Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 9, 2025, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202981 4.6 警告 IBM - IBM WebSphere Application Server の iscdeploy におけるファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1376 2012-01-20 16:48 2012-01-18 Show GitHub Exploit DB Packet Storm
202982 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2317 2012-01-20 16:45 2012-01-17 Show GitHub Exploit DB Packet Storm
202983 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3524 2012-01-20 16:44 2012-01-17 Show GitHub Exploit DB Packet Storm
202984 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3514 2012-01-20 16:43 2012-01-17 Show GitHub Exploit DB Packet Storm
202985 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3509 2012-01-20 16:40 2012-01-17 Show GitHub Exploit DB Packet Storm
202986 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2326 2012-01-20 16:39 2012-01-17 Show GitHub Exploit DB Packet Storm
202987 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2325 2012-01-20 16:28 2012-01-17 Show GitHub Exploit DB Packet Storm
202988 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2321 2012-01-20 16:27 2012-01-17 Show GitHub Exploit DB Packet Storm
202989 5 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2324 2012-01-20 16:26 2012-01-17 Show GitHub Exploit DB Packet Storm
202990 3.5 注意 オラクル - Oracle E-Business Suite における Attachments / File Upload の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2271 2012-01-20 15:44 2012-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270161 - ibm db2_universal_database Unspecified vulnerability in the SSL LOAD GSKIT action in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, involving a call to dlopen when the effective uid is root. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-6049 2011-03-8 12:01 2007-11-21 Show GitHub Exploit DB Packet Storm
270162 - ibm db2_universal_database Unspecified vulnerability in DB2LICD in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, related to creation of an "insecure directory." CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-6050 2011-03-8 12:01 2007-11-21 Show GitHub Exploit DB Packet Storm
270163 - ibm db2_universal_database IBM DB2 UDB 9.1 before Fixpak 4 does not properly perform vector aggregation, which might allow attackers to cause a denial of service (divide-by-zero error and DBMS crash), related to an "overflow."… NVD-CWE-Other
CVE-2007-6052 2011-03-8 12:01 2007-11-21 Show GitHub Exploit DB Packet Storm
270164 - ibm db2_universal_database IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow attackers to have an unknown impact involving "memory corruption." NOTE: the vendo… CWE-399
 Resource Management Errors 		CVE-2007-6053 2011-03-8 12:01 2007-11-21 Show GitHub Exploit DB Packet Storm
270165 - feed2js feed2js Cross-site scripting (XSS) vulnerability in Feed to JavaScript (Feed2JS) 1.91 allows remote attackers to inject arbitrary web script or HTML via a URL in a feed. CWE-79
Cross-site Scripting 		CVE-2007-6102 2011-03-8 12:01 2007-11-24 Show GitHub Exploit DB Packet Storm
270166 - irc_services irc_services Unspecified vulnerability in IRC Services 5.1.8 has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2007-6123 2011-03-8 12:01 2007-11-27 Show GitHub Exploit DB Packet Storm
270167 - gnu gnump3d gnump3d 2.9final does not apply password protection to its plugins, which might allow remote attackers to bypass intended access restrictions. CWE-287
Improper Authentication 		CVE-2007-6130 2011-03-8 12:01 2007-11-27 Show GitHub Exploit DB Packet Storm
270168 - redhat fedora_core buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg temporary files. CWE-16
Configuration 		CVE-2007-6131 2011-03-8 12:01 2007-11-27 Show GitHub Exploit DB Packet Storm
270169 - xunlei web_thunder Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-5064 2011-03-8 12:00 2007-09-25 Show GitHub Exploit DB Packet Storm
270170 - kaspersky_lab kaspersky_anti-virus
kaspersky_internet_security 		Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain parameters to System Service Descriptor Table (SSDT) and Shadow SSDT function handlers, which allows lo… CWE-20
 Improper Input Validation  		CVE-2007-5086 2011-03-8 12:00 2007-09-26 Show GitHub Exploit DB Packet Storm