Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 20, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193531 6 警告 OBM - Open Business Management の exportcsv/exportcsv_index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-5141 2012-09-5 11:09 2012-08-31 Show GitHub Exploit DB Packet Storm
193532 7.5 危険 diy-cms - DiY-CMS 用 blog モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5140 2012-09-5 11:05 2012-08-31 Show GitHub Exploit DB Packet Storm
193533 7.5 危険 PreProject.com - Pre Studio Business Cards Designer の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5139 2012-09-5 11:00 2012-08-31 Show GitHub Exploit DB Packet Storm
193534 4.3 警告 tForum - tForum の member.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5138 2012-09-5 10:59 2012-08-31 Show GitHub Exploit DB Packet Storm
193535 7.5 危険 tForum - tForum における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5137 2012-09-5 10:58 2012-08-31 Show GitHub Exploit DB Packet Storm
193536 9.3 危険 Viscom Software - Viscom Image Viewer CP Pro および Gold におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-5194 2012-09-5 10:57 2012-08-31 Show GitHub Exploit DB Packet Storm
193537 9.3 危険 Viscom Software - Viscom Image Viewer CP Pro および Gold におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-5193 2012-09-5 10:55 2012-08-31 Show GitHub Exploit DB Packet Storm
193538 4.3 警告 バラクーダネットワークス - Barracuda SSL VPN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4739 2012-09-5 10:06 2012-07-16 Show GitHub Exploit DB Packet Storm
193539 5 警告 GNU Gatekeeper - GNU Gatekeeper におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-3534 2012-09-5 10:05 2012-08-31 Show GitHub Exploit DB Packet Storm
193540 5 警告 oVirt - oVirt 用 python SDK および CLI におけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2012-3533 2012-09-5 10:03 2012-08-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268271 - roaring_penguin
debian 		pppoe
debian_linux 		Roaring Penguin pppoe (rp-ppoe), if installed or configured to run setuid root contrary to its design, allows local users to overwrite arbitrary files. NOTE: the developer has publicly disputed the … NVD-CWE-Other
CVE-2004-0564 2017-07-11 10:30 2004-12-23 Show GitHub Exploit DB Packet Storm
268272 - gnu radius The radius daemon (radiusd) for GNU Radius 1.1, when compiled with the -enable-snmp option, allows remote attackers to cause a denial of service (server crash) via malformed SNMP messages containing … NVD-CWE-Other
CVE-2004-0576 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
268273 - qbik wingate WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files from the root directory via a URL request to the wingate-internal d… NVD-CWE-Other
CVE-2004-0577 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
268274 - qbik wingate WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash (//) characters in a URL request to the wingate-i… NVD-CWE-Other
CVE-2004-0578 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
268275 - william_deich
debian 		super
debian_linux 		Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root. NVD-CWE-Other
CVE-2004-0579 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
268276 - gnu
mandrakesoft 		ksymoops
mandrake_linux
mandrake_linux_corporate_server 		ksymoops-gznm script in Mandrake Linux 9.1 through 10.0, and Corporate Server 2.1, allows local users to delete arbitrary files via a symlink attack on files in /tmp. NVD-CWE-Other
CVE-2004-0581 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
268277 - webmin webmin Unknown vulnerability in Webmin 1.140 allows remote attackers to bypass access control rules and gain read access to configuration information for a module. NVD-CWE-Other
CVE-2004-0582 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
268278 - usermin
webmin
debian 		usermin
webmin
debian_linux 		The account lockout functionality in (1) Webmin 1.140 and (2) Usermin 1.070 does not parse certain character strings, which allows remote attackers to conduct a brute force attack to guess user IDs a… NVD-CWE-Other
CVE-2004-0583 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
268279 - horde imp Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or… NVD-CWE-Other
CVE-2004-0584 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
268280 - ibm acprunner acpRunner ActiveX 1.2.5.0 allows remote attackers to execute arbitrary code via the (1) DownLoadURL, (2) SaveFilePath, and (3) Download ActiveX methods. NVD-CWE-Other
CVE-2004-0586 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm