Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
196831 6.9 警告 Novell - SUSE openSUSE Factory における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1551 2012-03-27 18:43 2011-03-30 Show GitHub Exploit DB Packet Storm
196832 6.3 警告 Gentoo Linux - logrotate のデフォルト設定におけるシンボリックリンク攻撃を誘発する脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1550 2012-03-27 18:43 2011-03-30 Show GitHub Exploit DB Packet Storm
196833 6.3 警告 Gentoo Linux - logrotate のデフォルト設定におけるシンボリックリンク攻撃を誘発する脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1549 2012-03-27 18:43 2011-03-30 Show GitHub Exploit DB Packet Storm
196834 3.5 注意 Liferay
Apache Software Foundation
- Liferay Portal CE におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1570 2012-03-27 18:43 2010-09-13 Show GitHub Exploit DB Packet Storm
196835 6.3 警告 Gentoo Linux - logrotate のデフォルト設定におけるシンボリックリンク攻撃を誘発する脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1548 2012-03-27 18:43 2011-03-30 Show GitHub Exploit DB Packet Storm
196836 7.5 危険 Andy's PHP Knowledgebase Project - Aphpkb における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-1546 2012-03-27 18:43 2011-03-16 Show GitHub Exploit DB Packet Storm
196837 6.8 警告 ヒューレット・パッカード - HP Insight Control Performance Management におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-1545 2012-03-27 18:43 2011-05-3 Show GitHub Exploit DB Packet Storm
196838 6 警告 ヒューレット・パッカード - HP Insight Control Performance Management における権限を取得される脆弱性 CWE-noinfo
情報不足
CVE-2011-1544 2012-03-27 18:43 2011-05-3 Show GitHub Exploit DB Packet Storm
196839 4.3 警告 ヒューレット・パッカード - HP SIM におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-1543 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
196840 4.3 警告 ヒューレット・パッカード - HP SIM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1542 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 5:17 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258591 - pidgin pidgin Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service (application crash) via a crafted timestamp value in an XMPP message. CWE-189
Numeric Errors
CVE-2013-6477 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258592 - pidgin pidgin gtkimhtml.c in Pidgin before 2.10.8 does not properly interact with underlying library support for wide Pango layouts, which allows user-assisted remote attackers to cause a denial of service (applic… CWE-20
 Improper Input Validation 
CVE-2013-6478 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258593 - pidgin pidgin util.c in libpurple in Pidgin before 2.10.8 does not properly allocate memory for HTTP responses that are inconsistent with the Content-Length header, which allows remote HTTP servers to cause a deni… CWE-399
 Resource Management Errors
CVE-2013-6479 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258594 - pidgin pidgin libpurple/protocols/yahoo/libymsg.c in Pidgin before 2.10.8 allows remote attackers to cause a denial of service (crash) via a Yahoo! P2P message with a crafted length field, which triggers a buffer … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-6481 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258595 - pidgin pidgin Pidgin before 2.10.8 allows remote MSN servers to cause a denial of service (NULL pointer dereference and crash) via a crafted (1) SOAP response, (2) OIM XML response, or (3) Content-Length header. CWE-20
 Improper Input Validation 
CVE-2013-6482 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258596 - pidgin pidgin The XMPP protocol plugin in libpurple in Pidgin before 2.10.8 does not properly determine whether the from address in an iq reply is consistent with the to address in an iq request, which allows remo… CWE-20
 Improper Input Validation 
CVE-2013-6483 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258597 - pidgin pidgin The STUN protocol implementation in libpurple in Pidgin before 2.10.8 allows remote STUN servers to cause a denial of service (out-of-bounds write operation and application crash) by triggering a soc… CWE-20
 Improper Input Validation 
CVE-2013-6484 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258598 - pidgin pidgin Buffer overflow in util.c in libpurple in Pidgin before 2.10.8 allows remote HTTP servers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid chu… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-6485 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258599 - pidgin pidgin gtkutils.c in Pidgin before 2.10.8 on Windows allows user-assisted remote attackers to execute arbitrary programs via a message containing a file: URL that is improperly handled during construction o… CWE-20
 Improper Input Validation 
CVE-2013-6486 2014-03-16 13:42 2014-02-7 Show GitHub Exploit DB Packet Storm
258600 - redhat icedtea-web The LiveConnect implementation in plugin/icedteanp/IcedTeaNPPlugin.cc in IcedTea-Web before 1.4.2 allows local users to read the messages between a Java applet and a web browser by pre-creating a tem… CWE-200
Information Exposure
CVE-2013-6493 2014-03-16 13:42 2014-03-4 Show GitHub Exploit DB Packet Storm