Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 8, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198651	2.6	注意	アップル	-	Java 用 QuickTime における重要な情報を取得される脆弱性	-	CVE-2006-5681	2012-06-26 15:37	2006-12-19	Show	GitHub Exploit DB Packet Storm

198652	5	警告	FreeBSD	-	FreeBSD の libarchive ライブラリにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5680	2012-06-26 15:37	2006-11-8	Show	GitHub Exploit DB Packet Storm

198653	7.2	危険	Adaptive Computing	-	TORQUE Resource Manager の pbs_mom の resmom/start_exec.c における任意のファイルを作成される脆弱性	-	CVE-2006-5677	2012-06-26 15:37	2006-11-3	Show	GitHub Exploit DB Packet Storm

198654	7.5	危険	free php scripts	-	Free Image Hosting の contact.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5671	2012-06-26 15:37	2006-11-2	Show	GitHub Exploit DB Packet Storm

198655	7.5	危険	free php scripts	-	Free Image Hosting の forgot_pass.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5670	2012-06-26 15:37	2006-11-2	Show	GitHub Exploit DB Packet Storm

198656	7.5	危険	gepi	-	Gepi の gestion/savebackup.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5669	2012-06-26 15:37	2006-11-2	Show	GitHub Exploit DB Packet Storm

198657	7.5	危険	Ampache.org	-	Ampache におけるゲストのアクセス権を取得される脆弱性	-	CVE-2006-5668	2012-06-26 15:37	2006-10-16	Show	GitHub Exploit DB Packet Storm

198658	7.5	危険	asmir alic	-	E-Annu の includes/menu.inc.php における SQL インジェクションの脆弱性	-	CVE-2006-5666	2012-06-26 15:37	2006-11-2	Show	GitHub Exploit DB Packet Storm

198659	7.5	危険	evandor	-	eNM における SQL インジェクションの脆弱性	-	CVE-2006-5662	2012-06-26 15:37	2006-11-2	Show	GitHub Exploit DB Packet Storm

198660	7.5	危険	シスコシステムズ	-	CSAMC における認証の要件を回避される脆弱性	-	CVE-2006-5660	2012-06-26 15:37	2006-11-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 8, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268161	-	-	-	Web Forums Server 1.6 and 2.0 Power Pack stores passwords in plaintext in the Username.ini file, which allows local users to gain privileges.	NVD-CWE-Other	CVE-2004-1497	2016-10-18 11:55	2004-12-31	Show	GitHub Exploit DB Packet Storm

268162	-	webhost_automation	helm_control_panel	SQL injection vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary SQL commands via the messageToUserAccNum parameter.	NVD-CWE-Other	CVE-2004-1498	2016-10-18 11:55	2004-12-31	Show	GitHub Exploit DB Packet Storm

268163	-	jelsoft	vbulletin	SQL injection vulnerability in (1) ttlast.php and (2) last10.php in vBulletin 3.0.x allows remote attackers to execute arbitrary SQL statements via the fsel parameter, as demonstrated using last.php.	NVD-CWE-Other	CVE-2004-1515	2016-10-18 11:55	2004-12-31	Show	GitHub Exploit DB Packet Storm

268164	-	new_media_generation	hired_team_trial	Hired Team: Trial 2.0 and earlier and 2.200 does not limit how game players can kick other players off the server, including the administrator.	NVD-CWE-Other	CVE-2004-1526	2016-10-18 11:55	2004-12-31	Show	GitHub Exploit DB Packet Storm

268165	-	mediawiki	mediawiki	MediaWiki 1.3.8 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.rar, which allows remote attackers to upload and execute arbitrary c…	NVD-CWE-Other	CVE-2004-1405	2016-10-18 11:54	2004-12-31	Show	GitHub Exploit DB Packet Storm

268166	-	singapore	image_gallery_web_application	Multiple cross-site scripting vulnerabilities in Image Gallery Web Application 0.9.10 allow remote attackers to inject arbitrary web script or HTML.	NVD-CWE-Other	CVE-2004-1409	2016-10-18 11:54	2004-12-31	Show	GitHub Exploit DB Packet Storm

268167	-	gadu-gadu	gadu-gadu_instant_messenger	Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing…	NVD-CWE-Other	CVE-2004-1410	2016-10-18 11:54	2004-12-31	Show	GitHub Exploit DB Packet Storm

268168	-	gadu-gadu	gadu-gadu_instant_messenger	Gadu-Gadu 6.1 build 156 allows remote attackers to cause a denial of service (application hang) via a message that contains many special strings that are converted to images.	NVD-CWE-Other	CVE-2004-1414	2016-10-18 11:54	2004-12-31	Show	GitHub Exploit DB Packet Storm

268169	-	korweblog	korweblog	Directory traversal vulnerability in index.php in KorWeblog 1.6.2-cvs and earlier allows remote attackers to read arbitrary files and execute arbitrary PHP files via .. (dot dot) sequences in the lng…	NVD-CWE-Other	CVE-2004-1426	2016-10-18 11:54	2004-12-31	Show	GitHub Exploit DB Packet Storm

268170	-	asante	fm2008_managed_ethernet_switch	The configuration backup in Asante FM2008 running firmware 1.06 stores the username and password in cleartext, which could allow remote attackers to gain unauthorized access.	NVD-CWE-Other	CVE-2004-1321	2016-10-18 11:53	2004-12-15	Show	GitHub Exploit DB Packet Storm