Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197641 7.5 危険 dadamailproject
Joomla!		 - Joomla! 用の Dada Mail Manager コンポーネントの config.dadamail.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6221 2012-06-26 16:10 2009-02-20 Show GitHub Exploit DB Packet Storm
197642 4.3 警告 extrakt - Extrakt Framework の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6217 2012-06-26 16:10 2009-02-20 Show GitHub Exploit DB Packet Storm
197643 7.5 危険 bookingcentre - Venalsur Booking Centre Booking System の cadena_ofertas_ext.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6216 2012-06-26 16:10 2009-02-20 Show GitHub Exploit DB Packet Storm
197644 4.3 警告 bookingcentre - Venalsur Booking Centre Booking System の cadena_ofertas_ext.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6215 2012-06-26 16:10 2009-02-20 Show GitHub Exploit DB Packet Storm
197645 7.5 危険 dream4 - dream4 Koobi の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6210 2012-06-26 16:10 2009-02-19 Show GitHub Exploit DB Packet Storm
197646 4 警告 2532gigs - 2532designs 2532|Gigs における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6199 2012-06-26 16:10 2009-02-19 Show GitHub Exploit DB Packet Storm
197647 4.3 警告 eeb-welt - EEBCMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6190 2012-06-26 16:10 2009-02-19 Show GitHub Exploit DB Packet Storm
197648 7.5 危険 GForge Group - GForge における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6189 2012-06-26 16:10 2009-02-19 Show GitHub Exploit DB Packet Storm
197649 7.5 危険 GForge Group - GForge の people/editprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6188 2012-06-26 16:10 2009-02-19 Show GitHub Exploit DB Packet Storm
197650 7.5 危険 GForge Group - GForge の frs/shownotes.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6187 2012-06-26 16:10 2009-02-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 5, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268431 - php_gift_registry phpgiftreg Multiple SQL injection vulnerabilities in index.php in PHP Gift Registry (phpGiftReg) 1.4.0, and possibly other versions before 1.5.0b1, allow remote attackers to execute arbitrary SQL commands via t… NVD-CWE-Other
CVE-2005-0292 2017-07-11 10:32 2005-01-17 Show GitHub Exploit DB Packet Storm
268432 - minis minis Directory traversal vulnerability in minis.php in Minis 0.2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the month parameter. NVD-CWE-Other
CVE-2005-0293 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
268433 - minis minis minis.php in Minis 0.2.1 allows remote attackers to cause a denial of service (infinite loop) via an HTTP request for a file that the web server does not have permission to read, as demonstrated usin… NVD-CWE-Other
CVE-2005-0294 2017-07-11 10:32 2005-01-16 Show GitHub Exploit DB Packet Storm
268434 - inca nprotect_gameguard npptnt2.sys in nProtect Gameguard provides unrestricted I/O to any process that calls it, which allows local users to gain privileges. NVD-CWE-Other
CVE-2005-0295 2017-07-11 10:32 2005-01-17 Show GitHub Exploit DB Packet Storm
268435 - oracle database_server The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive … NVD-CWE-Other
CVE-2005-0298 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
268436 - gforge gforge Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in the (1) dir parameter to controller.php or (2) dir_name paramet… NVD-CWE-Other
CVE-2005-0299 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
268437 - jsboard jsboard Directory traversal vulnerability in session.php in JSBoard 2.0.9 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the table parameter. NVD-CWE-Other
CVE-2005-0300 2017-07-11 10:32 2005-01-20 Show GitHub Exploit DB Packet Storm
268438 - comersus_open_technologies comersus_backoffice_lite comersus_backoffice_install10.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to bypass authentication and gain privileges via a direct request to the program. NVD-CWE-Other
CVE-2005-0301 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
268439 - comersus_open_technologies comersus_backoffice_lite SQL injection vulnerability in default.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to execute arbitrary SQL commands via the referer field in the HTTP header. NVD-CWE-Other
CVE-2005-0302 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
268440 - comersus_open_technologies comersus_backoffice_lite Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_supportError.asp or (2) comersus_backofficelite_supportError.asp in BackOffice Lite 6.0 and 6.01 allow remote attackers to inject a… NVD-CWE-Other
CVE-2005-0303 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm