin/configuration.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4942 2012-09-12 09:58 2011-01-2 Show GitHub Exploit DB Packet Storm
193413 6.9 警告 RealFlex Technologies - 複数の RealFlex 製品における権限を取得される脆弱性 CWE-Other
その他 		CVE-2012-3004 2012-09-12 09:38 2012-09-8 Show GitHub Exploit DB Packet Storm
193414 6.9 警告 VMware - 複数の VMware 製品の VMware Tools における権限を取得される脆弱性 CWE-Other
その他 		CVE-2012-1666 2012-09-12 09:37 2012-09-8 Show GitHub Exploit DB Packet Storm
193415 7.5 危険 Ipswitch, Inc. - Ipswitch WhatsUp Gold の WrVMwareHostList.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2601 2012-09-11 17:27 2012-08-15 Show GitHub Exploit DB Packet Storm
193416 6.9 警告 DATEV - DATEV Grundpaket Basis における権限を取得される脆弱性 CWE-Other
その他 		CVE-2011-5158 2012-09-11 15:39 2012-09-7 Show GitHub Exploit DB Packet Storm
193417 6.9 警告 PKWARE - PKZIP における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5274 2012-09-11 15:38 2012-09-7 Show GitHub Exploit DB Packet Storm
193418 6.9 警告 Altova - Altova DiffDog における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5273 2012-09-11 15:38 2012-09-7 Show GitHub Exploit DB Packet Storm
193419 6.9 警告 Altova - Altova DatabaseSpy における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5272 2012-09-11 15:37 2012-09-7 Show GitHub Exploit DB Packet Storm
193420 6.9 警告 Altova - Altova MapForce における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5271 2012-09-11 15:37 2012-09-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 21, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274931 - jelsoft vbulletin Unspecified vulnerability in Jelsoft vBulletin before 3.6.6, when unauthenticated User Infraction Permissions is disabled, allows remote attackers to see the infraction "red flag" for a deleted user. NVD-CWE-Other
CVE-2007-2912 2008-11-15 15:50 2007-05-30 Show GitHub Exploit DB Packet Storm
274932 - mambo mambo MOStlyDB Admin in Mambo 4.6.1 does not properly check privileges, which allows remote authenticated administrators to have an unknown impact via unspecified vectors. NOTE: the provenance of this inf… NVD-CWE-Other
CVE-2007-2557 2008-11-15 15:49 2007-05-10 Show GitHub Exploit DB Packet Storm
274933 - parallels parallels_desktop Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in t… NVD-CWE-Other
CVE-2007-2454 2008-11-15 15:48 2007-05-3 Show GitHub Exploit DB Packet Storm
274934 - parallels parallels_desktop Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at … NVD-CWE-Other
CVE-2007-2455 2008-11-15 15:48 2007-05-3 Show GitHub Exploit DB Packet Storm
274935 - myserver myserver server.cpp in MyServer 0.8.5 calls Process::setuid before calling Process::setgid and thus does not properly drop privileges, which might allow remote attackers to execute CGI programs with unintende… NVD-CWE-Other
CVE-2007-1588 2008-11-15 15:45 2007-03-22 Show GitHub Exploit DB Packet Storm
274936 - rediff toolbar The Rediff Toolbar 2.0 ActiveX control in redifftoolbar.dll allows remote attackers to cause a denial of service via unspecified manipulations, possibly involving improper initialization or blank arg… NVD-CWE-Other
CVE-2007-1402 2008-11-15 15:44 2007-03-11 Show GitHub Exploit DB Packet Storm
274937 - oracle database_server Oracle Database 10g uses a NULL pDacl parameter when calling the SetSecurityDescriptorDacl function to create discretionary access control lists (DACLs), which allows local users to gain privileges. NVD-CWE-Other
CVE-2007-1442 2008-11-15 15:44 2007-03-14 Show GitHub Exploit DB Packet Storm
274938 - design4online userpages2 SQL injection vulnerability in page.asp in Design4Online UserPages2 2.0 allows remote attackers to execute arbitrary SQL commands via the art_id parameter. NOTE: the provenance of this information i… NVD-CWE-Other
CVE-2007-1077 2008-11-15 15:43 2007-02-23 Show GitHub Exploit DB Packet Storm
274939 - scrymud scrymud Multiple unspecified vulnerabilities in ScryMUD before 2.1.11 have unknown impact and attack vectors, possibly related to denial of service caused by a search that begins with a .* sequence. NVD-CWE-Other
CVE-2007-1098 2008-11-15 15:43 2007-02-27 Show GitHub Exploit DB Packet Storm
274940 - tor tor Tor does not verify a node's uptime and bandwidth advertisements, which allows remote attackers who operate a low resource node to make false claims of greater resources, which places the node into u… NVD-CWE-Other
CVE-2007-1103 2008-11-15 15:43 2007-02-27 Show GitHub Exploit DB Packet Storm