Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205841	9.3	危険	Nullsoft	-	Winamp の in_avi.dll プラグインにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-3834	2011-12-19 16:18	2011-12-9	Show	GitHub Exploit DB Packet Storm

205842	10	危険	SmarterTools Inc.	-	SmarterTools SmarterStats における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4752	2011-12-19 16:18	2011-12-16	Show	GitHub Exploit DB Packet Storm

205843	5	警告	SmarterTools Inc.	-	SmarterTools SmarterStats における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4751	2011-12-19 16:17	2011-12-16	Show	GitHub Exploit DB Packet Storm

205844	4.3	警告	SmarterTools Inc.	-	SmarterTools SmarterStats におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4750	2011-12-19 16:16	2011-12-16	Show	GitHub Exploit DB Packet Storm

205845	4.6	警告	ヒューレット・パッカード IBM オラクル	-	HP ALM 内の getInstalledPackages 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4834	2011-12-19 15:08	2011-12-15	Show	GitHub Exploit DB Packet Storm

205846	7.5	危険	SugarCRM	-	SugarCRM の Leads モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4833	2011-12-19 15:08	2011-12-15	Show	GitHub Exploit DB Packet Storm

205847	7.5	危険	Moxiecode Systems AB phpMyFAQ PHPletter	-	複数の製品で使用される inc/function.base.php における PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4825	2011-12-19 15:07	2011-10-25	Show	GitHub Exploit DB Packet Storm

205848	7.5	危険	The Cacti Group	-	Cacti の auth_login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4824	2011-12-19 15:06	2011-09-26	Show	GitHub Exploit DB Packet Storm

205849	4.3	警告	Atlassian	-	Atlassian FishEye のユーザプロファイル機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4822	2011-12-19 15:05	2011-10-24	Show	GitHub Exploit DB Packet Storm

205850	3.6	注意	Artsoft Entertainment	-	Artsoft Entertainment の Rocks'n'Diamonds における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4606	2011-12-19 15:05	2011-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 14, 2025, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
262041	-	dovecot	dovecot	Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 before 1.0.4 and 1.1 before 1.1.7, as derived from Cyrus libsieve, allow context-dependent attackers to cause a denial of serv…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-3235	2017-09-19 10:29	2009-09-17	Show	GitHub Exploit DB Packet Storm

262042	-	wireshark	wireshark	Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) v…	NVD-CWE-noinfo	CVE-2009-3241	2017-09-19 10:29	2009-09-18	Show	GitHub Exploit DB Packet Storm

262043	-	wireshark	wireshark	Unspecified vulnerability in packet.c in the GSM A RR dissector in Wireshark 1.2.0 and 1.2.1 allows remote attackers to cause a denial of service (application crash) via unknown vectors related to "a…	NVD-CWE-noinfo	CVE-2009-3242	2017-09-19 10:29	2009-09-18	Show	GitHub Exploit DB Packet Storm

262044	-	wireshark	wireshark	Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and 1.2.1, when running on Windows, allows remote attackers to cause a denial of service (application crash) via unknown vectors rela…	NVD-CWE-noinfo	CVE-2009-3243	2017-09-19 10:29	2009-09-18	Show	GitHub Exploit DB Packet Storm

262045	-	adobe	shockwave_player	Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-3244	2017-09-19 10:29	2009-09-18	Show	GitHub Exploit DB Packet Storm

262046	-	openssl	openssl	OpenSSL before 0.9.8m does not check for a NULL return value from bn_wexpand function calls in (1) crypto/bn/bn_div.c, (2) crypto/bn/bn_gf2m.c, (3) crypto/ec/ec2_smpl.c, and (4) engines/e_ubsec.c, wh…	CWE-20 Improper Input Validation	CVE-2009-3245	2017-09-19 10:29	2010-03-6	Show	GitHub Exploit DB Packet Storm

262047	-	mybuxscript	pts-bux	SQL injection vulnerability in spnews.php in MyBuxScript PTC-BUX allows remote attackers to execute arbitrary SQL commands via the id parameter in an spnews action to the default URI. NOTE: some of …	CWE-89 SQL Injection	CVE-2009-3246	2017-09-19 10:29	2009-09-19	Show	GitHub Exploit DB Packet Storm

262048	-	vtiger	vtiger_crm	Cross-site scripting (XSS) vulnerability in the Activities module in vtiger CRM 5.0.4 allows remote attackers to inject arbitrary web script or HTML via the action parameter to phprint.php. NOTE: th…	CWE-79 Cross-site Scripting	CVE-2009-3247	2017-09-19 10:29	2009-09-19	Show	GitHub Exploit DB Packet Storm

262049	-	vtiger	vtiger_crm	Cross-site request forgery (CSRF) vulnerability in the RSS module in vtiger CRM 5.0.4 allows remote attackers to hijack the authentication of Admin users for requests that modify the news feed system…	CWE-352 Origin Validation Error	CVE-2009-3248	2017-09-19 10:29	2009-09-19	Show	GitHub Exploit DB Packet Storm

262050	-	vtiger	vtiger_crm	Multiple directory traversal vulnerabilities in vtiger CRM 5.0.4 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the module parameter to graph.php; or th…	CWE-22 Path Traversal	CVE-2009-3249	2017-09-19 10:29	2009-09-19	Show	GitHub Exploit DB Packet Storm