Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 15, 2024, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199201 6.9 警告 FreeBSD - FreeBSD の openpam_configure.c におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4122 2012-01-13 18:14 2011-11-17 Show GitHub Exploit DB Packet Storm
199202 4 警告 Openswan
レッドハット		 - Openswan におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4073 2012-01-13 18:10 2011-10-28 Show GitHub Exploit DB Packet Storm
199203 7.5 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4372 2012-01-13 18:06 2012-01-10 Show GitHub Exploit DB Packet Storm
199204 7.5 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4370 2012-01-13 18:01 2012-01-10 Show GitHub Exploit DB Packet Storm
199205 7.5 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4373 2012-01-13 17:53 2012-01-10 Show GitHub Exploit DB Packet Storm
199206 7.5 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4371 2012-01-13 16:50 2012-01-10 Show GitHub Exploit DB Packet Storm
199207 9.3 危険 マイクロソフト - Microsoft Windows のカーネルにおける SafeSEH セキュリティ機能を回避される脆弱性 CWE-DesignError
CVE-2012-0001 2012-01-13 16:16 2012-01-10 Show GitHub Exploit DB Packet Storm
199208 9.3 危険 マイクロソフト - Microsoft Windows の winmm.dll における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-0003 2012-01-13 16:10 2012-01-10 Show GitHub Exploit DB Packet Storm
199209 9.3 危険 マイクロソフト - Microsoft Windows の DirectShow における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-0004 2012-01-13 16:07 2012-01-10 Show GitHub Exploit DB Packet Storm
199210 4.3 警告 Cogent Real-Time Systems Inc. - Cogent DataHub におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0309 2012-01-13 15:59 2012-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 15, 2024, 4:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
260161 - liftweb lift The JsonParser class in json/JsonParser.scala in Lift before 2.5 interprets a certain end-index value as a length value, which allows remote authenticated users to obtain sensitive information from o… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3300 2013-07-29 22:59 2013-07-29 Show GitHub Exploit DB Packet Storm
260162 - trustgo antivirus_\&_mobile_security The TrustGo Antivirus & Mobile Security application before 1.3.6 for Android allows attackers to cause a denial of service (application crash) via a crafted application that sends an intent to com.tr… CWE-20
 Improper Input Validation  		CVE-2013-3580 2013-07-29 22:59 2013-07-29 Show GitHub Exploit DB Packet Storm
260163 - nashtech easy_php_calendar Multiple cross-site scripting (XSS) vulnerabilities in (1) index.php and (2) datePicker.php in Easy PHP Calendar 6.x and 7.x before 7.0.13 allow remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2013-1955 2013-07-29 13:00 2013-07-20 Show GitHub Exploit DB Packet Storm
260164 - emc avamar_server
avamar_server_virtual_edition 		EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authen… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3274 2013-07-29 13:00 2013-07-19 Show GitHub Exploit DB Packet Storm
260165 - emc avamar_server
avamar_server_virtual_edition 		EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obt… CWE-20
 Improper Input Validation  		CVE-2013-3275 2013-07-29 13:00 2013-07-19 Show GitHub Exploit DB Packet Storm
260166 - autodesk autocad
autocad_architecture
autocad_civil_3d
autocad_ecscad
autocad_electrical
autocad_lt
autocad_map_3d
autocad_mechanical
autocad_mep
autocad_p\&id
autocad_plant_… 		Unspecified vulnerability in Autodesk AutoCAD through 2014, AutoCAD LT through 2014, and DWG TrueView through 2014 allows remote attackers to execute arbitrary code via a crafted DWG file. NVD-CWE-noinfo
CVE-2013-3665 2013-07-29 13:00 2013-07-19 Show GitHub Exploit DB Packet Storm
260167 - parallels parallels_plesk_panel
parallels_small_business_panel 		The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4878 2013-07-29 13:00 2013-07-19 Show GitHub Exploit DB Packet Storm
260168 - autonomy
ibm 		keyview_idol
lotus_notes 		Buffer overflow in the .mdb parser in Autonomy KeyView IDOL, as used in IBM Notes 8.5.x before 8.5.3 FP4, allows remote attackers to execute arbitrary code via a crafted file, aka SPR KLYH92XL3W. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-6349 2013-07-29 13:00 2013-07-19 Show GitHub Exploit DB Packet Storm
260169 - asus rt-ac66u_firmware
rt-ac66u
rt-n66u_firmware
rt-n66u
rt-n65u_firmware
rt-n65u
rt-n14u_firmware
rt-n14u
rt-n16_firmware
rt-n16
rt-n56u_firmware
rt-n56u
dsl-n56u_firm… 		Multiple unspecified vulnerabilities in the AiCloud feature on the ASUS RT-AC66U, RT-N66U, RT-N65U, RT-N14U, RT-N16, RT-N56U, and DSL-N55U with firmware before 3.0.4.372 have unknown impact and attac… NVD-CWE-noinfo
CVE-2013-4937 2013-07-26 21:05 2013-07-26 Show GitHub Exploit DB Packet Storm
260170 - officesip officesip_server OfficeSIP Server 3.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted To header in a SIP INVITE message. CWE-20
 Improper Input Validation  		CVE-2012-1008 2013-07-26 15:40 2012-02-8 Show GitHub Exploit DB Packet Storm