Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 29, 2025, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200201 5 警告 activecalendar - ActiveCalendar の data/showcode.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1110 2012-06-26 15:46 2007-02-26 Show GitHub Exploit DB Packet Storm
200202 6.8 警告 cs-gallery - Christian Schneider CS-Gallery の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1108 2012-06-26 15:46 2007-02-26 Show GitHub Exploit DB Packet Storm
200203 7.5 危険 Coppermine Photo Gallery - CPG の thumbnails.php における SQL インジェクションの脆弱性 - CVE-2007-1107 2012-06-26 15:46 2007-02-26 Show GitHub Exploit DB Packet Storm
200204 5 警告 extreme phpbb - Extreme phpBB の functions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1105 2012-06-26 15:46 2007-02-26 Show GitHub Exploit DB Packet Storm
200205 7.6 危険 Google - Google Desktop におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1085 2012-06-26 15:46 2007-02-22 Show GitHub Exploit DB Packet Storm
200206 7.1 危険 ftpx - FTP Explorer におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-1082 2012-06-26 15:46 2007-02-22 Show GitHub Exploit DB Packet Storm
200207 7.5 危険 flashgamescript - FlashGameScript の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-1078 2012-06-26 15:46 2007-02-22 Show GitHub Exploit DB Packet Storm
200208 7.5 危険 design4online - Design4Online UserPages の page.asp における SQL インジェクションの脆弱性 - CVE-2007-1077 2012-06-26 15:46 2007-02-22 Show GitHub Exploit DB Packet Storm
200209 9.3 危険 dji - NewsBin Pro におけるバッファオーバーフローの脆弱性 - CVE-2007-1074 2012-06-26 15:46 2007-02-22 Show GitHub Exploit DB Packet Storm
200210 7.2 危険 シスコシステムズ - Cisco Unified IP Phone 7906G におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1072 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274741 - arwscripts fonts_script Directory traversal vulnerability in viewfile.php in ARWScripts Fonts Script allows remote attackers to read arbitrary local files via directory traversal sequences in a base64-encoded f parameter. … CWE-22
Path Traversal 		CVE-2010-0613 2010-03-26 14:37 2010-02-12 Show GitHub Exploit DB Packet Storm
274742 - openttd openttd Unspecified vulnerability in the NormaliseTrainConsist function in src/train_cmd.cpp in OpenTTD before 0.7.5-RC1 allows remote attackers to cause a denial of service (daemon crash) via certain game a… NVD-CWE-noinfo
CVE-2009-4007 2010-03-26 14:34 2009-12-29 Show GitHub Exploit DB Packet Storm
274743 - linux.thai libthai Multiple integer overflows in LibThai before 0.1.13 might allow context-dependent attackers to execute arbitrary code via long strings that trigger heap-based buffer overflows, related to (1) thbrk/t… CWE-189
Numeric Errors 		CVE-2009-4012 2010-03-26 14:34 2010-01-20 Show GitHub Exploit DB Packet Storm
274744 - 68k audiofile Heap-based buffer overflow in msadpcm.c in libaudiofile in audiofile 0.2.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-5824 2010-03-26 14:24 2009-01-3 Show GitHub Exploit DB Packet Storm
274745 - tristan_barczyk klonews Cross-site scripting (XSS) vulnerability in cat.php in KloNews 2.0 allows remote attackers to inject arbitrary web script or HTML via the cat parameter. CWE-79
Cross-site Scripting 		CVE-2010-1112 2010-03-26 13:00 2010-03-26 Show GitHub Exploit DB Packet Storm
274746 - phptroubleticket php_trouble_ticket SQL injection vulnerability in vedi_faq.php in PHP Trouble Ticket 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-1089 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
274747 - scriptsfeed dating_software Multiple SQL injection vulnerabilities in searchmatch.php in ScriptsFeed Dating Software allow remote attackers to execute arbitrary SQL commands via the (1) txtgender and (2) txtlookgender parameter… CWE-89
SQL Injection 		CVE-2010-1096 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
274748 - springsource application_management_suite
hyperic_hq
tc_server 		Multiple cross-site scripting (XSS) vulnerabilities in SpringSource tc Server 6.0.20.B and earlier, Application Management Suite (AMS) before 2.0.0.SR4, Hyperic HQ Open Source before 4.2.x, Hyperic H… CWE-79
Cross-site Scripting 		CVE-2009-2907 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
274749 - springsource application_management_suite
hyperic_hq
tc_server 		Per: http://www.springsource.com/security/cve-2009-2907 'Mitigation: * Hyperic HQ Open Source users should upgrade to Hyperic HQ 4.2.x * Hyperic HQ 4.0 Enterprise users should upgra… CWE-79
Cross-site Scripting 		CVE-2009-2907 2010-03-25 13:00 2010-03-25 Show GitHub Exploit DB Packet Storm
274750 - openinferno oi.blogs Multiple directory traversal vulnerabilities in OI.Blogs 1.0.0, when magic_quotes_gpc is disabled, allow remote attackers to read arbitrary files via directory traversal sequences in the (1) theme pa… CWE-22
Path Traversal 		CVE-2010-1082 2010-03-25 04:52 2010-03-24 Show GitHub Exploit DB Packet Storm