Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193841 6.4 警告 IBM - IBM Client Security Password Manager におけるユーザ名などの資格情報を取得される脆弱性 - CVE-2006-5161 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
193842 10 危険 マカフィー - McAfee ePolicy Orchestrator などにおけるバッファオーバーフローの脆弱性 - CVE-2006-5156 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
193843 5 警告 Kerio Technologies - Sunbelt Kerio Personal Firewall の fwdrv.sys ドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5153 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
193844 6.8 警告 マイクロソフト - Microsoft Internet Explorer 6 におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5152 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
193845 6.5 警告 openbiblio - OpenBiblio の reports system における SQL インジェクションの脆弱性 - CVE-2006-5150 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
193846 7.5 危険 openbiblio - OpenBiblio におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-5149 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
193847 7.5 危険 olate - OlateDownload における SQL インジェクションの脆弱性 - CVE-2006-5145 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
193848 6.8 警告 olate - OlateDownload の userupload.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5144 2012-09-25 15:36 2006-10-5 Show GitHub Exploit DB Packet Storm
193849 7.5 危険 kevin a. gordon - Kevin A. Gordon Open Geo Targeting における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5141 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
193850 7.5 危険 lappy512 - Lappy512 phpkimagehost の display.php における SQL インジェクションの脆弱性 - CVE-2006-5140 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 19, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267161 - apple airport_extreme The default configuration of the AirPort utility in Apple AirPort Extreme creates an IPv6 tunnel but does not enable the "Block incoming IPv6 connections" setting, which might allow remote attackers … NVD-CWE-Other
CVE-2007-1338 2017-07-29 10:30 2007-03-9 Show GitHub Exploit DB Packet Storm
267162 - webcalendar webcalendar includes/functions.php in Craig Knudsen WebCalendar before 1.0.5 does not protect the noSet variable from external modification, which allows remote attackers to set arbitrary global variables via a … NVD-CWE-Other
CVE-2007-1343 2017-07-29 10:30 2007-03-9 Show GitHub Exploit DB Packet Storm
267163 - mod_security mod_security Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) … NVD-CWE-noinfo
CVE-2007-1359 2017-07-29 10:30 2007-03-9 Show GitHub Exploit DB Packet Storm
267164 - drupal nodefamily Unspecified vulnerability in the Nodefamily module for Drupal 5.x before 5.x-1.0 allows remote authenticated users to access and modify other users' profiles via unspecified URL parameters. NVD-CWE-Other
CVE-2007-1360 2017-07-29 10:30 2007-03-9 Show GitHub Exploit DB Packet Storm
267165 - dropafew dropafew Multiple SQL injection vulnerabilities in DropAFew before 0.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in the delete action in (a) search.php or (b) search-… NVD-CWE-Other
CVE-2007-1363 2017-07-29 10:30 2007-04-12 Show GitHub Exploit DB Packet Storm
267166 - dropafew dropafew DropAFew before 0.2.1 does not require authorization for certain privileged actions, which allows remote attackers to (1) view the logged calorie information of arbitrary users via the id parameter i… NVD-CWE-Other
CVE-2007-1364 2017-07-29 10:30 2007-04-12 Show GitHub Exploit DB Packet Storm
267167 - drupal drupal_project_issue_tracking The Project issue tracking module before 4.7.x-1.3, 4.7.x-2.* before 4.7.x-2.3, and 5 before 5.x-0.2-beta for Drupal allows remote authenticated users, with "access project issues" permission, to rea… NVD-CWE-Other
CVE-2007-1368 2017-07-29 10:30 2007-03-10 Show GitHub Exploit DB Packet Storm
267168 - zend zend_platform ini_modifier (sgid-zendtech) in Zend Platform 2.2.3 and earlier allows local users to modify the system php.ini file by editing a copy of php.ini file using the -f parameter, and then performing a sy… NVD-CWE-Other
CVE-2007-1369 2017-07-29 10:30 2007-03-10 Show GitHub Exploit DB Packet Storm
267169 - zend zend_platform Zend Platform 2.2.3 and earlier has incorrect ownership for scd.sh and certain other files, which allows local users to gain root privileges by modifying the files. NOTE: this only occurs when safe_… NVD-CWE-Other
CVE-2007-1370 2017-07-29 10:30 2007-03-10 Show GitHub Exploit DB Packet Storm
267170 - pmail mercury_mail_transport_system Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command. NOTE: this might be the sa… NVD-CWE-Other
CVE-2007-1373 2017-07-29 10:30 2007-03-10 Show GitHub Exploit DB Packet Storm