Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196711 7.5 危険 cbauthority - CBAuthority の main.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3205 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
196712 7.5 危険 aj square - AJ Auction Pro OOPD の store.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3203 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
196713 4.3 警告 digioz - DigiOz Guestbook の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3189 2012-06-26 16:18 2009-09-15 Show GitHub Exploit DB Packet Storm
196714 7.5 危険 david frohlich - phpSANE の save.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3188 2012-06-26 16:18 2009-09-15 Show GitHub Exploit DB Packet Storm
196715 7.5 危険 Comsenz Technology - Discuz! の Crazy Star プラグインの plugin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3185 2012-06-26 16:18 2009-09-15 Show GitHub Exploit DB Packet Storm
196716 7.5 危険 grapari - E-Gold Game Series の Pirate of The Caribbean における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3184 2012-06-26 16:18 2009-09-15 Show GitHub Exploit DB Packet Storm
196717 6.8 警告 anantasoft - Anantasoft Gazelle CMS の admin/editor/filemanager/browser.html における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3182 2012-06-26 16:18 2009-09-11 Show GitHub Exploit DB Packet Storm
196718 5 警告 anantasoft - Anantasoft Gazelle CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3181 2012-06-26 16:18 2009-09-11 Show GitHub Exploit DB Packet Storm
196719 7.5 危険 anantasoft - Anantasoft Gazelle CMS における他のユーザのパスワードリセットを実行される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-3180 2012-06-26 16:18 2009-09-11 Show GitHub Exploit DB Packet Storm
196720 7.5 危険 boldfx - Model Agency Manager PRO における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3175 2012-06-26 16:18 2009-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274651 - symantec enterprise_firewall
raptor_firewall
velociraptor
gateway_security 		FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports,… NVD-CWE-Other
CVE-2002-0538 2011-03-8 11:08 2002-07-3 Show GitHub Exploit DB Packet Storm
274652 - horde imp Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email. NVD-CWE-Other
CVE-2001-1257 2011-03-8 11:07 2001-07-21 Show GitHub Exploit DB Packet Storm
274653 - horde imp Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the … NVD-CWE-Other
CVE-2001-1258 2011-03-8 11:07 2001-07-21 Show GitHub Exploit DB Packet Storm
274654 - network_associates webshield_smtp NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in e… NVD-CWE-Other
CVE-2001-1542 2011-03-8 11:07 2001-12-31 Show GitHub Exploit DB Packet Storm
274655 - compaq tru64 Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423. NVD-CWE-Other
CVE-2002-0093 2011-03-8 11:07 2002-09-5 Show GitHub Exploit DB Packet Storm
274656 - iplanet iplanet_web_server Vulnerability in iPlanet Web Server Enterprise Edition 4.x. NVD-CWE-Other
CVE-2001-0431 2011-03-8 11:05 2001-07-2 Show GitHub Exploit DB Packet Storm
274657 - sendmail sendmail Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mod… NVD-CWE-Other
CVE-2001-0715 2011-03-8 11:05 2001-10-30 Show GitHub Exploit DB Packet Storm
274658 - sco unixware Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages. NVD-CWE-Other
CVE-2000-0351 2011-03-8 11:03 2001-03-12 Show GitHub Exploit DB Packet Storm
274659 - sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd. NVD-CWE-Other
CVE-1999-1425 2011-03-8 11:02 1997-11-10 Show GitHub Exploit DB Packet Storm
274660 - freebsd
netbsd
openbsd 		freebsd
netbsd
openbsd 		The BSD make program allows local users to modify files via a symlink attack when the -j option is being used. NVD-CWE-Other
CVE-2000-0092 2011-03-8 11:02 2000-01-19 Show GitHub Exploit DB Packet Storm