Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206841 7.5 危険 Likno Software Inc. - WordPress 用 Allwebmenus プラグイン内にある actions.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3981 2011-10-11 10:23 2011-10-4 Show GitHub Exploit DB Packet Storm
206842 6 警告 Jerome Schneider - TYPO3 で利用される Drag Drop Mass Upload における任意のファイルをアップロードされる脆弱性 CWE-noinfo
情報不足 		CVE-2011-3980 2011-10-11 10:20 2011-07-9 Show GitHub Exploit DB Packet Storm
206843 4.3 警告 Zikula Foundation - Zikula Application Framework の Theme モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3979 2011-10-11 10:18 2011-09-9 Show GitHub Exploit DB Packet Storm
206844 3.5 注意 LightNEasy - LightNEasy の LightNEasy.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3978 2011-10-11 10:15 2011-10-4 Show GitHub Exploit DB Packet Storm
206845 7.2 危険 NoMachine - NoMachine NX Node および NX Server の nxconfigure.sh における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2011-3977 2011-10-11 10:13 2011-08-5 Show GitHub Exploit DB Packet Storm
206846 5 警告 IceWarp, Inc. - IceWarp Mail Server の IceWarp WebMail における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-3580 2011-10-11 10:11 2011-09-30 Show GitHub Exploit DB Packet Storm
206847 6.4 警告 IceWarp, Inc. - IceWarp Mail Server の server/webmail.php における任意のファイルを読まれる脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3579 2011-10-11 10:10 2011-09-30 Show GitHub Exploit DB Packet Storm
206848 7.5 危険 シマンテック - Symantec IM Manager の管理コンソールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0554 2011-10-11 10:10 2011-09-29 Show GitHub Exploit DB Packet Storm
206849 7.5 危険 シマンテック - Symantec IM Manager の管理コンソールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-0553 2011-10-11 10:09 2011-09-29 Show GitHub Exploit DB Packet Storm
206850 4.3 警告 シマンテック - Symantec IM Manager の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0552 2011-10-11 10:09 2011-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274121 - ibm websphere_application_server The JAX-RPC WS-Security runtime in the Web Services Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.23 and 7.0 before 7.0.0.3, when APAR PK41002 is installed, does not p… CWE-20
 Improper Input Validation  		CVE-2009-1172 2014-10-24 14:37 2009-03-31 Show GitHub Exploit DB Packet Storm
274122 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.3 uses weak permissions (777) for files associated with unspecified "interim fixes," which allows attackers to modify files that would not have… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-1173 2014-10-24 14:37 2009-03-31 Show GitHub Exploit DB Packet Storm
274123 - oracle database_server Unspecified vulnerability in the Workspace Manager component in Oracle Database 11.1.0.6, 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect co… NVD-CWE-noinfo
CVE-2009-0972 2014-09-9 02:56 2009-04-15 Show GitHub Exploit DB Packet Storm
274124 - mp3info mp3info Buffer overflow in MP3Info 0.8.4 allows attackers to execute arbitrary code via a long command line argument. NOTE: if mp3info is not installed setuid or setgid in any reasonable context, then this … NVD-CWE-Other
CVE-2006-2465 2014-05-31 11:22 2006-05-19 Show GitHub Exploit DB Packet Storm
274125 - emc avamar Unspecified vulnerability in EMC Avamar 4.1.x and 5.0 before SP1 allows remote attackers to cause a denial of service (gsan service hang) by sending a crafted message using TCP. NVD-CWE-noinfo
CVE-2010-1919 2014-05-5 13:43 2010-05-29 Show GitHub Exploit DB Packet Storm
274126 - oracle application_server Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTM… NVD-CWE-noinfo
CVE-2009-1011 2014-01-14 12:46 2009-04-15 Show GitHub Exploit DB Packet Storm
274127 - perl perl Integer overflow in the regular expression engine in Perl 5.8.x allows context-dependent attackers to cause a denial of service (stack consumption and application crash) by matching a crafted regular… CWE-189
Numeric Errors 		CVE-2010-1158 2013-10-24 12:22 2010-04-21 Show GitHub Exploit DB Packet Storm
274128 - larry_wall perl Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build dir… NVD-CWE-Other
CVE-2005-4278 2013-10-24 10:56 2005-12-16 Show GitHub Exploit DB Packet Storm
274129 - bluecoat proxysg_va-10
proxysg_va-15
proxysg_va-20
proxysg_va-5
proxysg
proxysg_sg210-10
proxysg_sg210-25
proxysg_sg210-5
proxysg_sg510-10
proxysg_sg510-20
proxysg_sg510-25
pr… 		Blue Coat ProxySG, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, … CWE-16
Configuration 		CVE-2009-1211 2013-10-8 01:17 2009-04-1 Show GitHub Exploit DB Packet Storm
274130 - argosoft argosoft_mail_server ArGoSoft Mail Server 1.8.1.7 and earlier allows a webmail user to cause a denial of service (CPU consumption) by forwarding the email to the user while autoresponse is enabled, which creates an infin… NVD-CWE-Other
CVE-2002-1005 2013-10-1 10:22 2002-10-4 Show GitHub Exploit DB Packet Storm