Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206801 5 警告 オラクル - Oracle Fusion Middleware の OID コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3501 2010-11-1 15:39 2010-10-12 Show GitHub Exploit DB Packet Storm
206802 1 注意 オラクル - 複数の Oracle 製品の Perl コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2389 2010-11-1 15:38 2010-10-12 Show GitHub Exploit DB Packet Storm
206803 3.6 注意 オラクル - Oracle Database Server の Core RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2391 2010-11-1 15:37 2010-10-12 Show GitHub Exploit DB Packet Storm
206804 4.3 警告 オラクル - Oracle Database Server の XDK コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2407 2010-11-1 15:37 2010-10-12 Show GitHub Exploit DB Packet Storm
206805 6.8 警告 Vim - GVim における DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-3914 2010-11-1 12:00 2010-11-1 Show GitHub Exploit DB Packet Storm
206806 9.3 危険 オラクル - Oracle Siebel Option Pack for IE の ActiveX コントロールのメモリ初期化処理に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3737 2010-10-29 16:43 2010-08-9 Show GitHub Exploit DB Packet Storm
206807 4.6 警告 オラクル - Oracle Database Server の Job Queue コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2411 2010-10-29 16:35 2010-10-12 Show GitHub Exploit DB Packet Storm
206808 4.9 警告 オラクル - Oracle Database Server の Change Data Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2415 2010-10-29 16:34 2010-10-12 Show GitHub Exploit DB Packet Storm
206809 5.5 警告 オラクル - Oracle Database Server の OLAP コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2412 2010-10-29 16:34 2010-10-12 Show GitHub Exploit DB Packet Storm
206810 6.5 警告 オラクル - Oracle Database Server の Java Virtual Machine コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2419 2010-10-29 16:34 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261161 - the_seasar_foundation mayaa Cross-site scripting (XSS) vulnerability in Mayaa before 1.1.12 allows remote attackers to inject arbitrary web script or HTML in certain circumstances involving (1) lack of charset specification wit… CWE-79
Cross-site Scripting 		CVE-2007-4595 2017-07-29 10:33 2007-08-30 Show GitHub Exploit DB Packet Storm
261162 - ubuntu ubuntu_linux A regression error in tcp-wrappers 7.6.dbs-10 and 7.6.dbs-11 might allow remote attackers to bypass intended access restrictions when a service uses libwrap but does not specify server connection inf… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-4601 2017-07-29 10:33 2007-08-31 Show GitHub Exploit DB Packet Storm
261163 - bea weblogic_server The SSL client implementation in BEA WebLogic Server 7.0 SP7, 8.1 SP2 through SP6, 9.0, 9.1, 9.2 Gold through MP2, and 10.0 sometimes selects the null cipher when others are available, which might al… NVD-CWE-Other
CVE-2007-4615 2017-07-29 10:33 2007-08-31 Show GitHub Exploit DB Packet Storm
261164 - ibm aix Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain privileges via long command line arguments. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-4621 2017-07-29 10:33 2007-11-6 Show GitHub Exploit DB Packet Storm
261165 - ibm aix Integer underflow in the dns_name_fromtext function in (1) libdns_nonsecure.a and (2) libdns_secure.a in IBM AIX 5.2 allows local users to gain privileges via a crafted "-y" (TSIG key) command line a… CWE-189
Numeric Errors 		CVE-2007-4622 2017-07-29 10:33 2007-11-6 Show GitHub Exploit DB Packet Storm
261166 - polipo polipo Polipo before 1.0.2 allows remote HTTP servers to cause a denial of service (daemon crash) by aborting the response to a POST request. NVD-CWE-Other
CVE-2007-4625 2017-07-29 10:33 2007-08-31 Show GitHub Exploit DB Packet Storm
261167 - qgit qgit The DataLoader::doStart function in dataloader.cpp in QGit 1.5.6 and other versions up to 2pre1 allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on temp… CWE-59
Link Following 		CVE-2007-4631 2017-07-29 10:33 2007-09-1 Show GitHub Exploit DB Packet Storm
261168 - cisco unified_communications_manager
call_manager 		Multiple cross-site scripting (XSS) vulnerabilities in Cisco CallManager and Unified Communications Manager (CUCM) before 3.3(5)sr2b, 4.1 before 4.1(3)sr5, 4.2 before 4.2(3)sr2, and 4.3 before 4.3(1)… CWE-79
Cross-site Scripting 		CVE-2007-4633 2017-07-29 10:33 2007-09-1 Show GitHub Exploit DB Packet Storm
261169 - cisco unified_communications_manager
call_manager 		Multiple SQL injection vulnerabilities in Cisco CallManager and Unified Communications Manager (CUCM) before 3.3(5)sr2b, 4.1 before 4.1(3)sr5, 4.2 before 4.2(3)sr2, and 4.3 before 4.3(1)sr1 allow rem… CWE-89
SQL Injection 		CVE-2007-4634 2017-07-29 10:33 2007-09-1 Show GitHub Exploit DB Packet Storm
261170 - microworld_technologies escan_anti-virus
escan_internet_security
escan_virus_control 		MicroWorld eScan Virus Control 9.0.722.1, Anti-Virus 9.0.722.1, and Internet Security 9.0.722.1 use weak permissions (Everyone:Full Control) for their installation directory trees, which allows local… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-4649 2017-07-29 10:33 2007-09-1 Show GitHub Exploit DB Packet Storm