Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 6, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202181 5.8 警告 Netcreators - TYPO3 用 Modern FAQ エクステンションにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5079 2012-02-15 16:04 2012-02-14 Show GitHub Exploit DB Packet Storm
202182 5 警告 The PHP Group - PHP のタイムゾーン機能におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0789 2012-02-15 16:03 2012-01-10 Show GitHub Exploit DB Packet Storm
202183 5 警告 The PHP Group - PHP の PDORow 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0788 2012-02-15 16:02 2012-01-10 Show GitHub Exploit DB Packet Storm
202184 7.5 危険 Zoho Corporation - ManageEngine Applications Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1063 2012-02-15 15:55 2012-02-14 Show GitHub Exploit DB Packet Storm
202185 4.3 警告 Zoho Corporation - ManageEngine Applications Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1062 2012-02-15 15:55 2012-02-14 Show GitHub Exploit DB Packet Storm
202186 7.5 危険 GForge Group - GForge Advanced Server における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1061 2012-02-15 15:54 2012-02-14 Show GitHub Exploit DB Packet Storm
202187 2.1 注意 Rik de Boer - Drupal 用 Revisioning モジュールの revisioning_theme.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1060 2012-02-15 15:51 2012-02-14 Show GitHub Exploit DB Packet Storm
202188 4.3 警告 osCommerce - OSCommerce Online Merchant の shirt モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1059 2012-02-15 15:51 2012-02-14 Show GitHub Exploit DB Packet Storm
202189 6 警告 Flyspray - Flyspray におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1058 2012-02-15 15:50 2012-02-14 Show GitHub Exploit DB Packet Storm
202190 6 警告 Sean Robertson - Drupal 用 Forward モジュールのクリックスルートラッキング機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1057 2012-02-15 15:49 2012-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 7, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268401 - instantservers_inc. miniportal InstantServers MiniPortal 1.1.5 and earlier stores sensitive login and account data in plaintext in (1) .pwd files in the miniportal/apache directory, or (2) mplog.txt, which could allow local users … NVD-CWE-Other
CVE-2002-0259 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268402 - instantservers_inc. miniportal Buffer overflow in InstantServers MiniPortal 1.1.5 and earlier allows remote attackers to execute arbitrary code via a long login name, which is not properly handled by the logging utility. NVD-CWE-Other
CVE-2002-0260 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268403 - instantservers_inc. miniportal Directory traversal vulnerability in InstantServers MiniPortal 1.1.5 and earlier allows remote authenticated users to read arbitrary files via a ... (modified dot dot) in the GET command. NVD-CWE-Other
CVE-2002-0261 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268404 - sybex e-trainer Directory traversal vulnerability in netget for Sybex E-Trainer web server allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter. NVD-CWE-Other
CVE-2002-0262 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268405 - ezne.net ezboard_2000 Buffer overflow in EasyBoard 2000 1.27 (aka EZboard) allows remote attackers to execute arbitrary code via a long boundary value in a multipart Content-Type header to (1) ezboard.cgi, (2) ezman.cgi, … NVD-CWE-Other
CVE-2002-0263 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268406 - cooolsoft powerftp PowerFTP Personal FTP Server 2.03 through 2.10 stores sensitive account information in plaintext in the ftpserver.ini file, which allows attackers with access to the file to gain privileges. NVD-CWE-Other
CVE-2002-0264 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268407 - sawmill sawmill Sawmill for Solaris 6.2.14 and earlier creates the AdminPassword file with world-writable permissions, which allows local users to gain privileges by modifying the file. NVD-CWE-Other
CVE-2002-0265 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268408 - thunderstone_software texis Thunderstone Texis CGI script allows remote attackers to obtain the full path of the web root via a request for a nonexistent file, which generates an error message that includes the full pathname. NVD-CWE-Other
CVE-2002-0266 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268409 - sips sips preferences.php in Simple Internet Publishing System (SIPS) before 0.3.1 allows remote attackers to gain administrative privileges via a linebreak in the "theme" field followed by the Status::admin c… NVD-CWE-Other
CVE-2002-0267 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
268410 - identix biologon Identix BioLogon 3 allows users with physical access to the system to gain administrative privileges by using CTRL-ALT-DEL and running a "Browse" function, which runs Explorer with SYSTEM privileges. NVD-CWE-Other
CVE-2002-0268 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm