Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206951 4.3 警告 Zabbix - Zabbix の acknow.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2904 2011-09-14 10:48 2011-08-19 Show GitHub Exploit DB Packet Storm
206952 5.4 警告 Squid-cache.org
インターネットイニシアティブ		 - 透過型プロキシサーバが HTTP の Host ヘッダに依存して接続を行う問題 CWE-264
認可・権限・アクセス制御 		CVE-2009-0801 2011-09-14 10:47 2009-02-24 Show GitHub Exploit DB Packet Storm
206953 6.8 警告 レッドハット
Pango.org
オラクル		 - HarfBuzz の hb-buffer.c 内にある hb_buffer_ensure 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2011-0064 2011-09-14 10:45 2011-03-1 Show GitHub Exploit DB Packet Storm
206954 6.5 警告 ヒューレット・パッカード
シマンテック
日立		 - Symantec Backup Exec における NDMP コマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0546 2011-09-14 10:44 2011-05-26 Show GitHub Exploit DB Packet Storm
206955 5 警告 The PHP Group - PHP で使用される crypt_blowfish におけるクリアテキストのパスワードを容易に推測される脆弱性 CWE-310
暗号の問題 		CVE-2011-2483 2011-09-13 10:43 2011-08-25 Show GitHub Exploit DB Packet Storm
206956 6.4 警告 The PHP Group - PHP の main/rfc1867.c 内にある rfc1867_post_handler 関数における任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2202 2011-09-13 10:42 2011-06-16 Show GitHub Exploit DB Packet Storm
206957 7.5 危険 The PHP Group - PHP の socket_connect 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1938 2011-09-13 10:41 2011-05-31 Show GitHub Exploit DB Packet Storm
206958 7.5 危険 The PHP Group - PHP の substr_replace 関数におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1148 2011-09-13 10:39 2011-03-18 Show GitHub Exploit DB Packet Storm
206959 6.8 警告 GNU Project
オラクル		 - GNU Wget における任意のファイルを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2252 2011-09-12 09:56 2010-07-6 Show GitHub Exploit DB Packet Storm
206960 9.3 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer Enterprise における任意のコードを実行されるの脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2955 2011-09-12 09:53 2011-08-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 9, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255681 - microsoft windows_explorer Microsoft Windows Explorer on Windows 2000 SP4 FR and XP SP2 FR, and possibly other versions and platforms, allows remote attackers to cause a denial of service (memory corruption and crash) via an O… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-1347 2017-10-11 10:31 2007-03-9 Show GitHub Exploit DB Packet Storm
255682 - linux linux_kernel The setsockopt function in the L2CAP and HCI Bluetooth support in the Linux kernel before 2.4.34.3 allows context-dependent attackers to read kernel memory and obtain sensitive information via unspec… NVD-CWE-Other
CVE-2007-1353 2017-10-11 10:31 2007-04-25 Show GitHub Exploit DB Packet Storm
255683 - postguestbook postguestbook PHP remote file inclusion vulnerability in styles/internal/header.php in the PostGuestbook 0.6.1 module for PHP-Nuke allows remote attackers to execute arbitrary PHP code via a URL in the tpl_pgb_mod… NVD-CWE-Other
CVE-2007-1372 2017-10-11 10:31 2007-03-10 Show GitHub Exploit DB Packet Storm
255684 - php php Integer overflow in the substr_compare function in PHP 5.2.1 and earlier allows context-dependent attackers to read sensitive memory via a large value in the length argument, a different vulnerabilit… NVD-CWE-Other
CVE-2007-1375 2017-10-11 10:31 2007-03-10 Show GitHub Exploit DB Packet Storm
255685 - php com_extensions The PHP COM extensions for PHP on Windows systems allow context-dependent attackers to execute arbitrary code via a WScript.Shell COM object, as demonstrated by using the Run method of this object to… NVD-CWE-Other
CVE-2007-1382 2017-10-11 10:31 2007-03-10 Show GitHub Exploit DB Packet Storm
255686 - linux linux_kernel The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux kernel before 2.6.20, and possibly other versions, allows local users to cause a denial of service (oops) by calling setsockopt wi… CWE-399
 Resource Management Errors 		CVE-2007-1388 2017-10-11 10:31 2007-03-11 Show GitHub Exploit DB Packet Storm
255687 - netforo netforo Directory traversal vulnerability in down.php in netForo! 0.1g allows remote attackers to read arbitrary files via a .. (dot dot) in the file_to_download parameter. NVD-CWE-Other
CVE-2007-1392 2017-10-11 10:31 2007-03-11 Show GitHub Exploit DB Packet Storm
255688 - geo_soft magic_cms PHP remote file inclusion vulnerability in mysave.php in Magic CMS 4.2.747 allows remote attackers to execute arbitrary PHP code via a URL in the file parameter. NVD-CWE-Other
CVE-2007-1393 2017-10-11 10:31 2007-03-11 Show GitHub Exploit DB Packet Storm
255689 - flat_chat flat_chat Direct static code injection vulnerability in startsession.php in Flat Chat 2.0 allows remote attackers to execute arbitrary PHP code via the Chat Name field, which is inserted into online.txt and in… NVD-CWE-Other
CVE-2007-1394 2017-10-11 10:31 2007-03-11 Show GitHub Exploit DB Packet Storm
255690 - snort snort The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conntrack module loaded, allows remote attackers to cause a denial of service … NVD-CWE-Other
CVE-2007-1398 2017-10-11 10:31 2007-03-11 Show GitHub Exploit DB Packet Storm