Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 18, 2025, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202691 6.9 警告 GNOME Project - GNOME Shell の gnome-shell における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4000 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
202692 6.9 警告 gnucash - GnuCash の gnc-test-env における権限を取得される脆弱性 CWE-DesignError
CVE-2010-3999 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
202693 6.9 警告 banshee-project - Banshee の banshee-1 スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3998 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
202694 6.9 警告 cstr - CSTR Festival の festival_server における権限を取得される脆弱性 CWE-DesignError
CVE-2010-3996 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
202695 4.3 警告 ヒューレット・パッカード - HP VCRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3994 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
202696 6.4 警告 ヒューレット・パッカード - HP Insight Control Server Migration における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3993 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
202697 9 危険 ヒューレット・パッカード - HP Insight Control Server Migration における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3992 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
202698 10 危険 Novell - SUSE Linux Enterprise の supportconfig スクリプトにおける脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-3912 2012-03-27 18:42 2011-01-12 Show GitHub Exploit DB Packet Storm
202699 4.3 警告 ヒューレット・パッカード - HP Insight Control Server Migration におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3991 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
202700 5 警告 ヒューレット・パッカード - HP Virtual Server Environment における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-3990 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 18, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268711 - apple mac_os_x
mac_os_x_server 		Unknown vulnerability in the Terminal application for Mac OS X 10.3 (Client and Server) may allow "unauthorized access." NVD-CWE-Other
CVE-2003-0913 2017-07-11 10:29 2003-12-1 Show GitHub Exploit DB Packet Storm
268712 - sygate_technologies enforcer Sygate Enforcer 4.0 earlier allows remote attackers to cause a denial of service (service hang) by replaying a malformed discovery packet to UDP port 39999. NVD-CWE-Other
CVE-2003-0931 2017-07-11 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
268713 - sap sap_db vos24u.c in SAP database server (SAP DB) 7.4.03.27 and earlier allows local users to gain SYSTEM privileges via a malicious "NETAPI32.DLL" in the current working directory, which is found and loaded … NVD-CWE-Other
CVE-2003-0938 2017-07-11 10:29 2003-12-15 Show GitHub Exploit DB Packet Storm
268714 - sap sap_db The Web Database Manager in web-tools for SAP DB before 7.4.03.30 generates predictable session IDs, which allows remote attackers to conduct unauthorized activities. NVD-CWE-Other
CVE-2003-0945 2017-07-11 10:29 2003-12-15 Show GitHub Exploit DB Packet Storm
268715 - michael_bischoff xsok xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands. NVD-CWE-Other
CVE-2003-0949 2017-07-11 10:29 2004-02-3 Show GitHub Exploit DB Packet Storm
268716 - peoplesoft peopletools PeopleSoft PeopleTools 8.1x, 8.2x, and 8.4x allows remote attackers to execute arbitrary commands by uploading a file to the IClient Servlet, guessing the insufficiently random (system time) name of … NVD-CWE-Other
CVE-2003-0950 2017-07-11 10:29 2003-12-15 Show GitHub Exploit DB Packet Storm
268717 - apple safari
mac_os_x
mac_os_x_server 		Apple Safari 1.0 through 1.1 on Mac OS X 10.3.1 and Mac OS X 10.2.8 allows remote attackers to steal user cookies from another domain via a link with a hex-encoded null character (%00) followed by th… NVD-CWE-Other
CVE-2003-0975 2017-07-11 10:29 2003-12-15 Show GitHub Exploit DB Packet Storm
268718 - novell netware NFS Server (XNFS.NLM) for Novell NetWare 6.5 does not properly enforce sys:\etc\exports when hostname aliases from sys:etc\hosts file are used, which could allow users to mount file systems when XNFS… NVD-CWE-Other
CVE-2003-0976 2017-07-11 10:29 2003-12-15 Show GitHub Exploit DB Packet Storm
268719 - gnu privacy_guard Format string vulnerability in gpgkeys_hkp (experimental HKP interface) for the GnuPG (gpg) client 1.2.3 and earlier, and 1.3.3 and earlier, allows remote attackers or a malicious keyserver to cause … NVD-CWE-Other
CVE-2003-0978 2017-07-11 10:29 2004-01-5 Show GitHub Exploit DB Packet Storm
268720 - - - The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field. NVD-CWE-Other
CVE-2003-0990 2017-07-11 10:29 2004-01-20 Show GitHub Exploit DB Packet Storm