Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205491 5 警告 オラクル - Oracle Solaris における Network の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0096 2012-01-23 10:04 2012-01-17 Show GitHub Exploit DB Packet Storm
205492 6.8 警告 オラクル - Oracle Solaris における Kerberos の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0100 2012-01-23 10:03 2012-01-17 Show GitHub Exploit DB Packet Storm
205493 7.8 危険 オラクル - Oracle Solaris における TCP/IP の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0094 2012-01-23 09:59 2012-01-17 Show GitHub Exploit DB Packet Storm
205494 9.3 危険 7-Technologies - 7-Technologies Interactive Graphical SCADA System における権限を取得される脆弱性 CWE-Other
その他 		CVE-2011-4053 2012-01-20 16:50 2012-01-19 Show GitHub Exploit DB Packet Storm
205495 2.1 注意 DELL EMC (旧 EMC Corporation) - EMC SourceOne Email Management の Web 検索機能における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-4142 2012-01-20 16:49 2012-01-19 Show GitHub Exploit DB Packet Storm
205496 4.6 警告 IBM - IBM WebSphere Application Server の iscdeploy におけるファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1376 2012-01-20 16:48 2012-01-18 Show GitHub Exploit DB Packet Storm
205497 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2317 2012-01-20 16:45 2012-01-17 Show GitHub Exploit DB Packet Storm
205498 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3524 2012-01-20 16:44 2012-01-17 Show GitHub Exploit DB Packet Storm
205499 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3514 2012-01-20 16:43 2012-01-17 Show GitHub Exploit DB Packet Storm
205500 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3509 2012-01-20 16:40 2012-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266581 - zeroboard zeroboard Cross-site scripting (XSS) vulnerability in check_user_id.php in ZeroBoard 4.1pl4 and earlier allows remote attackers to inject arbitrary web script or HTML via the user_id parameter. CWE-79
Cross-site Scripting 		CVE-2004-2738 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266582 - phprojekt phprojekt The setup routine (setup.php) in PHProjekt 4.2.1 and earlier allows remote attackers to modify system configuration via unknown attack vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2739 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266583 - phprojekt phprojekt PHP remote file inclusion vulnerability in authform.inc.php in PHProjekt 4.2.3 and earlier allows remote attackers to include arbitrary PHP code via a URL in the path_pre parameter. CWE-94
Code Injection 		CVE-2004-2740 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266584 - horde application_framework Cross-site scripting (XSS) vulnerability in the "help window" (help.php) in Horde Application Framework 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) module, (2) to… CWE-79
Cross-site Scripting 		CVE-2004-2741 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266585 - businessobjects crystal_enterprise Cross-site scripting (XSS) vulnerability in the report viewer in Crystal Enterprise 8.5, 9, and 10 allows remote attackers to inject arbitrary web script or HTML via script in the URL to a report (RP… CWE-79
Cross-site Scripting 		CVE-2004-2742 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266586 - raditha_dissanayake mega_upload_progress_bar upload.cgi in Mega Upload Progress Bar before 1.45 allows remote attackers to copy or overwrite arbitrary files via unspecified parameters related to names of uploaded files. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2743 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266587 - phplist mailing_list_manager Unspecified vulnerability in Tincan Limited PHPlist before 2.8.12 has unknown impact and attack vectors, related to a "security update release." NVD-CWE-noinfo
CVE-2004-2744 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266588 - 2wire homeportal Directory traversal vulnerability in wra/public/wralogin in 2Wire Gateway, possibly as used in HomePortal and other product lines, allows remote attackers to read arbitrary files via a .. (dot dot) i… CWE-22
Path Traversal 		CVE-2004-2749 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266589 - postnuke_software_foundation postnuke SQL injection vulnerability in the members_list module in PostNuke 0.726, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the sortby parameter. CWE-89
SQL Injection 		CVE-2004-2751 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
266590 - hp hp-ux Unspecified vulnerability in SharedX in HP-UX B.11.00, B.11.11, and B.11.22 allows local users to access unspecified files or cause a denial of service via unknown vectors related to handling of "fil… NVD-CWE-noinfo
CVE-2004-2753 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm