Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 30, 2025, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
206961 9.3 危険 シマンテック
IBM
- IBM Lotus Notes にて使用される assr.dll におけスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-1216 2011-08-16 11:19 2011-05-24 Show GitHub Exploit DB Packet Storm
206962 9.3 危険 IBM - IBM Lotus Notes で利用される Autonomy KeyView におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-1217 2011-08-16 11:18 2011-05-24 Show GitHub Exploit DB Packet Storm
206963 9.3 危険 シマンテック
IBM
- IBM Lotus Notes にて使用される kvarcve.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-1218 2011-08-16 11:15 2011-05-24 Show GitHub Exploit DB Packet Storm
206964 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2633 2011-08-15 10:58 2011-05-18 Show GitHub Exploit DB Packet Storm
206965 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-2632 2011-08-15 10:57 2011-05-18 Show GitHub Exploit DB Packet Storm
206966 5 警告 Opera Software ASA - Opera の Cascading Style Sheets の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-2631 2011-08-15 10:56 2011-05-18 Show GitHub Exploit DB Packet Storm
206967 4.3 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-2630 2011-08-15 10:55 2011-05-18 Show GitHub Exploit DB Packet Storm
206968 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2629 2011-08-15 10:52 2011-05-18 Show GitHub Exploit DB Packet Storm
206969 10 危険 Opera Software ASA - Opera における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-2628 2011-08-15 10:51 2011-05-18 Show GitHub Exploit DB Packet Storm
206970 5 警告 Opera Software ASA - Opera の DOM 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2627 2011-08-15 10:44 2011-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 30, 2025, 4:10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261521 - mcafee smartfilter SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in config.txt and uses insecure permissions for this file, which allows local users to gain privileges. CWE-310
Cryptographic Issues
CVE-2009-2312 2017-08-17 10:30 2009-07-2 Show GitHub Exploit DB Packet Storm
261522 - horde passwd Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter. CWE-79
Cross-site Scripting
CVE-2009-2360 2017-08-17 10:30 2009-07-9 Show GitHub Exploit DB Packet Storm
261523 - datachecknh gallerypal_fe SQL injection vulnerability in login.asp in DataCheck Solutions GalleryPal FE 1.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: the provenance of this info… CWE-89
SQL Injection
CVE-2009-2365 2017-08-17 10:30 2009-07-9 Show GitHub Exploit DB Packet Storm
261524 - wxwidgets wxwidgets Integer overflow in the wxImage::Create function in src/common/image.cpp in wxWidgets 2.8.10 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted JP… CWE-189
Numeric Errors
CVE-2009-2369 2017-08-17 10:30 2009-07-9 Show GitHub Exploit DB Packet Storm
261525 - tangocms tangocms Cross-site scripting (XSS) vulnerability in the Html::textarea function in application/libraries/Html.php in TangoCMS 2.x before 2.3.0 allows remote attackers to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting
CVE-2009-2376 2017-08-17 10:30 2009-07-9 Show GitHub Exploit DB Packet Storm
261526 - 4homepages 4images Cross-site scripting (XSS) vulnerability in includes/functions.php in 4images 1.7 through 1.7.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the url variable. CWE-79
Cross-site Scripting
CVE-2009-2380 2017-08-17 10:30 2009-07-9 Show GitHub Exploit DB Packet Storm
261527 - fedorahosted sssd The local_handler_callback function in server/responder/pam/pam_LOCAL_domain.c in sssd 0.4.1 does not properly handle blank-password accounts in the SSSD BE database, which allows context-dependent a… CWE-287
Improper Authentication
CVE-2009-2410 2017-08-17 10:30 2009-07-31 Show GitHub Exploit DB Packet Storm
261528 - apple safari Use-after-free vulnerability in the servePendingRequests function in WebCore in WebKit in Apple Safari 4.0 and 4.0.1 allows remote attackers to cause a denial of service (application crash) or possib… CWE-399
 Resource Management Errors
CVE-2009-2419 2017-08-17 10:30 2009-07-10 Show GitHub Exploit DB Packet Storm
261529 - tor tor Tor before 0.2.0.35 allows remote attackers to cause a denial of service (application crash) via a malformed router descriptor. CWE-20
 Improper Input Validation 
CVE-2009-2425 2017-08-17 10:30 2009-07-11 Show GitHub Exploit DB Packet Storm
261530 - tor tor The connection_edge_process_relay_cell_not_open function in src/or/relay.c in Tor 0.2.x before 0.2.0.35 and 0.1.x before 0.1.2.8-beta allows exit relays to have an unspecified impact by causing contr… NVD-CWE-noinfo
CVE-2009-2426 2017-08-17 10:30 2009-07-11 Show GitHub Exploit DB Packet Storm