Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 7, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203291	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat におけるファイル拡張子の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3461	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

203292	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3460	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

203293	4.3	警告	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-2995	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

203294	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-2989	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

203295	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat の画像デコーダにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-2984	2010-02-9 13:54	2009-10-13	Show	GitHub Exploit DB Packet Storm

203296	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3797	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

203297	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3796	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

203298	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3794	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

203299	10	危険	IBM	-	IBM Lotus Domino Web Access におけるリンク処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0276	2010-02-8 13:19	2010-01-7	Show	GitHub Exploit DB Packet Storm

203300	10	危険	IBM	-	IBM Lotus Domino Web Access における脆弱性	CWE-noinfo 情報不足	CVE-2009-4594	2010-02-8 13:19	2009-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 7, 2024, 4:18 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257771	-	apache	struts	Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 2.3.15.3 allow remote attackers to inject arbitrary web script or HTML via the namespace parameter to (1) actionNames.action and (…	CWE-79 Cross-site Scripting	CVE-2013-6348	2013-11-25 13:36	2013-11-3	Show	GitHub Exploit DB Packet Storm

257772	-	pineapp	mail-secure_5099sk	admin/confnetworking.html in PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms allows remote attackers to execute arbitrary commands via shell metacharacters in the nsserver parame…	CWE-94 Code Injection	CVE-2013-6830	2013-11-25 13:36	2013-11-20	Show	GitHub Exploit DB Packet Storm

257773	-	pineapp	mail-secure_5099sk	PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms has a sudoers file that does not properly restrict user specifications, which allows local users to gain privileges via a sudo com…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6831	2013-11-25 13:36	2013-11-20	Show	GitHub Exploit DB Packet Storm

257774	-	freebsd	freebsd	The nand_ioctl function in sys/dev/nand/nand_geom.c in the nand driver in the kernel in FreeBSD 10 and earlier does not properly initialize a certain data structure, which allows local users to obtai…	CWE-200 Information Exposure	CVE-2013-6832	2013-11-25 13:36	2013-11-21	Show	GitHub Exploit DB Packet Storm

257775	-	freebsd	freebsd	The qls_eioctl function in sys/dev/qlxge/qls_ioctl.c in the kernel in FreeBSD 10 and earlier does not validate a certain size parameter, which allows local users to obtain sensitive information from …	CWE-20 Improper Input Validation	CVE-2013-6833	2013-11-25 13:36	2013-11-21	Show	GitHub Exploit DB Packet Storm

257776	-	gwos	groundwork_monitor	GroundWork Monitor Enterprise 6.7.0 performs authentication on the basis of the HTTP Referer header, which allows remote attackers to obtain administrative privileges or access files via a crafted he…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-3499	2013-11-25 13:34	2013-05-8	Show	GitHub Exploit DB Packet Storm

257777	-	gwos	groundwork_monitor	The Nagios-App component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to bypass intended access restrictions via a direct request for a (1) log file or (2) configuration f…	CWE-255 Credentials Management	CVE-2013-3505	2013-11-25 13:34	2013-05-8	Show	GitHub Exploit DB Packet Storm

257778	-	freebsd	freebsd	The nfsrvd_readdir function in sys/fs/nfsserver/nfs_nfsdport.c in the new NFS server in FreeBSD 8.0 through 9.1-RELEASE-p3 does not verify that a READDIR request is for a directory node, which allows…	CWE-20 Improper Input Validation	CVE-2013-3266	2013-11-25 13:33	2013-05-2	Show	GitHub Exploit DB Packet Storm

257779	-	x	libxres	Multiple integer overflows in X.org libXRes 1.0.6 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XResQueryClients and (2…	CWE-189 Numeric Errors	CVE-2013-1988	2013-11-25 13:32	2013-06-16	Show	GitHub Exploit DB Packet Storm

257780	-	x	libxv	Multiple integer overflows in X.org libXv 1.0.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XvQueryPortAttributes, (2…	CWE-189 Numeric Errors	CVE-2013-1989	2013-11-25 13:32	2013-06-16	Show	GitHub Exploit DB Packet Storm