Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 30, 2025, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193861 2.6 注意 PHP-Fusion - PHP-Fusion の maincore.php における SQL インジェクション攻撃を実行される脆弱性 - CVE-2006-4673 2012-09-25 15:35 2006-09-11 Show GitHub Exploit DB Packet Storm
193862 4.3 警告 mkportal - MKPortal の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4665 2012-09-25 15:35 2006-09-8 Show GitHub Exploit DB Packet Storm
193863 4.3 警告 luke hutteman - Luke Hutteman SharpReader におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4761 2012-09-25 15:35 2006-09-13 Show GitHub Exploit DB Packet Storm
193864 5 警告 laurentiu matei - Laurentiu Matei XHP CMS におけるインストールパスを取得される脆弱性 - CVE-2006-4752 2012-09-25 15:35 2006-09-13 Show GitHub Exploit DB Packet Storm
193865 6.8 警告 laurentiu matei - Laurentiu Matei XHP CMS の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4751 2012-09-25 15:35 2006-09-13 Show GitHub Exploit DB Packet Storm
193866 5.1 警告 openi-cms group - OPENi-CMS の openi-admin/base/fileloader.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4750 2012-09-25 15:35 2006-09-13 Show GitHub Exploit DB Packet Storm
193867 4.3 警告 idevSpot - IdevSpot TextAds におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4747 2012-09-25 15:35 2006-09-13 Show GitHub Exploit DB Packet Storm
193868 4.3 警告 idevSpot - IDevSpot PhpLinkExchange の user_add.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4742 2012-09-25 15:35 2006-09-13 Show GitHub Exploit DB Packet Storm
193869 7.5 危険 idevSpot - IDevSpot PhpLinkExchange における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4741 2012-09-25 15:35 2006-09-13 Show GitHub Exploit DB Packet Storm
193870 5 警告 jetbox - Jetbox CMS における重要な情報を取得される脆弱性 - CVE-2006-4740 2012-09-25 15:35 2006-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 30, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268291 - silver-scripts silvernews SQL injection vulnerability in SilverNews 2.0.3 allows remote attackers to execute arbitrary SQL commands via the user field on the login page in the Admin control panel. NVD-CWE-Other
CVE-2005-2478 2017-07-11 10:32 2005-08-5 Show GitHub Exploit DB Packet Storm
268292 - macromedia coldfusion_fusebox Cross-site scripting (XSS) vulnerability in ColdFusion Fusebox 4.1.0 allows remote attackers to inject arbitrary web script or HTML via the fuseaction parameter, which is not quoted in an error page,… NVD-CWE-Other
CVE-2005-2480 2017-07-11 10:32 2005-08-5 Show GitHub Exploit DB Packet Storm
268293 - churchinfo churchinfo ChurchInfo allows remote attackers to execute obtain sensitive information via the PersonID parameter to (1) PersonView.php, (2) MemberRoleChange.php, (3) PropertyAssign.php, (4) WhyCameEditor.php, (… NVD-CWE-Other
CVE-2005-2474 2017-07-11 10:32 2005-08-5 Show GitHub Exploit DB Packet Storm
268294 - metasploit metasploit_framework The StateToOptions function in msfweb in Metasploit Framework 2.4 and earlier, when running with the -D option (defanged mode), allows attackers to modify temporary environment variables before the "… NVD-CWE-Other
CVE-2005-2482 2017-07-11 10:32 2005-08-7 Show GitHub Exploit DB Packet Storm
268295 - karrigell karrigell Eval injection vulnerability in Karrigell before 2.1.8 allows remote attackers to execute arbitrary Python code via modified arguments to a Karrigell services (.ks) script, which can reference functi… NVD-CWE-Other
CVE-2005-2483 2017-07-11 10:32 2005-08-7 Show GitHub Exploit DB Packet Storm
268296 - denora_irc_stats denora_irc_stats Buffer overflow in the rdb_query function for Denora IRC Stats 1.0 might allow attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-2484 2017-07-11 10:32 2005-08-7 Show GitHub Exploit DB Packet Storm
268297 - logicampus logicampus Cross-site scripting (XSS) vulnerability in the Helpdesk in Logicampus before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NVD-CWE-Other
CVE-2005-2485 2017-07-11 10:32 2005-08-7 Show GitHub Exploit DB Packet Storm
268298 - mcdata intrepid_6064_director_switch
intrepid_6140_director_switch
sphereon_4300_fabric_switch
sphereon_4500_fabric_switch 		Unknown vulnerability in Sun McData switches and directors 4300, 4500, 6064, and 6140 before E/OS 6.0.0 may allow attackers to cause a denial of service (connectivity and array access loss) via a net… NVD-CWE-Other
CVE-2005-2487 2017-07-11 10:32 2005-08-7 Show GitHub Exploit DB Packet Storm
268299 - web_content_management web_content_management_news_system Cross-site scripting (XSS) vulnerability in Web Content Management News System allows remote attackers to inject arbitrary web script or HTML via (1) the strRootpath parameter to validsession.php or … NVD-CWE-Other
CVE-2005-2488 2017-07-11 10:32 2005-08-7 Show GitHub Exploit DB Packet Storm
268300 - web_content_management web_content_management_news_system Web Content Management News System allows remote attackers to create arbitrary accounts and gain privileges via a direct request to Admin/Users/AddModifyInput.php. NVD-CWE-Other
CVE-2005-2489 2017-07-11 10:32 2005-08-7 Show GitHub Exploit DB Packet Storm