Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205091	6.4	警告	マイクロソフト	-	Microsoft Windows Server 2008 における無効なドメイン名の継続的な名前解決を可能にされる脆弱性	CWE-Other その他	CVE-2012-1194	2012-02-21 16:25	2012-02-17	Show	GitHub Exploit DB Packet Storm

205092	6.4	警告	PowerDNS	-	PowerDNS における無効なドメイン名の継続的な名前解決を可能にされる脆弱性	CWE-DesignError	CVE-2012-1193	2012-02-21 16:24	2012-02-17	Show	GitHub Exploit DB Packet Storm

205093	6.4	警告	Stichting NLnet Labs	-	Unbound における無効なドメイン名の継続的な名前解決を可能にされる脆弱性	CWE-DesignError	CVE-2012-1192	2012-02-21 16:22	2012-02-17	Show	GitHub Exploit DB Packet Storm

205094	6.4	警告	Daniel J. Bernstein	-	Daniel J. Bernstein djbdns における無効なドメイン名の継続的な名前解決を可能にされる脆弱性	CWE-20 CWE-DesignError	CVE-2012-1191	2012-02-21 16:20	2012-02-17	Show	GitHub Exploit DB Packet Storm

205095	5	警告	PowerDNS	-	PowerDNS Authoritative Server の common_startup.cc におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0206	2012-02-21 15:50	2012-01-10	Show	GitHub Exploit DB Packet Storm

205096	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバにおける権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0154	2012-02-20 18:30	2012-02-14	Show	GitHub Exploit DB Packet Storm

205097	7.2	危険	マイクロソフト	-	Microsoft Windows の afd.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0148	2012-02-20 18:28	2012-02-14	Show	GitHub Exploit DB Packet Storm

205098	7.2	危険	マイクロソフト	-	Microsoft Windows Server 2003 の afd.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0149	2012-02-20 18:27	2012-02-14	Show	GitHub Exploit DB Packet Storm

205099	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 6 から 9 におけるコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2012-0010	2012-02-20 18:24	2012-02-14	Show	GitHub Exploit DB Packet Storm

205100	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 7 から 9 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0011	2012-02-20 18:22	2012-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 19, 2025, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274691	-	roundcube	webmail	Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that send arbitrary email…	CWE-352 Origin Validation Error	CVE-2009-4077	2015-08-25 01:40	2009-11-26	Show	GitHub Exploit DB Packet Storm

274692	-	roundcube	webmail	Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that modify user informat…	CWE-352 Origin Validation Error	CVE-2009-4076	2015-08-25 01:38	2009-11-26	Show	GitHub Exploit DB Packet Storm

274693	-	ez	ez_publish	eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051128 allows remote authenticated users to cause a denial of service (Apache httpd segmentation fault) via a request…	CWE-399 Resource Management Errors	CVE-2005-4857	2015-07-29 00:04	2005-12-31	Show	GitHub Exploit DB Packet Storm

274694	-	ez	ez_publish	The admin interface in eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051110 does not properly handle authorization errors, which allows remote attackers to obtain …	CWE-19 Data Processing Errors	CVE-2005-4856	2015-07-29 00:03	2005-12-31	Show	GitHub Exploit DB Packet Storm

274695	-	ez	ez_publish	eZ publish 3.5 through 3.7 before 20050830 does not use a folder's read permissions to restrict notifications, which allows remote authenticated users to obtain sensitive information about changes to…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-4854	2015-07-28 23:55	2005-12-31	Show	GitHub Exploit DB Packet Storm

274696	-	ez	ez_publish	The default configuration of the forum package in eZ publish 3.5 before 3.5.5, 3.6 before 3.6.2, 3.7 before 3.7.0rc2, and 3.8 before 20050818 does not restrict edit permissions to a posting's owner, …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-4853	2015-07-28 23:41	2005-12-31	Show	GitHub Exploit DB Packet Storm

274697	-	ez	ez_publish	Vendor has fixed this vulnerability in an upgrade starting at 3.5.5: http://ez.no/download/ez_publish	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-4853	2015-07-28 23:41	2005-12-31	Show	GitHub Exploit DB Packet Storm

274698	-	ez	ez_publish	eZ publish before 3.8.1 does not properly enforce permissions for "content edit Language" when there are four or more languages, which allows remote authenticated users to perform translations into l…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-7218	2015-07-28 23:35	2007-07-7	Show	GitHub Exploit DB Packet Storm

274699	-	ez	ez_publish	eZ publish before 3.8.5 does not properly enforce permissions for editing in a specific language, which allows remote authenticated users to create a draft in an unauthorized language by editing an a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-7219	2015-07-28 23:35	2007-07-7	Show	GitHub Exploit DB Packet Storm

274700	-	ez	ez_publish	eZ publish before 3.8.9, and 3.9 before 3.9.3, does not properly check permissions on module views that lack a policy function, which has unknown impact and attack vectors, as demonstrated by a vulne…	NVD-CWE-noinfo	CVE-2007-4493	2015-07-28 03:36	2007-08-23	Show	GitHub Exploit DB Packet Storm