Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194681	4.3	警告	Yaniv Aran-Shamir	-	Drupal 用 Gigya - Social optimization モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2117	2012-09-5 11:41	2012-04-18	Show	GitHub Exploit DB Packet Storm

194682	6.8	警告	Commerce Guys	-	Drupal 用 Commerce Reorder モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2116	2012-09-5 11:41	2012-04-18	Show	GitHub Exploit DB Packet Storm

194683	7.5	危険	musl libc	-	musl の fprintf におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2114	2012-09-5 11:40	2012-04-18	Show	GitHub Exploit DB Packet Storm

194684	6.2	警告	Comodo	-	Windows XP 上で稼働する Comodo Internet Security におけるカーネルモードのフックハンドラを回避される脆弱性	CWE-362 競合状態	CVE-2010-5157	2012-09-5 11:39	2010-06-2	Show	GitHub Exploit DB Packet Storm

194685	4.3	警告	Fusion Drupal Themes	-	Drupal 用 Fusion モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2083	2012-09-5 11:37	2012-03-28	Show	GitHub Exploit DB Packet Storm

194686	5.8	警告	EGroupware	-	EGroupware Enterprise Line および EGroupware Community Edition におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2011-4951	2012-09-5 11:37	2011-08-4	Show	GitHub Exploit DB Packet Storm

194687	4.3	警告	EGroupware	-	EGroupware Enterprise Line および EGroupware Community Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4950	2012-09-5 11:35	2011-08-4	Show	GitHub Exploit DB Packet Storm

194688	7.5	危険	EGroupware	-	EGroupware Enterprise Line および EGroupware Community Edition における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4949	2012-09-5 11:34	2011-08-4	Show	GitHub Exploit DB Packet Storm

194689	5	警告	EGroupware	-	EGroupware Enterprise Line および EGroupware Community Edition におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4948	2012-09-5 11:34	2011-08-4	Show	GitHub Exploit DB Packet Storm

194690	6.8	警告	e107.org	-	e107 の e107_admin/users_extended.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4947	2012-09-5 11:33	2011-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267761	-	apple	mac_os_x mac_os_x_server	Integer overflow in CoreGraphics in Apple Mac OS X 10.4 up to 10.4.9 allows remote user-assisted attackers to cause a denial of service (application termination) or execute arbitrary code via a craft…	NVD-CWE-Other	CVE-2007-0750	2017-07-29 10:30	2007-05-25	Show	GitHub Exploit DB Packet Storm

267762	-	apple	mac_os_x mac_os_x_server	A cleanup script in crontabs in Apple Mac OS X 10.3.9 and 10.4.9 might delete filesystems that have been mounted in /tmp, which might allow local users to cause a denial of service, related to the fi…	NVD-CWE-Other	CVE-2007-0751	2017-07-29 10:30	2007-05-25	Show	GitHub Exploit DB Packet Storm

267763	-	apple	mac_os_x mac_os_x_server	The PPP daemon (pppd) in Apple Mac OS X 10.4.8 checks ownership of the stdin file descriptor to determine if the invoker has sufficient privileges, which allows local users to load arbitrary plugins …	NVD-CWE-Other	CVE-2007-0752	2017-07-29 10:30	2007-05-25	Show	GitHub Exploit DB Packet Storm

267764	-	phpprobid	phpprobid	PHP remote file inclusion vulnerability in lang.php in PHPProbid 5.24 allows remote attackers to execute arbitrary PHP code via a URL in the SRC attribute of an HTML element in the lang parameter. N…	NVD-CWE-Other	CVE-2007-0758	2017-07-29 10:30	2007-02-6	Show	GitHub Exploit DB Packet Storm

267765	-	linux	linux_kernel	The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows remote attackers to cause a denial of service (oops) via a crafted NFSACL 2 ACCESS request that triggers a free of an incorrect point…	CWE-399 Resource Management Errors	CVE-2007-0772	2017-07-29 10:30	2007-02-21	Show	GitHub Exploit DB Packet Storm

267766	-	simple_invoices	simple_invoices	PHP remote file inclusion vulnerability in controller.php in Simple Invoices before 20070202 allows remote attackers to execute arbitrary PHP code via a URL in the (1) module or (2) view parameter. …	NVD-CWE-Other	CVE-2007-0787	2017-07-29 10:30	2007-02-7	Show	GitHub Exploit DB Packet Storm

267767	-	simple_invoices	simple_invoices	Successful exploitation requires that "register_globals" is enabled and "magic_quotes_gpc" is disabled.	NVD-CWE-Other	CVE-2007-0787	2017-07-29 10:30	2007-02-7	Show	GitHub Exploit DB Packet Storm

267768	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in MediaWiki 1.9.x before 1.9.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "sortable tables JavaScript."	NVD-CWE-Other	CVE-2007-0788	2017-07-29 10:30	2007-02-7	Show	GitHub Exploit DB Packet Storm

267769	-	bluecoat	winproxy	Blue Coat Systems WinProxy 6.1a and 6.0 r1c, and possibly earlier, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long HTTP CONNECT reque…	NVD-CWE-Other	CVE-2007-0796	2017-07-29 10:30	2007-02-7	Show	GitHub Exploit DB Packet Storm

267770	-	hp	network_node_manager	HP Network Node Manager (NNM) Remote Console 7.50, 7.51, and 7.53 assigns Everyone Full Control permission for the %PROGRAMFILES%\HP OpenView directory tree, which allows local users to gain privileg…	NVD-CWE-Other	CVE-2007-0819	2017-07-29 10:30	2007-02-9	Show	GitHub Exploit DB Packet Storm