Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200151 9.3 危険 アップル - Apple QuickTime for Java における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2388 2012-06-26 15:46 2007-05-29 Show GitHub Exploit DB Packet Storm
200152 10 危険 アップル - Intel ハードウェア上の Apple Xserve Lights-Out Management における管理アクセス権を取得される脆弱性 - CVE-2007-2387 2012-06-26 15:46 2007-05-31 Show GitHub Exploit DB Packet Storm
200153 9.4 危険 アップル - Apple Mac OS X の mDNSResponder におけるバッファオーバーフローの脆弱性 - CVE-2007-2386 2012-06-26 15:46 2007-05-24 Show GitHub Exploit DB Packet Storm
200154 5 警告 Google - GWT フレームワークにおけるデータを取得される脆弱性 - CVE-2007-2378 2012-06-26 15:46 2007-04-30 Show GitHub Exploit DB Packet Storm
200155 5 警告 Direct Web Remoting - Getahead DWR フレームワークにおけるデータを取得される脆弱性 - CVE-2007-2377 2012-06-26 15:46 2007-04-30 Show GitHub Exploit DB Packet Storm
200156 5 警告 The Dojo Foundation - Dojo のフレームワークにおけるデータを取得される脆弱性 - CVE-2007-2376 2012-06-26 15:46 2007-04-30 Show GitHub Exploit DB Packet Storm
200157 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品における任意のコードを実行される脆弱性 - CVE-2007-2374 2012-06-26 15:46 2007-04-30 Show GitHub Exploit DB Packet Storm
200158 10 危険 gregory kokanosky - Gregory Kokanosky phpMyNewsletter における電子メールメッセージを作成される脆弱性 - CVE-2007-2372 2012-06-26 15:46 2007-04-30 Show GitHub Exploit DB Packet Storm
200159 10 危険 gregory kokanosky - Gregory Kokanosky phpMyNewsletter の admin/index.php における静的コードを挿入される脆弱性 - CVE-2007-2371 2012-06-26 15:46 2007-04-30 Show GitHub Exploit DB Packet Storm
200160 7.4 危険 コーレル株式会社 - Corel Paint Shop Pro におけるバッファオーバーフローの脆弱性 - CVE-2007-2366 2012-06-26 15:46 2007-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269301 - coppermine
francisco_burzi 		coppermine_photo_gallery
php-nuke 		picmgmtbatch.inc.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to execute arbitrary commands via shell metacharacters in the (1) $CONFIG[… NVD-CWE-Other
CVE-2004-1987 2017-07-11 10:31 2004-04-30 Show GitHub Exploit DB Packet Storm
269302 - coppermine
francisco_burzi 		coppermine_photo_gallery
php-nuke 		PHP remote file inclusion vulnerability in init.inc.php in Coppermine Photo Gallery 1.2.0 RC4 allows remote attackers to execute arbitrary PHP code by modifying the CPG_M_DIR to reference a URL on a … NVD-CWE-Other
CVE-2004-1988 2017-07-11 10:31 2004-04-30 Show GitHub Exploit DB Packet Storm
269303 - coppermine
francisco_burzi 		coppermine_photo_gallery
php-nuke 		PHP remote file inclusion vulnerability in theme.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to execute arbitrary PHP code by modifying the THEME_DIR parameter to reference a URL o… NVD-CWE-Other
CVE-2004-1989 2017-07-11 10:31 2004-04-30 Show GitHub Exploit DB Packet Storm
269304 - aldo_vargas aldos_web_server Aldo's Web Server (aweb) 1.5 allows remote attackers to gain sensitive information via an arbitrary character, which reveals the full path and the user running the aweb process, possibly due to a mal… NVD-CWE-Other
CVE-2004-1990 2017-07-11 10:31 2004-03-3 Show GitHub Exploit DB Packet Storm
269305 - omail omail_webmail The patch to the checklogin function in omail.pl for omail webmail 0.98.5 is incomplete, which allows remote attackers to execute arbitrary commands via shell metacharacters such as "`" (backticks) i… NVD-CWE-Other
CVE-2004-1993 2017-07-11 10:31 2004-05-4 Show GitHub Exploit DB Packet Storm
269306 - e-zone_media_inc. fusetalk FuseTalk 4.0 allows remote attackers to ban other users via a direct request to banning.cfm. NVD-CWE-Other
CVE-2004-1994 2017-07-11 10:31 2004-05-5 Show GitHub Exploit DB Packet Storm
269307 - simple_machines smf Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 1.0 allows remote attackers to inject arbitrary web script via the size tag. NVD-CWE-Other
CVE-2004-1996 2017-07-11 10:31 2004-05-5 Show GitHub Exploit DB Packet Storm
269308 - kolab
openpkg 		kolab_groupware_server
openpkg 		Kolab stores OpenLDAP passwords in plaintext in the slapd.conf file, which may be installed world-readable, which allows local users to gain privileges. NVD-CWE-Other
CVE-2004-1997 2017-07-11 10:31 2004-05-5 Show GitHub Exploit DB Packet Storm
269309 - francisco_burzi php-nuke Cross-site scripting (XSS) vulnerability in the Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to inject arbitrary HTML and web script via the (1) ttitle or (2) sid parameters t… NVD-CWE-Other
CVE-2004-1999 2017-07-11 10:31 2004-05-5 Show GitHub Exploit DB Packet Storm
269310 - sgi irix Unknown vulnerability in SGI IRIX 6.5 through 6.5.22m allows remote attackers to cause a denial of service via a certain UDP packet. NVD-CWE-Other
CVE-2004-2002 2017-07-11 10:31 2004-05-5 Show GitHub Exploit DB Packet Storm