Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 24, 2024, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201891	7.2	危険	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-Other その他	CVE-2010-0233	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

201892	6.3	警告	マイクロソフト	-	Microsoft Windows の KDC におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0035	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

201893	7.1	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-0021	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

201894	10	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるアクセス権を取得される脆弱性	CWE-264 CWE-310	CVE-2010-0231	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

201895	7.8	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0022	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

201896	9	危険	マイクロソフト	-	Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性	CWE-20 CWE-94	CVE-2010-0020	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

201897	6.9	警告	マイクロソフト	-	Microsoft Windows の Client/Server Run-time Subsystem における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0023	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

201898	4	警告	マイクロソフト	-	Microsoft Windows の Hyper-V サーバ実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0026	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

201899	9.3	危険	日本電気アップル富士通古河電気工業ヒューレット・パッカードインターネットイニシアティブアラクサラネットワークス日立	-	IPv6 NDP 実装における Neighbor Discovery メッセージの送信元検証処理に関する脆弱性	CWE-20 不適切な入力確認	CVE-2008-2476	2010-03-3 11:43	2008-10-3	Show	GitHub Exploit DB Packet Storm

201900	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0034	2010-03-2 11:29	2010-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 24, 2024, 4:58 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
259721	-	extplorer	extplorer	Cross-site request forgery (CSRF) vulnerability in eXtplorer 2.1 RC3 and earlier allows remote attackers to hijack the authentication of administrators for requests that add an administrator account …	CWE-352 Origin Validation Error	CVE-2012-3362	2012-07-27 12:40	2012-07-13	Show	GitHub Exploit DB Packet Storm

259722	-	apple	safari	WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to read arbitrary files via a crafted web site.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3690	2012-07-26 23:23	2012-07-26	Show	GitHub Exploit DB Packet Storm

259723	-	freebsd netbsd	freebsd netbsd	The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD does not properly allocate memory, which makes it easier for context-dependent attackers to perform memory-…	CWE-189 Numeric Errors	CVE-2007-6754	2012-07-26 21:52	2012-07-26	Show	GitHub Exploit DB Packet Storm

259724	-	kajona	kajona	Multiple cross-site scripting (XSS) vulnerabilities in the getAllPassedParams function in system/functions.php in Kajona before 3.4.2 allow remote attackers to inject arbitrary web script or HTML via…	CWE-79 Cross-site Scripting	CVE-2012-3805	2012-07-26 13:00	2012-07-13	Show	GitHub Exploit DB Packet Storm

259725	-	freebsd netbsd	freebsd netbsd	Integer overflow in the calloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD makes it easier for context-dependent attackers to perform memory-related attacks such a…	CWE-189 Numeric Errors	CVE-2006-7252	2012-07-26 13:00	2012-07-26	Show	GitHub Exploit DB Packet Storm

259726	-	wordpress	wordpress	WordPress before 3.4.1 does not properly restrict access to post contents such as private or draft posts, which allows remote authors or contributors to obtain sensitive information via unknown vecto…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3385	2012-07-24 04:03	2012-07-23	Show	GitHub Exploit DB Packet Storm

259727	-	libpng	libpng	Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 through 1.5.7 might allow remote attackers to cause a denial of service (application crash) and possibly execute a…	CWE-189 Numeric Errors	CVE-2011-3464	2012-07-23 13:00	2012-07-23	Show	GitHub Exploit DB Packet Storm

259728	-	openbsd	openssh	The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory co…	CWE-189 Numeric Errors	CVE-2011-5000	2012-07-22 12:33	2012-04-5	Show	GitHub Exploit DB Packet Storm

259729	-	sayakbanerjee	sticky_notes	Multiple cross-site scripting (XSS) vulnerabilities in Sticky Notes before 0.2.27052012.5 allow remote attackers to inject arbitrary web script or HTML via the (1) paste_user or (2) paste_lang parame…	CWE-79 Cross-site Scripting	CVE-2012-3997	2012-07-19 13:00	2012-07-13	Show	GitHub Exploit DB Packet Storm

259730	-	sayakbanerjee	sticky_notes	Multiple SQL injection vulnerabilities in Sticky Notes before 0.2.27052012.5 allow remote attackers to execute arbitrary SQL commands via the (1) paste id in admin/modules/mod_pastes.php or (2) show.…	CWE-89 SQL Injection	CVE-2012-3998	2012-07-19 13:00	2012-07-13	Show	GitHub Exploit DB Packet Storm