Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195381	4.3	警告	Moodle	-	Moodle の mod/lti/typessettings.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3389	2012-07-25 13:35	2012-07-23	Show	GitHub Exploit DB Packet Storm

195382	4	警告	Moodle	-	Moodle の lib/accesslib.php における機能チェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3388	2012-07-25 12:28	2012-07-23	Show	GitHub Exploit DB Packet Storm

195383	4	警告	Moodle	-	Moodle におけるエイリアスの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3387	2012-07-25 12:22	2012-07-23	Show	GitHub Exploit DB Packet Storm

195384	4.3	警告	ESET マカフィー AVG Technologies Jiangmin Norman FRISK Software International VirusBlokAda クイックヒール・テクノロジーズ・ジャパン株式会社エフ・セキュア G Data Software AVAST Software s.r.o. Beijing Rising International Software Panda Security カスペルスキ	-	複数の製品の TAR ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1459	2012-07-25 11:09	2012-03-21	Show	GitHub Exploit DB Packet Storm

195385	4.3	警告	ClamAV ソフォス	-	ClamAV および Sophos Anti-Virus の Microsoft CHM ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1458	2012-07-25 11:08	2012-03-21	Show	GitHub Exploit DB Packet Storm

195386	4.3	警告	ESET マカフィー AVG Technologies Jiangmin Norman FRISK Software International VirusBlokAda クイックヒール・テクノロジーズ・ジャパン株式会社 G Data Software AVAST Software s.r.o. Beijing Rising International Software カスペルスキー Avira Emsisoft シマン	-	複数の製品の TAR ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1457	2012-07-25 11:06	2012-03-21	Show	GitHub Exploit DB Packet Storm

195387	4.4	警告	Puppet	-	Puppet および Puppet Enterprise における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1054	2012-07-25 11:02	2012-05-29	Show	GitHub Exploit DB Packet Storm

195388	6.9	警告	Puppet	-	Puppet および Puppet Enterprise の change_user メソッドにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1053	2012-07-25 11:00	2012-05-29	Show	GitHub Exploit DB Packet Storm

195389	7.5	危険	The PHP Group	-	PHP の php_variables.c 内の php_register_variable_ex 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-0830	2012-07-24 18:02	2012-02-1	Show	GitHub Exploit DB Packet Storm

195390	7.5	危険	PNG Development Group	-	libpng の pngerror.c におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-189 数値処理の問題	CVE-2011-3464	2012-07-24 16:44	2012-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 9, 2025, 4:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269591	-	-	-	Hired Team: Trial 2.0 and earlier and 2.200 allows remote attackers to cause a denial of service (application crash) via the status command.	NVD-CWE-Other	CVE-2004-1525	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269592	-	rob_sutton	php-nuke_event_calendar	The Event Calendar module 2.13 for PHP-Nuke allows remote attackers to gain sensitive information via an HTTP request to (1) config.php, (2) index.php, or (3) submit.php, which reveal the full path i…	NVD-CWE-Other	CVE-2004-1528	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269593	-	rob_sutton	php-nuke_event_calendar	Cross-site scripting (XSS) vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary web script via the (1) type, (2) day, (3) month, or (4) year param…	NVD-CWE-Other	CVE-2004-1529	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269594	-	-	-	SQL injection vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the (1) eid or (2) cid parameters.	NVD-CWE-Other	CVE-2004-1530	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269595	-	invision_power_services	invision_board	SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to execute arbitrary SQL commands via the qpid parameter.	NVD-CWE-Other	CVE-2004-1531	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269596	-	appserv_open_project	appserv	AppServ 2.5.x and earlier installs a default username and password, which allows remote attackers to gain access.	NVD-CWE-Other	CVE-2004-1532	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269597	-	digital_mappings_systems	pop3_server	Buffer overflow in pop3svr.exe for DMS POP3 1.5.3.27 and earlier allows remote attackers to cause a denial of service (service crash) via a long (1) username or (2) password.	NVD-CWE-Other	CVE-2004-1533	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269598	-	zonelabs	zonealarm	ZoneAlarm and ZoneAlarm Pro before 5.5.062, with ad-blocking enabled, allows remote web sites to cause a denial of service (application instability or system hang) via certain JavaScript.	NVD-CWE-Other	CVE-2004-1534	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269599	-	phpbb_group	phpbb	PHP remote file inclusion vulnerability in admin_cash.php for the Cash Mod module for phpBB allows remote attackers to execute arbitrary PHP code by modifying the phpbb_root_path parameter to referen…	NVD-CWE-Other	CVE-2004-1535	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

269600	-	ipbproarcade	ipbproarcade	SQL injection vulnerability in index.php in the ibProArcade module for Invision Power Board (IPB) 1.x and 2.x allows remote attackers to execute arbitrary SQL commands via the cat parameter.	NVD-CWE-Other	CVE-2004-1536	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed