Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196031 7.5 危険 fuzzylime - FuzzyLime の code/track.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5291 2012-06-26 16:03 2008-12-1 Show GitHub Exploit DB Packet Storm
196032 6.4 警告 ghh - GHH File Upload Manager におけるアップロードされたファイルを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5283 2012-06-26 16:03 2008-11-28 Show GitHub Exploit DB Packet Storm
196033 6.8 警告 dmitry baryshev - ksquirrel-libs の kernel/kls_hdr/fmt_codec_hdr.cpp におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5263 2012-06-26 16:03 2009-02-26 Show GitHub Exploit DB Packet Storm
196034 7.5 危険 devil - DevIL の src-IL/src/il_hdr.c の iGetHdrHeader 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5262 2012-06-26 16:03 2009-01-13 Show GitHub Exploit DB Packet Storm
196035 9.3 危険 アクシスコミュニケーションズ - AXIS Camera Control の CamImage.CamImage.1 ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5260 2012-06-26 16:03 2009-01-26 Show GitHub Exploit DB Packet Storm
196036 9.3 危険 DivX - DivX Web Player における整数符号化エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2008-5259 2012-06-26 16:03 2009-04-16 Show GitHub Exploit DB Packet Storm
196037 7.5 危険 aspportal - ASPPortal の content/forums/reply.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5268 2012-06-26 16:03 2008-11-28 Show GitHub Exploit DB Packet Storm
196038 6.8 警告 experts - Experts の answer.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5267 2012-06-26 16:03 2008-11-28 Show GitHub Exploit DB Packet Storm
196039 7.5 危険 airvae - Airvae Commerce における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5223 2012-06-26 16:03 2008-11-25 Show GitHub Exploit DB Packet Storm
196040 7.5 危険 dvbbs - Dvbbs の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5222 2012-06-26 16:03 2008-11-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 15, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275281 - firebirdsql firebird fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores. NVD-CWE-Other
CVE-2006-7211 2008-09-6 06:16 2007-06-30 Show GitHub Exploit DB Packet Storm
275282 - firebirdsql firebird Multiple buffer overflows in Firebird 1.5, one of which affects WNET, have unknown impact and attack vectors. NOTE: this issue might overlap CVE-2006-1240. NVD-CWE-Other
CVE-2006-7212 2008-09-6 06:16 2007-06-30 Show GitHub Exploit DB Packet Storm
275283 - firebirdsql firebird Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database. NVD-CWE-Other
CVE-2006-7213 2008-09-6 06:16 2007-06-30 Show GitHub Exploit DB Packet Storm
275284 - firebirdsql firebird Multiple unspecified vulnerabilities in Firebird 1.5 allow remote attackers to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of se… NVD-CWE-Other
CVE-2006-7214 2008-09-6 06:16 2007-06-30 Show GitHub Exploit DB Packet Storm
275285 - intel core_2_duo_e4000
core_2_duo_e6000
core_2_extreme_x6800 		The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the… NVD-CWE-Other
CVE-2006-7215 2008-09-6 06:16 2007-07-4 Show GitHub Exploit DB Packet Storm
275286 - apache derby Apache Derby before 10.2.1.6 does not determine privilege requirements for lock table statements at compilation time, and consequently does not enforce privilege requirements at execution time, which… NVD-CWE-Other
CVE-2006-7216 2008-09-6 06:16 2007-07-6 Show GitHub Exploit DB Packet Storm
275287 - apache derby Apache Derby before 10.2.1.6 does not determine schema privilege requirements during the DropSchemaNode bind phase, which allows remote authenticated users to execute arbitrary drop schema statements… NVD-CWE-Other
CVE-2006-7217 2008-09-6 06:16 2007-07-6 Show GitHub Exploit DB Packet Storm
275288 - sap saplpd
sapsprint 		Unspecified vulnerability in SAP SAPLPD and SAPSPRINT allows remote attackers to cause a denial of service (application crash) via a certain print job request. NOTE: the provenance of this informati… NVD-CWE-Other
CVE-2006-7220 2008-09-6 06:16 2007-07-10 Show GitHub Exploit DB Packet Storm
275289 - xwiki xwiki PreviewAction in XWiki 0.9.543 through 0.9.1252 does not set the Author field to the identity of the user who last modified a document, which allows remote authenticated users without programming rig… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-7223 2008-09-6 06:16 2007-09-14 Show GitHub Exploit DB Packet Storm
275290 - scriptphp pronews admin/change.php in ProNews 1.5 does not check whether a user is permitted to change news items, which allows remote attackers to add or delete information within an item, and possibly have other imp… NVD-CWE-Other
CVE-2006-6580 2008-09-6 06:15 2006-12-16 Show GitHub Exploit DB Packet Storm