Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196471 7.5 危険 daniel ptzinger
TYPO3 Association		 - TYPO3 用の Document Directorys 拡張機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4393 2012-06-26 16:18 2009-12-22 Show GitHub Exploit DB Packet Storm
196472 4.3 警告 daniel regelein
TYPO3 Association		 - TYPO3 用の File list 拡張機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4391 2012-06-26 16:18 2009-12-22 Show GitHub Exploit DB Packet Storm
196473 4.3 警告 frank krger
TYPO3 Association		 - TYPO3 の nl_listman 拡張におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4388 2012-06-26 16:18 2009-12-22 Show GitHub Exploit DB Packet Storm
196474 7.5 危険 bookingcentre - Venalsur Booking Centre Booking System の hotel_tiempolibre_ext.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4386 2012-06-26 16:18 2009-12-22 Show GitHub Exploit DB Packet Storm
196475 7.5 危険 AlienVault - AlienVault OSSIM の repository/repository_attachment.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4375 2012-06-26 16:18 2009-12-21 Show GitHub Exploit DB Packet Storm
196476 7.5 危険 AlienVault - AlienVault OSSIM の repository/repository_attachment.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4374 2012-06-26 16:18 2009-12-21 Show GitHub Exploit DB Packet Storm
196477 7.5 危険 AlienVault - AlienVault OSSIM の repository/repository_attachment.php における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2009-4373 2012-06-26 16:18 2009-12-21 Show GitHub Exploit DB Packet Storm
196478 7.5 危険 AlienVault - AlienVault OSSIM における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4372 2012-06-26 16:18 2009-12-21 Show GitHub Exploit DB Packet Storm
196479 3.5 注意 Drupal - Drupal Core の Locale モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4371 2012-06-26 16:18 2009-12-21 Show GitHub Exploit DB Packet Storm
196480 7.5 危険 fr.simon rundell
TYPO3 Association		 - TYPO3 の ste_parish_admin 拡張における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4401 2012-06-26 16:18 2008-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269081 - phpmyadmin phpmyadmin Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote attackers to execute arbitrary PHP code via a crafted table name. NVD-CWE-Other
CVE-2004-2631 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269082 - phpmyadmin phpmyadmin phpMyAdmin 2.5.1 up to 2.5.7 allows remote attackers to modify configuration settings and gain unauthorized access to MySQL servers via modified $cfg['Servers'] variables. NVD-CWE-Other
CVE-2004-2632 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269083 - arjohn_kampman sesame_rdf_container Unspecified vulnerability in Sesamie 1.0 allows remote anonymous attackers to gain access to repositories of other users via unknown vectors. NVD-CWE-Other
CVE-2004-2633 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269084 - - - The (1) bos.rte.serv_aid or (2) bos.rte.console filesets in IBM AIX 5.1 and 5.2 allow local users to overwrite arbitrary files via a symlink attack on temporary files via unknown attack vectors. NVD-CWE-Other
CVE-2004-2634 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269085 - mcafee security_installer_control_system An ActiveX control for McAfee Security Installer Control System 4.0.0.81 allows remote attackers to access the Windows registry via web pages that use the control's RegQueryValue() method. NVD-CWE-Other
CVE-2004-2635 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269086 - - - TinyWeb 1.9 allows remote attackers to read source code of scripts via "/./" in the URL. NVD-CWE-Other
CVE-2004-2636 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269087 - zonet zsr1104we_wireless_router_runtime_code The NAT implementation in Zonet ZSR1104WE Wireless Router Runtime Code Version 2.41 converts IP addresses of inbound connections to the IP address of the router, which allows remote attackers to bypa… NVD-CWE-Other
CVE-2004-2637 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269088 - oscommerce oscommerce The Admin Access With Levels plugin in osCommerce 1.5.1 allows remote attackers to access files in the "admin/" directory by modifying the in_login parameter to a non-zero value. NVD-CWE-Other
CVE-2004-2638 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269089 - drew_withers journalness Unspecified vulnerability in Journalness 3.0.7 and earlier allows remote attackers to create or modify posts via unknown attack vectors. NVD-CWE-Other
CVE-2004-2639 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
269090 - - - Directory traversal vulnerability in lstat.cgi in LinuxStat before 2.3.1 allows remote attackers to read arbitrary files via (1) .. (dot dot) sequences or (2) absolute paths to the template parameter. NVD-CWE-Other
CVE-2004-2640 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm