Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205261 7.5 危険 Joomla!
Jextensions		 - Joomla! 用 JExtensions JE Director コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4862 2012-02-9 11:07 2011-10-5 Show GitHub Exploit DB Packet Storm
205262 7.5 危険 webSPELL - webSPELL の asearch.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4861 2012-02-9 11:06 2011-10-5 Show GitHub Exploit DB Packet Storm
205263 7.5 危険 Galaxyscriptz - MyPhpAuction の product_desc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4860 2012-02-9 11:05 2011-10-5 Show GitHub Exploit DB Packet Storm
205264 7.5 危険 WebAsyst - WebAsyst Shop-Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4859 2012-02-9 11:05 2011-10-5 Show GitHub Exploit DB Packet Storm
205265 5 警告 Joerg Risse - DNET Live-Stats の team.rc5-72.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4858 2012-02-9 11:04 2011-10-5 Show GitHub Exploit DB Packet Storm
205266 7.5 危険 Curtiss Grymala - CAG CMS の click.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4857 2012-02-9 11:03 2011-10-5 Show GitHub Exploit DB Packet Storm
205267 7.5 危険 ASP indir - xWeblog の arsiv.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4856 2012-02-9 11:03 2011-10-5 Show GitHub Exploit DB Packet Storm
205268 7.5 危険 ASP indir - xWeblog の oku.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4855 2012-02-9 11:02 2011-10-5 Show GitHub Exploit DB Packet Storm
205269 6.8 警告 Zuitu - Zuitu の ajax/coupon.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4854 2012-02-9 11:02 2011-10-5 Show GitHub Exploit DB Packet Storm
205270 7.5 危険 Chill Creations - Joomla! 用 ccInvoices コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4853 2012-02-9 11:01 2011-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 19, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257621 - freebsd freebsd The jail_attach system call in FreeBSD 5.1 and 5.2 changes the directory of a calling process even if the process doesn't have permission to change directory, which allows local users to gain read/wr… NVD-CWE-Other
CVE-2004-0126 2017-10-10 10:30 2004-03-29 Show GitHub Exploit DB Packet Storm
257622 - phpgedview phpgedview PHP remote file inclusion vulnerability in the GEDCOM configuration script for phpGedView 2.65.1 and earlier allows remote attackers to execute arbitrary PHP code by modifying the PGV_BASE_DIRECTORY … NVD-CWE-Other
CVE-2004-0128 2017-10-10 10:30 2004-03-3 Show GitHub Exploit DB Packet Storm
257623 - phpmyadmin phpmyadmin Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in the what parameter. NVD-CWE-Other
CVE-2004-0129 2017-10-10 10:30 2004-03-3 Show GitHub Exploit DB Packet Storm
257624 - gnu radius The rad_print_request function in logger.c for GNU Radius daemon (radiusd) before 1.2 allows remote attackers to cause a denial of service (crash) via a UDP packet with an Acct-Status-Type attribute … NVD-CWE-Other
CVE-2004-0131 2017-10-10 10:30 2004-03-3 Show GitHub Exploit DB Packet Storm
257625 - samhain_labs hsftp Format string vulnerability in hsftp 1.11 allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via file names containing format string characters that ar… NVD-CWE-Other
CVE-2004-0159 2017-10-10 10:30 2004-03-15 Show GitHub Exploit DB Packet Storm
257626 - synaesthesia synaesthesia Synaesthesia 2.2 and earlier allows local users to execute arbitrary code via a symlink attack on the configuration file. NVD-CWE-Other
CVE-2004-0160 2017-10-10 10:30 2004-03-29 Show GitHub Exploit DB Packet Storm
257627 - apple mac_os_x
mac_os_x_server 		Format string vulnerability in Point-to-Point Protocol (PPP) daemon (pppd) 2.4.0 for Mac OS X 10.3.2 and earlier allows remote attackers to read arbitrary pppd process data, including PAP or CHAP aut… NVD-CWE-Other
CVE-2004-0165 2017-10-10 10:30 2004-03-15 Show GitHub Exploit DB Packet Storm
257628 - apple darwin_streaming_server QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service (crash) via DESCRIBE requests with long User-Agent fields, which causes an Assert error to… NVD-CWE-Other
CVE-2004-0169 2017-10-10 10:30 2004-03-15 Show GitHub Exploit DB Packet Storm
257629 - freebsd
openbsd 		freebsd
openbsd 		FreeBSD 5.1 and earlier, and Mac OS X before 10.3.4, allows remote attackers to cause a denial of service (resource exhaustion of memory buffers and system crash) via a large number of out-of-sequenc… NVD-CWE-Other
CVE-2004-0171 2017-10-10 10:30 2004-03-15 Show GitHub Exploit DB Packet Storm
257630 - apache http_server Directory traversal vulnerability in Apache 1.3.29 and earlier, and Apache 2.0.48 and earlier, when running on Cygwin, allows remote attackers to read arbitrary files via a URL containing "..%5C" (do… NVD-CWE-Other
CVE-2004-0173 2017-10-10 10:30 2004-04-15 Show GitHub Exploit DB Packet Storm