Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 23, 2025, 12:05 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
206981	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0671	2011-05-6 11:25	2011-04-12	Show	GitHub Exploit DB Packet Storm

206982	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0670	2011-05-6 11:11	2011-04-12	Show	GitHub Exploit DB Packet Storm

206983	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0667	2011-05-6 11:10	2011-04-12	Show	GitHub Exploit DB Packet Storm

206984	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0666	2011-05-6 11:09	2011-04-12	Show	GitHub Exploit DB Packet Storm

206985	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0665	2011-05-6 11:07	2011-04-12	Show	GitHub Exploit DB Packet Storm

206986	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0662	2011-05-6 11:06	2011-04-12	Show	GitHub Exploit DB Packet Storm

206987	9.3	危険	マイクロソフト	-	Microsoft Windows のワードパッドにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0028	2011-05-6 11:03	2011-04-12	Show	GitHub Exploit DB Packet Storm

206988	7.6	危険	マイクロソフト	-	Microsoft Windows の FAX 送付状エディター内にある fxscover.exe における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3974	2011-05-6 11:01	2011-04-12	Show	GitHub Exploit DB Packet Storm

206989	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0977	2011-05-6 11:00	2011-02-10	Show	GitHub Exploit DB Packet Storm

206990	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0107	2011-05-6 10:59	2011-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 23, 2025, 5:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264331	-	odysseus_blog	odysseus_blog	Cross-site scripting (XSS) vulnerability in blog.php in OdysseusBlog allows remote attackers to inject arbitrary web script or HTML via the page parameter.	NVD-CWE-Other	CVE-2006-6951	2017-07-29 10:29	2007-01-23	Show	GitHub Exploit DB Packet Storm

264332	-	docebo	docebo	Multiple PHP remote file inclusion vulnerabilities in Docebo LMS 3.0.3 allow remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[where_lms] parameter to (1) class.module/class.def…	NVD-CWE-Other	CVE-2006-6963	2017-07-29 10:29	2007-01-30	Show	GitHub Exploit DB Packet Storm

264333	-	mailenable	mailenable_professional	MailEnable Professional before 1.78 provides a cleartext user password when an administrator edits the user's settings, which allows remote authenticated administrators to obtain sensitive informatio…	NVD-CWE-Other	CVE-2006-6964	2017-07-29 10:29	2007-01-30	Show	GitHub Exploit DB Packet Storm

264334	-	phpgraphy	phpgraphy	phpGraphy before 0.9.13a does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers…	NVD-CWE-Other	CVE-2006-6966	2017-07-29 10:29	2007-02-4	Show	GitHub Exploit DB Packet Storm

264335	-	btitracker	btitracker	SQL injection in torrents.php in BtitTracker 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) by and (2) order parameters. NOTE: it is not clear whether this i…	NVD-CWE-Other	CVE-2006-6972	2017-07-29 10:29	2007-02-8	Show	GitHub Exploit DB Packet Storm

264336	-	3proxy	3proxy	3proxy 0.5 to 0.5.2, when NT-encoded passwords are being used, allows remote attackers to cause a denial of service (blocked account) via unspecified vectors related to NTLM authentication, which cau…	NVD-CWE-Other	CVE-2006-6981	2017-07-29 10:29	2007-02-9	Show	GitHub Exploit DB Packet Storm

264337	-	3proxy	3proxy	3proxy 0.5 to 0.5.2 does not offer NTLM authentication before basic authentication, which might cause browsers with incomplete RFC2616/RFC2617 support to use basic cleartext authentication even if NT…	NVD-CWE-Other	CVE-2006-6982	2017-07-29 10:29	2007-02-9	Show	GitHub Exploit DB Packet Storm

264338	-	3proxy	3proxy	The link is to the vendor's changelog. The vendor's download site is: http://3proxy.ru/download/ For the latest build.	NVD-CWE-Other	CVE-2006-6982	2017-07-29 10:29	2007-02-9	Show	GitHub Exploit DB Packet Storm

264339	-	the_war_forge	warforge.news	Multiple cross-site scripting (XSS) vulnerabilities in warforge.NEWS 1.0 allow remote attackers to inject arbitrary HTML and web script via the (1) title and (2) newspost parameters to (a) newsadd.ph…	NVD-CWE-Other	CVE-2006-6996	2017-07-29 10:29	2007-02-12	Show	GitHub Exploit DB Packet Storm

264340	-	nicecoder	indexu	Multiple PHP remote file inclusion vulnerabilities in Indexu 5.0.1 allow remote attackers to execute arbitrary PHP code via a URL in the admin_template_path parameter to admin/ scripts (1) app_change…	NVD-CWE-Other	CVE-2006-7017	2017-07-29 10:29	2007-02-15	Show	GitHub Exploit DB Packet Storm