Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205961 5 警告 Opera Software ASA - Opera の Web Workers 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-4686 2011-12-9 16:06 2011-12-7 Show GitHub Exploit DB Packet Storm
205962 5 警告 Opera Software ASA - Opera の Dragonfly におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4685 2011-12-9 16:05 2011-12-7 Show GitHub Exploit DB Packet Storm
205963 10 危険 Opera Software ASA - Opera における証明書失効の処理に関する詳細不明な脆弱性 CWE-310
暗号の問題 		CVE-2011-4684 2011-12-9 16:05 2011-12-7 Show GitHub Exploit DB Packet Storm
205964 10 危険 Opera Software ASA - Opera における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2011-4683 2011-12-9 16:04 2011-12-7 Show GitHub Exploit DB Packet Storm
205965 6.4 警告 Opera Software ASA - Opera の JavaScript エンジンにおける同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4682 2011-12-9 16:03 2011-12-7 Show GitHub Exploit DB Packet Storm
205966 5 警告 Opera Software ASA - Opera における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4681 2011-12-9 16:03 2011-12-7 Show GitHub Exploit DB Packet Storm
205967 7.5 危険 Webmaster-Tips - Joomla! 用 webmaster-tips.net Flash Gallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4968 2011-12-9 14:45 2011-11-1 Show GitHub Exploit DB Packet Storm
205968 7.5 危険 BrotherScripts - BrotherScripts Business Directory の articlesdetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4969 2011-12-9 14:44 2011-11-1 Show GitHub Exploit DB Packet Storm
205969 7.5 危険 wikiwebhelp - Wiki Web Help の handlers/getpage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4970 2011-12-9 14:44 2011-11-1 Show GitHub Exploit DB Packet Storm
205970 7.5 危険 YPNinc - YPNinc JokeScript の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4972 2011-12-9 14:43 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258441 - news_manager news_manager Multiple SQL injection vulnerabilities in News Manager 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) lang parameter to (a) advsearch.php, (b) archive.php, and (c) index.php… CWE-89
SQL Injection 		CVE-2008-2340 2017-09-29 10:31 2008-05-19 Show GitHub Exploit DB Packet Storm
258442 - avalonnet news_manager PHP remote file inclusion vulnerability in ch_readalso.php in News Manager 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the read_xml_include parameter. CWE-94
Code Injection 		CVE-2008-2341 2017-09-29 10:31 2008-05-19 Show GitHub Exploit DB Packet Storm
258443 - news_manager news_manager Directory traversal vulnerability in attachments.php in News Manager 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter. CWE-22
Path Traversal 		CVE-2008-2342 2017-09-29 10:31 2008-05-19 Show GitHub Exploit DB Packet Storm
258444 - news_manager news_manager News Manager 2.0 allows remote attackers to bypass restrictions and obtain sensitive information via a direct request to (1) db/connect_str.php and (2) login/info.php. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2343 2017-09-29 10:31 2008-05-19 Show GitHub Exploit DB Packet Storm
258445 - alkalinephp alkalinephp AlkalinePHP 0.77.35 and earlier allows remote attackers to bypass authentication and gain administrative access by creating an admin account via a direct request to adduser.php. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2346 2017-09-29 10:31 2008-05-21 Show GitHub Exploit DB Packet Storm
258446 - mypicgallery mypicgallery MyPicGallery 1.0 allows remote attackers to bypass application authentication and gain administrative access by setting the userID parameter to "admin" in a direct request to admin/addUser.php. CWE-287
Improper Authentication 		CVE-2008-2347 2017-09-29 10:31 2008-05-21 Show GitHub Exploit DB Packet Storm
258447 - meltingicefs meltingice_file_system MeltingIce File System 1.0 allows remote attackers to bypass application authentication, create new user accounts, and exceed application quotas via a direct request to admin/adduser.php. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2348 2017-09-29 10:31 2008-05-21 Show GitHub Exploit DB Packet Storm
258448 - zomp zomplog Zomplog 3.8.2 and earlier allows remote attackers to gain administrative access by creating an admin account via a direct request to install/newuser.php with the admin parameter set to 1. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2349 2017-09-29 10:31 2008-05-21 Show GitHub Exploit DB Packet Storm
258449 - webmanager-pro cms_webmanager-pro Multiple SQL injection vulnerabilities in index.php in CMS WebManager-Pro allow remote attackers to execute arbitrary SQL commands via the (1) lang_id and (2) menu_id parameters. CWE-89
SQL Injection 		CVE-2008-2351 2017-09-29 10:31 2008-05-21 Show GitHub Exploit DB Packet Storm
258450 - gnugallery gnugallery Directory traversal vulnerability in admin.php in GNU/Gallery 1.1.1.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the show parameter. CWE-22
Path Traversal 		CVE-2008-2353 2017-09-29 10:31 2008-05-21 Show GitHub Exploit DB Packet Storm