Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 27, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206841 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-1880 2011-07-22 10:47 2011-07-12 Show GitHub Exploit DB Packet Storm
206842 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1884 2011-07-22 10:46 2011-07-12 Show GitHub Exploit DB Packet Storm
206843 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1883 2011-07-22 10:46 2011-07-12 Show GitHub Exploit DB Packet Storm
206844 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1882 2011-07-22 10:45 2011-07-12 Show GitHub Exploit DB Packet Storm
206845 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1879 2011-07-22 10:44 2011-07-12 Show GitHub Exploit DB Packet Storm
206846 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1878 2011-07-21 10:30 2011-07-12 Show GitHub Exploit DB Packet Storm
206847 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1877 2011-07-21 10:29 2011-07-12 Show GitHub Exploit DB Packet Storm
206848 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1876 2011-07-21 10:28 2011-07-12 Show GitHub Exploit DB Packet Storm
206849 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1875 2011-07-21 10:28 2011-07-12 Show GitHub Exploit DB Packet Storm
206850 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1874 2011-07-21 10:27 2011-07-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256531 - adserversolutions ad_management_software SQL injection vulnerability in logon.jsp in Ad Server Solutions Ad Management Software Java allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password, related to… CWE-89
SQL Injection 		CVE-2008-6365 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256532 - adserversolutions affiliate_software_java SQL injection vulnerability in logon.jsp in Ad Server Solutions Affiliate Software Java 4.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password, possibly r… CWE-89
SQL Injection 		CVE-2008-6366 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256533 - socialgroupie social_groupie Unrestricted file upload vulnerability in Photos/create_album.php in Social Groupie allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then … CWE-20
 Improper Input Validation  		CVE-2008-6367 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256534 - ocean12tech contact_manager_pro SQL injection vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to execute arbitrary SQL commands via the Sort parameter. CWE-89
SQL Injection 		CVE-2008-6369 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256535 - ocean12tech contact_manager_pro Cross-site scripting (XSS) vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to inject arbitrary web script or HTML via the DisplayFormat parameter. CWE-79
Cross-site Scripting 		CVE-2008-6370 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256536 - ocean12tech membership_manager_pro SQL injection vulnerability in login.asp in Ocean12 Membership Manager Pro allows remote attackers to execute arbitrary SQL commands via the username (Username parameter). CWE-89
SQL Injection 		CVE-2008-6371 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256537 - ocean12tech faq_manager_pro SQL injection vulnerability in default.asp in Ocean12 FAQ Manager Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a Cat action. NOTE: some of these details … CWE-89
SQL Injection 		CVE-2008-6372 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256538 - codefixer mailinglistpro CodefixerSoftware MailingListPro Free Edition stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a dir… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-6374 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256539 - phpbb-seo multi_seo_phpbb PHP remote file inclusion vulnerability in include/global.php in Multi SEO phpBB 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the pfad parameter. CWE-94
Code Injection 		CVE-2008-6377 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm
256540 - mxmania calendar_mx_professional SQL injection vulnerability in calendar_Eventupdate.asp in Calendar Mx Professional 2.0.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter. CWE-89
SQL Injection 		CVE-2008-6378 2017-09-29 10:33 2009-03-3 Show GitHub Exploit DB Packet Storm