Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
206021	7.5	危険	Jextensions	-	Joomla! 用 JExtensions JE Story Submit コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5022	2011-12-9 13:55	2011-11-2	Show	GitHub Exploit DB Packet Storm

206022	7.5	危険	Cramer Development	-	Digital Interchange Calendar における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5023	2011-12-9 13:54	2011-11-2	Show	GitHub Exploit DB Packet Storm

206023	6	警告	CuteSITE	-	CuteSITE CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5024	2011-12-9 13:54	2011-11-2	Show	GitHub Exploit DB Packet Storm

206024	4.3	警告	CuteSITE	-	CuteSITE CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5025	2011-12-9 13:50	2011-11-2	Show	GitHub Exploit DB Packet Storm

206025	6.8	警告	Lightbox Technologies Inc.	-	Science Fair In A Box における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5026	2011-12-9 13:50	2011-11-2	Show	GitHub Exploit DB Packet Storm

206026	4.3	警告	Lightbox Technologies Inc.	-	Science Fair In A Box におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5027	2011-12-9 13:49	2011-11-2	Show	GitHub Exploit DB Packet Storm

206027	7.5	危険	Jextensions	-	Joomla! 用 JExtensions JE Job のコンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5028	2011-12-9 13:48	2011-11-2	Show	GitHub Exploit DB Packet Storm

206028	7.5	危険	codefabrik gmbh	-	Ecomat CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5029	2011-12-9 13:47	2011-11-2	Show	GitHub Exploit DB Packet Storm

206029	4.3	警告	codefabrik gmbh	-	Ecomat CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5030	2011-12-9 13:46	2011-11-2	Show	GitHub Exploit DB Packet Storm

206030	4.3	警告	fileNice	-	fileNice の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5031	2011-12-9 13:45	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266451	-	netbsd openbsd	netbsd openbsd	Integer overflow in the systrace_preprepl function (STRIOCREPLACE) in systrace in OpenBSD 3.9 and NetBSD 3 allows local users to cause a denial of service (crash), gain privileges, or read arbitrary …	NVD-CWE-Other	CVE-2006-5218	2017-07-20 10:33	2006-10-10	Show	GitHub Exploit DB Packet Storm

266452	-	netbsd openbsd	netbsd openbsd	A patch has been released for each affected product which addresses this vulnerability.	NVD-CWE-Other	CVE-2006-5218	2017-07-20 10:33	2006-10-10	Show	GitHub Exploit DB Packet Storm

266453	-	aai-portal	aaiportal	Multiple SQL injection vulnerabilities in AAIportal before 1.4.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.	NVD-CWE-Other	CVE-2006-5225	2017-07-20 10:33	2006-10-11	Show	GitHub Exploit DB Packet Storm

266454	-	grandstream	gxp-2000	Grandstream GXP-2000 VoIP Desktop Phone, firmware version 1.1.0.5, allows remote attackers to cause a denial of service (hang or reboot) via a large amount of ASCII data sent to port (1) 5060/UDP, (2…	NVD-CWE-Other	CVE-2006-5231	2017-07-20 10:33	2006-10-11	Show	GitHub Exploit DB Packet Storm

266455	-	polycom	soundpoint_ip_301	Polycom SoundPoint IP 301 VoIP Desktop Phone, firmware version 1.4.1.0040, allows remote attackers to cause a denial of service (reboot) via (1) a long URL sent to the HTTP daemon and (2) unspecified…	NVD-CWE-Other	CVE-2006-5233	2017-07-20 10:33	2006-10-11	Show	GitHub Exploit DB Packet Storm

266456	-	dayana_networks	phponline	PHP remote file inclusion vulnerability in strload.php in Dayana Networks phpOnline (aka PHP-Online) 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the LangFile parameter.	NVD-CWE-Other	CVE-2006-5253	2017-07-20 10:33	2006-10-13	Show	GitHub Exploit DB Packet Storm

266457	-	compteur	compteur	PHP remote file inclusion vulnerability in compteur.php in Compteur 2 allows remote attackers to execute arbitrary PHP code via a URL in the cp parameter. NOTE: the provenance of this information is…	NVD-CWE-Other	CVE-2006-5260	2017-07-20 10:33	2006-10-13	Show	GitHub Exploit DB Packet Storm

266458	-	microsoft	dynamics_gp	Unspecified vulnerability in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allows remote attackers to cause a denial of service (crash) via an invalid magic number in a Distributed Pr…	CWE-20 Improper Input Validation	CVE-2006-5265	2017-07-20 10:33	2006-12-31	Show	GitHub Exploit DB Packet Storm

266459	-	microsoft	dynamics_gp	Multiple buffer overflows in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allow remote attackers to execute arbitrary code via (1) a crafted Distributed Process Manager (DPM) message…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2006-5266	2017-07-20 10:33	2006-12-31	Show	GitHub Exploit DB Packet Storm

266460	-	trend_micro	serverprotect	Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via vectors related to obtaining "administrative access to the RPC interface."	NVD-CWE-noinfo CWE-287 Improper Authentication	CVE-2006-5268	2017-07-20 10:33	2008-11-18	Show	GitHub Exploit DB Packet Storm