Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206051 6.8 警告 Canonical - Ubuntu の Software Center における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3150 2011-12-8 12:12 2011-11-21 Show GitHub Exploit DB Packet Storm
206052 4.3 警告 phpWebSite - phpWebSite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4265 2011-12-8 12:04 2011-12-8 Show GitHub Exploit DB Packet Storm
206053 7.5 危険 One Click Orgs - One Click Orgs におけるアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2011-4677 2011-12-7 16:25 2011-12-6 Show GitHub Exploit DB Packet Storm
206054 5.8 警告 One Click Orgs - One Click Orgs におけるオープンリダイレクトの複数の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4553 2011-12-7 16:19 2011-12-6 Show GitHub Exploit DB Packet Storm
206055 4.3 警告 One Click Orgs - One Click Orgs におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4552 2011-12-7 16:18 2011-12-6 Show GitHub Exploit DB Packet Storm
206056 7.5 危険 osCommerce - osCommerce における複数のディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4543 2011-12-6 16:33 2011-12-5 Show GitHub Exploit DB Packet Storm
206057 7.5 危険 Zabbix - Zabbix の popup.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4674 2011-12-6 16:27 2011-11-24 Show GitHub Exploit DB Packet Storm
206058 7.5 危険 Automattic Inc. - WordPress 用 Jetpack プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4673 2011-12-6 16:26 2011-12-2 Show GitHub Exploit DB Packet Storm
206059 7.5 危険 Valid - Valid tiny-erp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4672 2011-12-6 16:25 2011-12-2 Show GitHub Exploit DB Packet Storm
206060 7.5 危険 AdRotate Plugin - WordPress 用 AdRotate プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4671 2011-12-6 16:24 2011-12-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255931 - lotus domino_r5_server Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via URL requests (>8Kb) containing a large number of '/' characters. NVD-CWE-Other
CVE-2001-0604 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
255932 - hp
sun 		virtualvault
iplanet_web_server 		Vulnerability in iPlanet Web Server 4.X in HP-UX 11.04 (VVOS) with VirtualVault A.04.00 allows a remote attacker to create a denial of service via the HTTPS service. NVD-CWE-Other
CVE-2001-0606 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
255933 - hp mpe HP architected interface facility (AIF) as includes with MPE/iX 5.5 through 6.5 running on a HP3000 allows an attacker to gain additional privileges and gain access to databases via the AIF - AIFCHAN… NVD-CWE-Other
CVE-2001-0608 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
255934 - kde
suse 		kde
suse_linux 		kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp. NVD-CWE-Other
CVE-2001-0610 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
255935 - carello e-commerce Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and execute arbitrary commands via a specially constructed URL. NVD-CWE-Other
CVE-2001-0614 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
255936 - alliedtelesyn at-ar220e Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single… NVD-CWE-Other
CVE-2001-0617 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
255937 - lucent orinoco_rg-1000 Orinoco RG-1000 wireless Residential Gateway uses the last 5 digits of the 'Network Name' or SSID as the default Wired Equivalent Privacy (WEP) encryption key. Since the SSID occurs in the clear dur… NVD-CWE-Other
CVE-2001-0618 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
255938 - iplanet calendar_server iPlanet Calendar Server 5.0p2 and earlier allows a local attacker to gain access to the Netscape Admin Server (NAS) LDAP database and read arbitrary files by obtaining the cleartext administrator use… NVD-CWE-Other
CVE-2001-0620 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
255939 - sendfile sendfile sendfiled, as included with Simple Asynchronous File Transfer (SAFT), on various Linux systems does not properly drop privileges when sending notification emails, which allows local attackers to gain… NVD-CWE-Other
CVE-2001-0623 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
255940 - qnx qnx QNX 2.4 allows a local user to read arbitrary files by directly accessing the mount point for the FAT disk partition, e.g. /fs-dos. NVD-CWE-Other
CVE-2001-0624 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm