Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197711 7.5 危険 Activewebsoftwares - Active Business Directory の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5972 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
197712 7.5 危険 globsy - Globsy の globsy_edit.php における任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5966 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
197713 10 危険 gravity-gtd - Gravity GTD の library/setup/rpc.php における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5963 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
197714 6.8 警告 gravity-gtd - Gravity GTD の library/setup/rpc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5962 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
197715 7.5 危険 Activewebsoftwares - Active Test の start.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5959 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
197716 7.5 危険 Activewebsoftwares - Active Test における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5958 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
197717 5 警告 aspapps - ASP Template Creature におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5951 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
197718 7.5 危険 aspapps - ASP Template Creature の media/media_level.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5950 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
197719 7.5 危険 bncwi - BNCwi の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5948 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
197720 5 警告 factosystem - Facto におけるパスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5935 2012-06-26 16:10 2009-01-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267811 - sun java_system_content_delivery_server Sun Java System Content Delivery Server 5.0 and 5.0 PU1 allows remote attackers to obtain sensitive information regarding "content details" via unspecified vectors. NVD-CWE-Other
CVE-2007-0114 2017-07-29 10:29 2007-01-9 Show GitHub Exploit DB Packet Storm
267812 - kaspersky_lab kaspersky_antivirus_engine Kaspersky Labs Antivirus Engine 6.0 for Windows and 5.5-10 for Linux before 20070102 enter an infinite loop upon encountering an invalid NumberOfRvaAndSizes value in the Optional Windows Header of a … NVD-CWE-Other
CVE-2007-0125 2017-07-29 10:29 2007-01-9 Show GitHub Exploit DB Packet Storm
267813 - opera opera_browser Heap-based buffer overflow in Opera 9.02 allows remote attackers to execute arbitrary code via a JPEG file with an invalid number of index bytes in the Define Huffman Table (DHT) marker. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-0126 2017-07-29 10:29 2007-01-9 Show GitHub Exploit DB Packet Storm
267814 - jamwiki jamwiki JAMWiki before 0.5.0 does not properly check permissions during moves of "read-only or admin-only topics," which allows remote attackers to make unauthorized changes to the wiki. NVD-CWE-Other
CVE-2007-0131 2017-07-29 10:29 2007-01-9 Show GitHub Exploit DB Packet Storm
267815 - serendipitynz serene_bach
serene_bach_sb 		Cross-site scripting (XSS) vulnerability in SimpleBoxes/SerendipityNZ Serene Bach 2.05R and earlier, and 2.08D and earlier in the 2.08 series; and (2) sb 1.13D and earlier, and 1.18R and earlier in t… NVD-CWE-Other
CVE-2007-0137 2017-07-29 10:29 2007-01-9 Show GitHub Exploit DB Packet Storm
267816 - tin tin Multiple buffer overflows in TIN before 1.8.2 have unspecified impact and attack vectors, a different vulnerability than CVE-2006-0804. NVD-CWE-Other
CVE-2006-6122 2017-07-29 10:29 2006-11-27 Show GitHub Exploit DB Packet Storm
267817 - coppermine coppermine_photo_gallery Coppermine Photo Gallery (CPG) 1.4.8 stable, with register_globals enabled, allows remote attackers to bypass XSS protection and set arbitrary variables via a query string that causes the variable to… NVD-CWE-Other
CVE-2006-6123 2017-07-29 10:29 2006-11-27 Show GitHub Exploit DB Packet Storm
267818 - biba_software seleniumserver_web_server Cross-site scripting (XSS) vulnerability in SeleniumServer Web Server 1.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this informa… NVD-CWE-Other
CVE-2006-6124 2017-07-29 10:29 2006-11-27 Show GitHub Exploit DB Packet Storm
267819 - apple mac_os_x
mac_os_x_server 		Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a malformed load_command data structure. NVD-CWE-Other
CVE-2006-6126 2017-07-29 10:29 2006-11-27 Show GitHub Exploit DB Packet Storm
267820 - apple mac_os_x
mac_os_x_server 		Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event … NVD-CWE-Other
CVE-2006-6127 2017-07-29 10:29 2006-11-27 Show GitHub Exploit DB Packet Storm