Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195191	7.5	危険	Activewebsoftwares	-	ASPReferral の Merchantsadd.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6889	2012-06-26 16:10	2009-08-3	Show	GitHub Exploit DB Packet Storm

195192	7.5	危険	easysitenetwork	-	EasySiteNetwork Free Jokes Website の joke.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6880	2012-06-26 16:10	2009-07-30	Show	GitHub Exploit DB Packet Storm

195193	4.3	警告	Apache Software Foundation	-	Apache Roller におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6879	2012-06-26 16:10	2009-07-30	Show	GitHub Exploit DB Packet Storm

195194	4.3	警告	editeurscripts	-	EsPartenaires の login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6876	2012-06-26 16:10	2009-07-24	Show	GitHub Exploit DB Packet Storm

195195	7.5	危険	aspsiteware	-	ASP SiteWare autoDealer における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6874	2012-06-26 16:10	2009-07-24	Show	GitHub Exploit DB Packet Storm

195196	7.5	危険	Activewebsoftwares	-	Active Web Mail における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6873	2012-06-26 16:10	2009-07-23	Show	GitHub Exploit DB Packet Storm

195197	5	警告	aspthai.net	-	ASPThai.NET ASPThai Forums におけるデータベースをダウンロードされる脆弱性	CWE-200 情報漏えい	CVE-2008-6872	2012-06-26 16:10	2009-07-23	Show	GitHub Exploit DB Packet Storm

195198	4.3	警告	editeurscripts	-	EditeurScripts EsBaseAdmin の default/login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6868	2012-06-26 16:10	2009-07-23	Show	GitHub Exploit DB Packet Storm

195199	6.8	警告	AVAST Software s.r.o.	-	avast! Linux Home Edition におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6846	2012-06-26 16:10	2009-07-2	Show	GitHub Exploit DB Packet Storm

195200	5	警告	ClamAV	-	ClamAV のアンパック機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2008-6845	2012-06-26 16:10	2009-07-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 12, 2025, 4:59 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276171	-	paul_l_daniels	ripmime	The MIMEH_read_headers function in ripMIME 1.3.1.0 does not properly handle trailing "\r" and "\n" characters in headers, which leads to a buffer underflow.	NVD-CWE-Other	CVE-2004-2620	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276172	-	first_virtual_communications	click_to_meet_express click_to_meet_premier conference_server v-gate	Multiple vulnerabilities in the H.323 protocol implementation for First Virtual Communications Click to Meet Express (when used with H.323 conferencing endpoints), Click to Meet Premier, Conference S…	NVD-CWE-Other	CVE-2004-2629	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276173	-	apache	james	Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock fr…	NVD-CWE-Other	CVE-2004-2650	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276174	-	pd9_software	megabbs	Unspecified vulnerability in PD9 Software MegaBBS 2.0 and 2.1 allows attackers to gain privileges via unknown vectors involving (1) admin/userlevelmembers-edit.asp and (2) admin/edit-groups.asp.	NVD-CWE-Other	CVE-2004-2653	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276175	-	squid	squid	The clientAbortBody function in client_side.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors that trigge…	NVD-CWE-Other	CVE-2004-2654	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276176	-	suse	suse_linux	resmgr in SUSE CORE 9 does not properly identify terminal names, which allows local users to spoof terminals and login types.	NVD-CWE-Other	CVE-2004-2658	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276177	-	soft3304	04webserver	Soft3304 04WebServer before 1.41 does not properly check file names, which allows remote attackers to obtain sensitive information (CGI source code).	NVD-CWE-Other	CVE-2004-2661	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276178	-	soft3304	04webserver	Soft3304 04WebServer before 1.41 allows remote attackers to cause a denial of service (resource consumption or crash) via certain data related to OpenSSL, which causes a thread to terminate but conti…	NVD-CWE-Other	CVE-2004-2662	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276179	-	john_lim	adodb	John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals…	NVD-CWE-Other	CVE-2004-2664	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276180	-	john_lim	adodb	This vulnerability is addressed in the following product release: John Lim, ADOdb, 4.23	NVD-CWE-Other	CVE-2004-2664	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm