Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199791 4.3 警告 fascript - Farsi Script FaName におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3653 2012-06-26 15:46 2008-07-8 Show GitHub Exploit DB Packet Storm
199792 6.8 警告 fascript - Farsi Script FaName の class/page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-3652 2012-06-26 15:46 2008-07-8 Show GitHub Exploit DB Packet Storm
199793 4.3 警告 fascript - Farsi Script FaName の class/page.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-3651 2012-06-26 15:46 2008-07-8 Show GitHub Exploit DB Packet Storm
199794 4.6 警告 freewrl - FreeWRL の doBrowserAction 関数におけるバッファオーバーフローの脆弱性 - CVE-2007-3659 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
199795 7.5 危険 flashgamescript - FlashGameScript の index.php における SQL インジェクションの脆弱性 - CVE-2007-3646 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
199796 10 危険 av scripts - AV Arcade の admin/index.php における特定の管理操作を実行される脆弱性 - CVE-2007-3643 2012-06-26 15:46 2007-07-9 Show GitHub Exploit DB Packet Storm
199797 4.3 警告 アドビシステムズ - Adobe Integrated Runtime における任意のファイルを変更される脆弱性 - CVE-2007-3640 2012-06-26 15:46 2007-07-9 Show GitHub Exploit DB Packet Storm
199798 6.4 警告 chilkat software - ChilkatZip2.dll の Chilkat Software Chilkat Zip ActiveX コントロールにおける絶対パストラバーサルの脆弱性 - CVE-2007-3633 2012-06-26 15:46 2007-07-9 Show GitHub Exploit DB Packet Storm
199799 7.5 危険 gamesitescript - gss の index.php における SQL インジェクションの脆弱性 - CVE-2007-3631 2012-06-26 15:46 2007-07-9 Show GitHub Exploit DB Packet Storm
199800 6.4 警告 av scripts - avtutorial の changePW.php における任意のユーザのパスワードを変更される脆弱性 - CVE-2007-3630 2012-06-26 15:46 2007-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 14, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273881 - sips sips preferences.php in Simple Internet Publishing System (SIPS) before 0.3.1 allows remote attackers to gain administrative privileges via a linebreak in the "theme" field followed by the Status::admin c… NVD-CWE-Other
CVE-2002-0267 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
273882 - identix biologon Identix BioLogon 3 allows users with physical access to the system to gain administrative privileges by using CTRL-ALT-DEL and running a "Browse" function, which runs Explorer with SYSTEM privileges. NVD-CWE-Other
CVE-2002-0268 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
273883 - apache-ssl
mod_ssl 		apache-ssl
mod_ssl 		The dbm and shm session cache code in mod_ssl before 2.8.7-1.3.23, and Apache-SSL before 1.3.22+1.46, does not properly initialize memory using the i2d_SSL_SESSION function, which allows remote attac… NVD-CWE-Other
CVE-2002-0082 2016-10-18 11:16 2002-03-15 Show GitHub Exploit DB Packet Storm
273884 - cvs cvs CVS before 1.10.8 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (server crash) via the diff capability. NVD-CWE-Other
CVE-2002-0092 2016-10-18 11:16 2002-03-15 Show GitHub Exploit DB Packet Storm
273885 - boozt boozt_standard Buffer overflow in index.cgi administration interface for Boozt! Standard 0.9.8 allows local users to execute arbitrary code via a long name field when creating a new banner. NVD-CWE-Other
CVE-2002-0098 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm
273886 - michael_lamont savant_webserver Buffer overflow in Michael Lamont Savant Web Server 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP request to the cgi-bin directory in which the CGI program name con… NVD-CWE-Other
CVE-2002-0099 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm
273887 - aol aol_server AOL AOLserver 3.4.2 Win32 allows remote attackers to bypass authentication and read password-protected files via a URL that directly references the file. NVD-CWE-Other
CVE-2002-0100 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm
273888 - oracle application_server_web_cache An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2)… NVD-CWE-Other
CVE-2002-0103 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm
273889 - aftpd aftpd AFTPD 5.4.4 allows remote attackers to gain sensitive information via a CD (CWD) ~ (tilde) command, which causes a core dump. NVD-CWE-Other
CVE-2002-0104 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm
273890 - caldera unixware CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable. NVD-CWE-Other
CVE-2002-0105 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm