Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 29, 2025, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198141 7.5 危険 emusoft - eMuSOFT emuCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2891 2012-06-26 16:02 2008-06-27 Show GitHub Exploit DB Packet Storm
198142 6.8 警告 chaozzatwork - chaozz@work FubarForum の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2887 2012-06-26 16:02 2008-06-27 Show GitHub Exploit DB Packet Storm
198143 7.5 危険 ASP indir - sHibby sHop の upgrade.asp におけるファイルを更新される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2882 2012-06-26 16:02 2008-06-26 Show GitHub Exploit DB Packet Storm
198144 6.4 警告 benjacms - Benja CMS におけるメニューを追加または削除される脆弱性 CWE-287
不適切な認証 		CVE-2008-2879 2012-06-26 16:02 2008-06-26 Show GitHub Exploit DB Packet Storm
198145 6.8 警告 cmsworks - cmsWorks における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2877 2012-06-26 16:02 2008-06-26 Show GitHub Exploit DB Packet Storm
198146 5 警告 ASP indir - sHibby sHop におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2873 2012-06-26 16:02 2008-06-26 Show GitHub Exploit DB Packet Storm
198147 7.5 危険 ASP indir - sHibby sHop の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2872 2012-06-26 16:02 2008-06-26 Show GitHub Exploit DB Packet Storm
198148 7.5 危険 e-topbiz - E-topbiz Link ADS の out.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2869 2012-06-26 16:02 2008-06-26 Show GitHub Exploit DB Packet Storm
198149 7.5 危険 duware - DUware DUcalendar の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2868 2012-06-26 16:02 2008-06-26 Show GitHub Exploit DB Packet Storm
198150 7.5 危険 e-topbiz - E-topbiz Viral DX の adclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2867 2012-06-26 16:02 2008-06-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278651 - jbrowser jbrowser Directory traversal vulnerability in browser.php in JBrowser 1.0 through 2.1 allows remote attackers to read arbitrary files via the directory parameter. NOTE: the provenance of this information is … CWE-22
Path Traversal 		CVE-2004-2750 2008-09-6 05:45 2004-12-31 Show GitHub Exploit DB Packet Storm
278652 - postnuke_software_foundation postnuke Cross-site scripting (XSS) vulnerability in the Downloads module in PostNuke up to 0.726, and possibly later versions, allows remote attackers to inject arbitrary HTML and web script via the ttitle p… CWE-79
Cross-site Scripting 		CVE-2004-2752 2008-09-6 05:45 2004-12-31 Show GitHub Exploit DB Packet Storm
278653 - yabb yabb_se SQL injection vulnerability in SSI.php in YaBB SE 1.5.4, 1.5.3, and possibly other versions before 1.5.5 allows remote attackers to execute arbitrary SQL commands via the ID_MEMBER parameter to the (… CWE-89
SQL Injection 		CVE-2004-2754 2008-09-6 05:45 2004-12-31 Show GitHub Exploit DB Packet Storm
278654 - xoops xoops Cross-site scripting (XSS) vulnerability in viewtopic.php in Xoops 2.x, possibly 2 through 2.0.5, allows remote attackers to inject arbitrary web script or HTML via the (1) forum and (2) topic_id par… CWE-79
Cross-site Scripting 		CVE-2004-2756 2008-09-6 05:45 2004-12-31 Show GitHub Exploit DB Packet Storm
278655 - securecomputing sidewinder_g2 Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (CPU consumption) via delayed responses to DNS queries. NVD-CWE-Other
CVE-2004-2399 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
278656 - phpgroupware phpgroupware Unknown "overflow" in the phpgw_config table for phpGroupWare before 0.9.14.002 has unknown attack vectors and impact. NVD-CWE-Other
CVE-2004-2406 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
278657 - phpgroupware phpgroupware Unknown vulnerability in phpGroupWare before 0.9.14.002 has unknown attack vectors and impact, related to a "security hole" in the Setup/Config functionality. NVD-CWE-Other
CVE-2004-2407 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
278658 - samhain_labs samhain Unknown vulnerability in sh_hash_compdata for Samhain 1.8.9 through 2.0.1 might allow attackers to cause a denial of service (null pointer dereference). NVD-CWE-Other
CVE-2004-2410 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
278659 - axis 2100_network_camera
2110_network_camera
2120_network_camera
2130_ptz_network_camera
230_mpeg2_video_server
2400_video_server
2401_video_server
2411_video_server
2420_network_c… 		Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to obtain sensitive information via direct requests to (1) admin/getparam.cgi, (2) admin/systemlog.cgi… NVD-CWE-Other
CVE-2004-2427 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
278660 - gnu gnubiff Unknown vulnerability in gnubiff 1.2.0 and earlier allows local users to obtain passwords, related to the password table. NVD-CWE-Other
CVE-2004-2459 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm