Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197721 7.5 危険 codeavalanche - CodeAvalanche Articles における管理者パスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5900 2012-06-26 16:10 2009-01-12 Show GitHub Exploit DB Packet Storm
197722 7.5 危険 codeavalanche - CodeAvalanche FreeForAll における管理者パスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5899 2012-06-26 16:10 2009-01-12 Show GitHub Exploit DB Packet Storm
197723 7.5 危険 codeavalanche - CodeAvalanche Directory における管理者パスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5898 2012-06-26 16:10 2009-01-12 Show GitHub Exploit DB Packet Storm
197724 7.5 危険 codeavalanche - CodeAvalanche FreeWallpaper における管理者パスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5897 2012-06-26 16:10 2009-01-12 Show GitHub Exploit DB Packet Storm
197725 7.5 危険 codeavalanche - CodeAvalanche RateMySite における管理者パスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5896 2012-06-26 16:10 2009-01-12 Show GitHub Exploit DB Packet Storm
197726 7.5 危険 gobbl - Gobbl CMS の admin/auth.php における管理アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-5880 2012-06-26 16:10 2009-01-8 Show GitHub Exploit DB Packet Storm
197727 4.3 警告 FastStone Soft - FastStone Image Viewer におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5870 2012-06-26 16:10 2009-01-8 Show GitHub Exploit DB Packet Storm
197728 5 警告 freelyrics - FreeLyrics の source.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5861 2012-06-26 16:10 2009-01-6 Show GitHub Exploit DB Packet Storm
197729 5.1 警告 constructr - Constructr CMS の backend/template.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5860 2012-06-26 16:10 2009-01-6 Show GitHub Exploit DB Packet Storm
197730 5.1 警告 constructr - Constructr CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5859 2012-06-26 16:10 2009-01-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274651 - symantec enterprise_firewall
raptor_firewall
velociraptor
gateway_security 		FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports,… NVD-CWE-Other
CVE-2002-0538 2011-03-8 11:08 2002-07-3 Show GitHub Exploit DB Packet Storm
274652 - horde imp Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email. NVD-CWE-Other
CVE-2001-1257 2011-03-8 11:07 2001-07-21 Show GitHub Exploit DB Packet Storm
274653 - horde imp Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the … NVD-CWE-Other
CVE-2001-1258 2011-03-8 11:07 2001-07-21 Show GitHub Exploit DB Packet Storm
274654 - network_associates webshield_smtp NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in e… NVD-CWE-Other
CVE-2001-1542 2011-03-8 11:07 2001-12-31 Show GitHub Exploit DB Packet Storm
274655 - compaq tru64 Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423. NVD-CWE-Other
CVE-2002-0093 2011-03-8 11:07 2002-09-5 Show GitHub Exploit DB Packet Storm
274656 - iplanet iplanet_web_server Vulnerability in iPlanet Web Server Enterprise Edition 4.x. NVD-CWE-Other
CVE-2001-0431 2011-03-8 11:05 2001-07-2 Show GitHub Exploit DB Packet Storm
274657 - sendmail sendmail Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mod… NVD-CWE-Other
CVE-2001-0715 2011-03-8 11:05 2001-10-30 Show GitHub Exploit DB Packet Storm
274658 - sco unixware Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages. NVD-CWE-Other
CVE-2000-0351 2011-03-8 11:03 2001-03-12 Show GitHub Exploit DB Packet Storm
274659 - sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd. NVD-CWE-Other
CVE-1999-1425 2011-03-8 11:02 1997-11-10 Show GitHub Exploit DB Packet Storm
274660 - freebsd
netbsd
openbsd 		freebsd
netbsd
openbsd 		The BSD make program allows local users to modify files via a symlink attack when the -j option is being used. NVD-CWE-Other
CVE-2000-0092 2011-03-8 11:02 2000-01-19 Show GitHub Exploit DB Packet Storm