Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205061 6.8 警告 Antonio de Vincentiis - GAzie の modules/config/admin_utente.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1220 2012-02-22 16:24 2012-02-21 Show GitHub Exploit DB Packet Storm
205062 4.3 警告 freelancerKit - freelancerKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1219 2012-02-22 16:18 2012-02-21 Show GitHub Exploit DB Packet Storm
205063 7.5 危険 freelancerKit - freelancerKit における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1218 2012-02-22 16:15 2012-02-21 Show GitHub Exploit DB Packet Storm
205064 4.3 警告 Zenphoto - Zenphoto におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0995 2012-02-22 16:12 2012-02-21 Show GitHub Exploit DB Packet Storm
205065 6 警告 Zenphoto - Zenphoto の Manage Albums 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0994 2012-02-22 16:09 2012-02-21 Show GitHub Exploit DB Packet Storm
205066 6.8 警告 Zenphoto - Zenphoto の viewer_size_image.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0993 2012-02-22 16:07 2012-02-21 Show GitHub Exploit DB Packet Storm
205067 4 警告 IBM - IBM solidDB のサーバにおけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-0200 2012-02-22 15:31 2012-02-7 Show GitHub Exploit DB Packet Storm
205068 4 警告 IBM - IBM solidDB のサーバにおけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4890 2012-02-22 15:30 2011-11-17 Show GitHub Exploit DB Packet Storm
205069 4.3 警告 SIMHL - STHS v2 Web Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1217 2012-02-22 15:24 2012-02-21 Show GitHub Exploit DB Packet Storm
205070 6 警告 PBBoard - PBBoard の admin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1216 2012-02-22 15:23 2012-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267381 - db_soft_lab dewizardx The DB Software Laboratory DeWizardX (DEWizardAX.ocx) ActiveX control allows remote attackers to overwrite arbitrary files via the SaveToFile function. NVD-CWE-Other
CVE-2007-2725 2017-07-29 10:31 2007-05-17 Show GitHub Exploit DB Packet Storm
267382 - xajax xajax Cross-site scripting (XSS) vulnerability in xajax before 0.2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NVD-CWE-Other
CVE-2007-2739 2017-07-29 10:31 2007-05-18 Show GitHub Exploit DB Packet Storm
267383 - xajax xajax Unspecified vulnerability in xajax before 0.2.5 has unknown impact and attack vectors, not related to XSS. NVD-CWE-Other
CVE-2007-2740 2017-07-29 10:31 2007-05-18 Show GitHub Exploit DB Packet Storm
267384 - littlecms lcms Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-2741 2017-07-29 10:31 2007-05-18 Show GitHub Exploit DB Packet Storm
267385 - labs.beffa.org w2box Unrestricted file upload vulnerability in labs.beffa.org w2box 4.0.0 Beta4 allows remote attackers to upload arbitrary PHP code via a filename with a double extension such as .php.jpg. NVD-CWE-Other
CVE-2007-2742 2017-07-29 10:31 2007-05-18 Show GitHub Exploit DB Packet Storm
267386 - precisionid_barcode precisionid_barcode Stack-based buffer overflow in the PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll allows remote attackers to cause a denial of service (Internet Explorer 6 crash), and possibly ex… NVD-CWE-Other
CVE-2007-2744 2017-07-29 10:31 2007-05-18 Show GitHub Exploit DB Packet Storm
267387 - vdesk webmail Cross-site scripting (XSS) vulnerability in printcal.pl in vDesk Webmail 4.03 allows remote attackers to inject arbitrary web script or HTML via the type parameter. CWE-79
Cross-site Scripting 		CVE-2007-2745 2017-07-29 10:31 2007-05-18 Show GitHub Exploit DB Packet Storm
267388 - rdiffweb rdiffweb Directory traversal vulnerability in rdw_helpers.py in rdiffWeb before 0.3.5.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the path parameter to the /browse URI. NVD-CWE-Other
CVE-2007-2747 2017-07-29 10:31 2007-05-18 Show GitHub Exploit DB Packet Storm
267389 - winimage winimage Multiple buffer overflows in WinImage 8.0.8000 allow user-assisted remote attackers to execute arbitrary code via a FAT image that contains long directory names in a deeply nested directory structure… NVD-CWE-Other
CVE-2007-2758 2017-07-29 10:31 2007-05-19 Show GitHub Exploit DB Packet Storm
267390 - adempiere adempiere Multiple SQL injection vulnerabilities in the insert function in the ValuePreference class (grid/ed/ValuePreference.java) in Adempiere before 3.1.6 allow remote attackers to execute arbitrary SQL com… NVD-CWE-Other
CVE-2007-2759 2017-07-29 10:31 2007-05-19 Show GitHub Exploit DB Packet Storm