Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
194641 6.8 警告 Wikka Development Team - WikkaWiki の actions/files/files.php における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2011-4449 2012-09-7 15:09 2011-12-3 Show GitHub Exploit DB Packet Storm
194642 7.5 危険 Wikka Development Team - WikkaWiki の actions/usersettings/usersettings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-4448 2012-09-7 14:56 2011-12-3 Show GitHub Exploit DB Packet Storm
194643 5 警告 Apache Software Foundation - Apache Struts におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4387 2012-09-7 14:54 2012-08-3 Show GitHub Exploit DB Packet Storm
194644 6.8 警告 Apache Software Foundation - Apache Struts のトークンチェックメカニズムにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-4386 2012-09-7 14:52 2012-08-3 Show GitHub Exploit DB Packet Storm
194645 5 警告 Thomas Eibner - Apache HTTP Server 用 mod_rpaf モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2012-3526 2012-09-7 14:49 2012-09-5 Show GitHub Exploit DB Packet Storm
194646 2.1 注意 Tigerfish - Drupal 用 Fancy Slide モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2068 2012-09-6 14:05 2012-03-14 Show GitHub Exploit DB Packet Storm
194647 6.8 警告 CKEditor Team - Drupal 用 FCKeditor および CKEditor モジュールにおける任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2012-2067 2012-09-6 14:03 2012-03-14 Show GitHub Exploit DB Packet Storm
194648 4.3 警告 CKEditor Team - Drupal 用 FCKeditor および CKEditor モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2066 2012-09-6 14:02 2012-03-14 Show GitHub Exploit DB Packet Storm
194649 3.5 注意 Freso - Drupal 用 Language Icons モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2065 2012-09-6 14:00 2012-03-14 Show GitHub Exploit DB Packet Storm
194650 4.3 警告 Views Language Switcher - Drupal 用 Views Language Switcher モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2064 2012-09-6 13:56 2012-03-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280481 - firebirdsql firebird Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database. NVD-CWE-Other
CVE-2006-7213 2008-09-6 06:16 2007-06-30 Show GitHub Exploit DB Packet Storm
280482 - firebirdsql firebird Multiple unspecified vulnerabilities in Firebird 1.5 allow remote attackers to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of se… NVD-CWE-Other
CVE-2006-7214 2008-09-6 06:16 2007-06-30 Show GitHub Exploit DB Packet Storm
280483 - intel core_2_duo_e4000
core_2_duo_e6000
core_2_extreme_x6800
The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the… NVD-CWE-Other
CVE-2006-7215 2008-09-6 06:16 2007-07-4 Show GitHub Exploit DB Packet Storm
280484 - apache derby Apache Derby before 10.2.1.6 does not determine privilege requirements for lock table statements at compilation time, and consequently does not enforce privilege requirements at execution time, which… NVD-CWE-Other
CVE-2006-7216 2008-09-6 06:16 2007-07-6 Show GitHub Exploit DB Packet Storm
280485 - apache derby Apache Derby before 10.2.1.6 does not determine schema privilege requirements during the DropSchemaNode bind phase, which allows remote authenticated users to execute arbitrary drop schema statements… NVD-CWE-Other
CVE-2006-7217 2008-09-6 06:16 2007-07-6 Show GitHub Exploit DB Packet Storm
280486 - sap saplpd
sapsprint
Unspecified vulnerability in SAP SAPLPD and SAPSPRINT allows remote attackers to cause a denial of service (application crash) via a certain print job request. NOTE: the provenance of this informati… NVD-CWE-Other
CVE-2006-7220 2008-09-6 06:16 2007-07-10 Show GitHub Exploit DB Packet Storm
280487 - xwiki xwiki PreviewAction in XWiki 0.9.543 through 0.9.1252 does not set the Author field to the identity of the user who last modified a document, which allows remote authenticated users without programming rig… CWE-264
Permissions, Privileges, and Access Controls
CVE-2006-7223 2008-09-6 06:16 2007-09-14 Show GitHub Exploit DB Packet Storm
280488 - scriptphp pronews admin/change.php in ProNews 1.5 does not check whether a user is permitted to change news items, which allows remote attackers to add or delete information within an item, and possibly have other imp… NVD-CWE-Other
CVE-2006-6580 2008-09-6 06:15 2006-12-16 Show GitHub Exploit DB Packet Storm
280489 - scriptmate user_manager ScriptMate User Manager 2.1 and earlier allow remote attackers to obtain sensitive information via unspecified vectors related to (1) the Logins box and (2) the Search box. NVD-CWE-Other
CVE-2006-6583 2008-09-6 06:15 2006-12-16 Show GitHub Exploit DB Packet Storm
280490 - torrentflux torrentflux Cross-site scripting (XSS) vulnerability in dir.php in TorrentFlux 2.2, when allows remote attackers to inject arbitrary web script or HTML via double URL-encoded strings in the dir parameter, a rela… NVD-CWE-Other
CVE-2006-6600 2008-09-6 06:15 2006-12-16 Show GitHub Exploit DB Packet Storm