Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202061 7.5 危険 Thomas Abeel - Simple PHP Agenda の engine.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2925 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
202062 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の admin/setup.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2924 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
202063 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の news.php4 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2923 2012-05-23 19:34 2012-05-21 Show GitHub Exploit DB Packet Storm
202064 5 警告 Drupal - Drupal の includes/bootstrap.inc 内の request_path 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2922 2012-05-23 19:33 2012-05-21 Show GitHub Exploit DB Packet Storm
202065 3.5 注意 Geoff Davies - Drupal 用 Contact Forms モジュールにおけるモジュールの設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2340 2012-05-23 19:12 2012-05-21 Show GitHub Exploit DB Packet Storm
202066 4.3 警告 Nancy Wichmann - Drupal 用 Glossary モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2339 2012-05-23 19:00 2012-05-21 Show GitHub Exploit DB Packet Storm
202067 2.6 注意 Ishmael Sanchez - Drupal 用 Aberdeen テーマの aberdeen_breadcrumb 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2907 2012-05-23 18:57 2012-05-21 Show GitHub Exploit DB Packet Storm
202068 5 警告 mark pilgrim - Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2921 2012-05-23 18:50 2012-05-2 Show GitHub Exploit DB Packet Storm
202069 4.3 警告 Weston Ruter - WordPress 用 User Photo プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2920 2012-05-23 18:48 2012-05-21 Show GitHub Exploit DB Packet Storm
202070 4.3 警告 Andrew Killen - WordPress 用 Share and Follow プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2917 2012-05-23 18:47 2012-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269941 - freebsd freebsd FreeBSD 5.1 for the Alpha processor allows local users to cause a denial of service (crash) via an execve system call with an unaligned memory address as an argument. NVD-CWE-Other
CVE-2004-0618 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
269942 - jelsoft vbulletin Cross-site scripting (XSS) vulnerability in (1) newreply.php or (2) newthread.php in vBulletin 3.0.1 allows remote attackers to inject arbitrary HTML or script as other users via the Edit-panel. NVD-CWE-Other
CVE-2004-0620 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
269943 - zaireweb_solutions newsletter_zws admin.php in Newsletter ZWS allows remote attackers to gain administrative privileges via a list_user operation with the ulevel parameter set to 1 (administrator level), which lists all users and the… NVD-CWE-Other
CVE-2004-0621 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
269944 - gnu gnats Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog. NVD-CWE-Other
CVE-2004-0623 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
269945 - artmedic_webdesign artmedic_links PHP remote file inclusion vulnerability in index.php for Artmedic links 5.0 (artmedic_links5) allows remote attackers to execute arbitrary PHP code by modifying the id parameter to reference a URL on… NVD-CWE-Other
CVE-2004-0624 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
269946 - websoft infinity_web SQL injection vulnerability in Infinity WEB 1.0 allows remote attackers to bypass authentication and gain privileges via the login page. NVD-CWE-Other
CVE-2004-0625 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
269947 - conectiva
gentoo
linux
suse 		linux
linux_kernel
suse_linux 		The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infini… NVD-CWE-Other
CVE-2004-0626 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
269948 - adobe acrobat
acrobat_reader 		Buffer overflow in the ActiveX component (pdf.ocx) for Adobe Acrobat 5.0.5 and Acrobat Reader, and possibly other versions, allows remote attackers to execute arbitrary code via a URI for a PDF file … NVD-CWE-Other
CVE-2004-0629 2017-07-11 10:30 2004-09-28 Show GitHub Exploit DB Packet Storm
269949 - adobe acrobat_reader The uudecoding feature in Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arbitrary code via shel… NVD-CWE-Other
CVE-2004-0630 2017-07-11 10:30 2004-08-18 Show GitHub Exploit DB Packet Storm
269950 - adobe acrobat_reader Buffer overflow in the uudecoding feature for Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arb… NVD-CWE-Other
CVE-2004-0631 2017-07-11 10:30 2004-08-18 Show GitHub Exploit DB Packet Storm