Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195381	4.3	警告	Moodle	-	Moodle の mod/lti/typessettings.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3389	2012-07-25 13:35	2012-07-23	Show	GitHub Exploit DB Packet Storm

195382	4	警告	Moodle	-	Moodle の lib/accesslib.php における機能チェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3388	2012-07-25 12:28	2012-07-23	Show	GitHub Exploit DB Packet Storm

195383	4	警告	Moodle	-	Moodle におけるエイリアスの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3387	2012-07-25 12:22	2012-07-23	Show	GitHub Exploit DB Packet Storm

195384	4.3	警告	ESET マカフィー AVG Technologies Jiangmin Norman FRISK Software International VirusBlokAda クイックヒール・テクノロジーズ・ジャパン株式会社エフ・セキュア G Data Software AVAST Software s.r.o. Beijing Rising International Software Panda Security カスペルスキ	-	複数の製品の TAR ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1459	2012-07-25 11:09	2012-03-21	Show	GitHub Exploit DB Packet Storm

195385	4.3	警告	ClamAV ソフォス	-	ClamAV および Sophos Anti-Virus の Microsoft CHM ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1458	2012-07-25 11:08	2012-03-21	Show	GitHub Exploit DB Packet Storm

195386	4.3	警告	ESET マカフィー AVG Technologies Jiangmin Norman FRISK Software International VirusBlokAda クイックヒール・テクノロジーズ・ジャパン株式会社 G Data Software AVAST Software s.r.o. Beijing Rising International Software カスペルスキー Avira Emsisoft シマン	-	複数の製品の TAR ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1457	2012-07-25 11:06	2012-03-21	Show	GitHub Exploit DB Packet Storm

195387	4.4	警告	Puppet	-	Puppet および Puppet Enterprise における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1054	2012-07-25 11:02	2012-05-29	Show	GitHub Exploit DB Packet Storm

195388	6.9	警告	Puppet	-	Puppet および Puppet Enterprise の change_user メソッドにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1053	2012-07-25 11:00	2012-05-29	Show	GitHub Exploit DB Packet Storm

195389	7.5	危険	The PHP Group	-	PHP の php_variables.c 内の php_register_variable_ex 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-0830	2012-07-24 18:02	2012-02-1	Show	GitHub Exploit DB Packet Storm

195390	7.5	危険	PNG Development Group	-	libpng の pngerror.c におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-189 数値処理の問題	CVE-2011-3464	2012-07-24 16:44	2012-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 4, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
270361	-	greed	greed	Buffer overflow in the DownloadLoop function in main.c for greed 0.81p allows remote attackers to execute arbitrary code via a GRX file containing a long filename.	NVD-CWE-Other	CVE-2004-1273	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270362	-	greed	greed	The DownloadLoop function in main.c for greed 0.81p allows remote attackers to execute arbitrary code via a GRX file containing a filename with shell metacharacters.	NVD-CWE-Other	CVE-2004-1274	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270363	-	html2hdml	html2hdml	Buffer overflow in the remove_quote function in convert.c for html2hdml 1.0.3 allows remote attackers to execute arbitrary code via a crafted HTML file.	NVD-CWE-Other	CVE-2004-1275	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270364	-	iglooftp	iglooftp	IglooFTP 0.6.1, when recursively uploading a directory, allows local users to overwrite the files that are being uploaded by creating temporary files with names generated by the tmpnam function, befo…	NVD-CWE-Other	CVE-2004-1276	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270365	-	iglooftp	iglooftp	The download_selection_recursive() function in ftplist.c for IglooFTP 0.6.1 allows remote malicious FTP servers to overwrite arbitrary files via filenames that contain / (slash) characters.	NVD-CWE-Other	CVE-2004-1277	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270366	-	abc2ps john_chambers	abc2ps jcabc2ps	Buffer overflow in the switch_voice function in parse.c for jcabc2ps 20040902 allows remote attackers to execute arbitrary code via a crafted ABC file.	NVD-CWE-Other	CVE-2004-1278	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270367	-	jpegtoavi	jpegtoavi	Buffer overflow in the get_file_list_stdin function in jpegtoavi 1.5 allows remote attackers to execute arbitrary code via a crafted set of JPEG files and filenames.	NVD-CWE-Other	CVE-2004-1279	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270368	-	junkie	junkie_ftp_client	The gui_popup_view_fly function in gui_tview_popup.c for junkie 0.3.1 allows remote malicious FTP servers to execute arbitrary commands via shell metacharacters in a filename.	NVD-CWE-Other	CVE-2004-1280	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270369	-	junkie	junkie_ftp_client	The ftp_retr function in junkie 0.3.1 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in a filename.	NVD-CWE-Other	CVE-2004-1281	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

270370	-	linpopup	linpopup	Buffer overflow in the strexpand function in string.c for LinPopUp 1.2.0 allows remote attackers to execute arbitrary code via a crafted message that is not properly handled during a Reply operation.	NVD-CWE-Other	CVE-2004-1282	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed