Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205261	7.5	危険	Joomla! Jextensions	-	Joomla! 用 JExtensions JE Director コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4862	2012-02-9 11:07	2011-10-5	Show	GitHub Exploit DB Packet Storm

205262	7.5	危険	webSPELL	-	webSPELL の asearch.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4861	2012-02-9 11:06	2011-10-5	Show	GitHub Exploit DB Packet Storm

205263	7.5	危険	Galaxyscriptz	-	MyPhpAuction の product_desc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4860	2012-02-9 11:05	2011-10-5	Show	GitHub Exploit DB Packet Storm

205264	7.5	危険	WebAsyst	-	WebAsyst Shop-Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4859	2012-02-9 11:05	2011-10-5	Show	GitHub Exploit DB Packet Storm

205265	5	警告	Joerg Risse	-	DNET Live-Stats の team.rc5-72.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4858	2012-02-9 11:04	2011-10-5	Show	GitHub Exploit DB Packet Storm

205266	7.5	危険	Curtiss Grymala	-	CAG CMS の click.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4857	2012-02-9 11:03	2011-10-5	Show	GitHub Exploit DB Packet Storm

205267	7.5	危険	ASP indir	-	xWeblog の arsiv.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4856	2012-02-9 11:03	2011-10-5	Show	GitHub Exploit DB Packet Storm

205268	7.5	危険	ASP indir	-	xWeblog の oku.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4855	2012-02-9 11:02	2011-10-5	Show	GitHub Exploit DB Packet Storm

205269	6.8	警告	Zuitu	-	Zuitu の ajax/coupon.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4854	2012-02-9 11:02	2011-10-5	Show	GitHub Exploit DB Packet Storm

205270	7.5	危険	Chill Creations	-	Joomla! 用 ccInvoices コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4853	2012-02-9 11:01	2011-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271941	-	evan_sims	effingerd	Buffer overflow in the sockFinger_DataArrival function in efFingerD 0.2.12 allows remote attackers to cause a denial of service (daemon crash) via a long finger command.	NVD-CWE-Other	CVE-2004-2272	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271942	-	w3c	jigsaw	Unknown vulnerability in Jigsaw before 2.2.4 has unknown impact and attack vectors, possibly related to the parsing of the URI.	NVD-CWE-Other	CVE-2004-2274	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271943	-	i-mall_commerce	i-mall.cgi	i-mall.cgi in I-Mall Commerce allows remote attackers to execute arbitrary commands via shell metacharacters via the p parameter.	NVD-CWE-Other	CVE-2004-2275	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271944	-	-	-	F-Secure Anti-Virus 5.41 and 5.42 on Windows, Client Security 5.50 and 5.52, 4.60 for Samba Servers, and 4.52 and earlier for Linux does not properly detect certain viruses in a PKZip archive, which …	NVD-CWE-Other	CVE-2004-2276	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271945	-	agsm	agsm	Buffer overflow in aGSM Half-Life client allows remote Half-Life servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server response.	NVD-CWE-Other	CVE-2004-2277	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271946	-	chaogic_systems	vhost	Unknown cross-site scripting (XSS) vulnerability in the web GUI in vHost before 3.10r1 has unknown impact and attack vectors.	NVD-CWE-Other	CVE-2004-2278	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271947	-	invision_power_services	invision_power_board	Cross-site scripting (XSS) vulnerability in Invision Power Board 1.3 Final allows remote attackers to execute arbitrary script as other users via the pop parameter in a chat action to index.php.	NVD-CWE-Other	CVE-2004-2279	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271948	-	open_webmail	open_webmail	The read_list_from_file function in vacation.pl for OpenWebmail before 2.32 20040629 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename argument.	NVD-CWE-Other	CVE-2004-2284	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271949	-	activestate larry_wall	activeperl perl	Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a…	NVD-CWE-Other	CVE-2004-2286	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

271950	-	-	-	Microsoft Windows XP Explorer allows attackers to execute arbitrary code via a HTML and script in a self-executing folder that references an executable file within the folder, which is automatically …	NVD-CWE-Other	CVE-2004-2290	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm