Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200291 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0169 2012-04-16 13:42 2012-04-10 Show GitHub Exploit DB Packet Storm
200292 7.6 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0168 2012-04-16 13:40 2012-04-10 Show GitHub Exploit DB Packet Storm
200293 5 警告 マイクロソフト - Microsoft Forefront Unified Access Gateway における重要な情報を取得される脆弱性 CWE-16
環境設定 		CVE-2012-0147 2012-04-16 13:37 2012-04-10 Show GitHub Exploit DB Packet Storm
200294 5.8 警告 マイクロソフト - Microsoft Forefront Unified Access Gateway におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0146 2012-04-16 13:35 2012-04-10 Show GitHub Exploit DB Packet Storm
200295 3.7 注意 ヒューレット・パッカード - HP ProCurve 5400 zl スイッチシリーズにおける任意のコードを実行される脆弱性 CWE-DesignError
CVE-2012-0133 2012-04-13 16:24 2012-04-10 Show GitHub Exploit DB Packet Storm
200296 6.8 警告 ヒューレット・パッカード - HP System Management Homepage におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-3846 2012-04-13 16:19 2012-04-12 Show GitHub Exploit DB Packet Storm
200297 6.5 警告 Cloudera, Inc. - Cloudera Manager および Cloudera Service and Configuration Manager における任意のユーザアカウントになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2012-2230 2012-04-13 15:35 2011-04-12 Show GitHub Exploit DB Packet Storm
200298 6.5 警告 Cloudera, Inc.
Apache Software Foundation		 - Cloudera 製品で使用される Apache Hadoop における任意のクラスタユーザアカウントになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2012-1574 2012-04-13 15:33 2012-04-12 Show GitHub Exploit DB Packet Storm
200299 5.8 警告 株式会社リクルート - どこでもリクナビ2013 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1240 2012-04-13 12:02 2012-04-13 Show GitHub Exploit DB Packet Storm
200300 5.8 警告 COM Meets Ruby - ActiveScriptRuby に HTML 上で任意の Ruby スクリプトを実行可能な脆弱性 CWE-Other
その他 		CVE-2012-1241 2012-04-13 12:01 2012-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270781 - group-office group-office_groupware Group-Office before 2.16-13 does not properly validate user IDs, which allows remote attackers to obtain sensitive information via certain requests for (1) message.php and (2) messages.php in modules… NVD-CWE-Other
CVE-2007-2720 2011-03-8 11:54 2007-05-17 Show GitHub Exploit DB Packet Storm
270782 - xoops myconference_module SQL injection vulnerability in index.php in the MyConference 1.0 module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: the provenance of this inform… NVD-CWE-Other
CVE-2007-2737 2011-03-8 11:54 2007-05-18 Show GitHub Exploit DB Packet Storm
270783 - plain_black webgui The viewList function in lib/WebGUI/Asset/Wobject/DataForm.pm in Plain Black WebGUI before 7.3.14 does not properly use data structures containing privilege information, which allows remote authentic… NVD-CWE-Other
CVE-2007-2746 2011-03-8 11:54 2007-05-18 Show GitHub Exploit DB Packet Storm
270784 - kaspersky_lab kaspersky_anti-virus
kaspersky_internet_security 		Unspecified vulnerability in KLIF (klif.sys) in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2… NVD-CWE-Other
CVE-2007-1881 2011-03-8 11:53 2007-04-6 Show GitHub Exploit DB Packet Storm
270785 - daniel_naber languagetool Cross-site scripting (XSS) vulnerability in the embedded webserver in Daniel Naber LanguageTool before 0.8.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors inv… NVD-CWE-Other
CVE-2007-1939 2011-03-8 11:53 2007-04-11 Show GitHub Exploit DB Packet Storm
270786 - tinymux tinymux Buffer overflow in TinyMUX before 2.4 allows attackers to cause a denial of service via unspecified vectors related to "too many substring matches in a regexp $-command." NOTE: some of these details … NVD-CWE-Other
CVE-2007-1958 2011-03-8 11:53 2007-04-11 Show GitHub Exploit DB Packet Storm
270787 - tinymux tinymux Unspecified vulnerability in the process_cmdent function in command.cpp in TinyMUX before 2.4 has unknown impact and attack vectors, related to lack of the "'other half' of buffer overflow protection… NVD-CWE-Other
CVE-2007-1959 2011-03-8 11:53 2007-04-11 Show GitHub Exploit DB Packet Storm
270788 - metamod-p metamod-p The safevoid_vsnprintf function in Metamod-P 1.19p29 and earlier on Windows allows remote attackers to cause a denial of service (daemon crash) via a long meta list command. NVD-CWE-Other
CVE-2007-1981 2011-03-8 11:53 2007-04-12 Show GitHub Exploit DB Packet Storm
270789 - sam_crew myblog PHP remote file inclusion vulnerability in games.php in Sam Crew MyBlog, possibly 1.0 through 1.6, allows remote attackers to execute arbitrary PHP code via a URL in the id parameter, a different vec… NVD-CWE-Other
CVE-2007-1990 2011-03-8 11:53 2007-04-12 Show GitHub Exploit DB Packet Storm
270790 - mynews mynews PHP remote file inclusion vulnerability in include/blocks/week_events.php in MyNews 4.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the myNewsConf[path][sys][index] parameter… NVD-CWE-Other
CVE-2007-2014 2011-03-8 11:53 2007-04-13 Show GitHub Exploit DB Packet Storm