Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 25, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203101 6.8 警告 blogcms - BLOG:CMS の admin/libs/ADMIN.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-4750 2012-03-27 18:42 2011-03-1 Show GitHub Exploit DB Packet Storm
203102 6.8 警告 Zikula Foundation - Zikula におけるクロスサイトリクエストフォージェリ攻撃を誘発される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-4729 2012-03-27 18:42 2011-02-8 Show GitHub Exploit DB Packet Storm
203103 5 警告 Zikula Foundation - Zikula における乱数化をベースにした保護機能を破られる脆弱性 CWE-310
暗号の問題 		CVE-2010-4728 2012-03-27 18:42 2011-02-8 Show GitHub Exploit DB Packet Storm
203104 10 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4727 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
203105 10 危険 Smarty - Smarty の math プラグインにおける詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4726 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
203106 10 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4725 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
203107 10 危険 Smarty - Smarty のパーサー実装における詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4724 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
203108 9.3 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4723 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
203109 10 危険 Smarty - Smarty の fetch プラグインにおける詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4722 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
203110 7.5 危険 MH Products - Immo Makler の news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4721 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277121 - firebirdsql firebird Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database. NVD-CWE-Other
CVE-2006-7213 2008-09-6 06:16 2007-06-30 Show GitHub Exploit DB Packet Storm
277122 - firebirdsql firebird Multiple unspecified vulnerabilities in Firebird 1.5 allow remote attackers to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of se… NVD-CWE-Other
CVE-2006-7214 2008-09-6 06:16 2007-06-30 Show GitHub Exploit DB Packet Storm
277123 - intel core_2_duo_e4000
core_2_duo_e6000
core_2_extreme_x6800 		The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the… NVD-CWE-Other
CVE-2006-7215 2008-09-6 06:16 2007-07-4 Show GitHub Exploit DB Packet Storm
277124 - apache derby Apache Derby before 10.2.1.6 does not determine privilege requirements for lock table statements at compilation time, and consequently does not enforce privilege requirements at execution time, which… NVD-CWE-Other
CVE-2006-7216 2008-09-6 06:16 2007-07-6 Show GitHub Exploit DB Packet Storm
277125 - apache derby Apache Derby before 10.2.1.6 does not determine schema privilege requirements during the DropSchemaNode bind phase, which allows remote authenticated users to execute arbitrary drop schema statements… NVD-CWE-Other
CVE-2006-7217 2008-09-6 06:16 2007-07-6 Show GitHub Exploit DB Packet Storm
277126 - sap saplpd
sapsprint 		Unspecified vulnerability in SAP SAPLPD and SAPSPRINT allows remote attackers to cause a denial of service (application crash) via a certain print job request. NOTE: the provenance of this informati… NVD-CWE-Other
CVE-2006-7220 2008-09-6 06:16 2007-07-10 Show GitHub Exploit DB Packet Storm
277127 - xwiki xwiki PreviewAction in XWiki 0.9.543 through 0.9.1252 does not set the Author field to the identity of the user who last modified a document, which allows remote authenticated users without programming rig… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-7223 2008-09-6 06:16 2007-09-14 Show GitHub Exploit DB Packet Storm
277128 - scriptphp pronews admin/change.php in ProNews 1.5 does not check whether a user is permitted to change news items, which allows remote attackers to add or delete information within an item, and possibly have other imp… NVD-CWE-Other
CVE-2006-6580 2008-09-6 06:15 2006-12-16 Show GitHub Exploit DB Packet Storm
277129 - scriptmate user_manager ScriptMate User Manager 2.1 and earlier allow remote attackers to obtain sensitive information via unspecified vectors related to (1) the Logins box and (2) the Search box. NVD-CWE-Other
CVE-2006-6583 2008-09-6 06:15 2006-12-16 Show GitHub Exploit DB Packet Storm
277130 - torrentflux torrentflux Cross-site scripting (XSS) vulnerability in dir.php in TorrentFlux 2.2, when allows remote attackers to inject arbitrary web script or HTML via double URL-encoded strings in the dir parameter, a rela… NVD-CWE-Other
CVE-2006-6600 2008-09-6 06:15 2006-12-16 Show GitHub Exploit DB Packet Storm