Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 10, 2025, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207521	7.2	危険	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0882	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

207522	7.5	危険	オラクル	-	Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0897	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

207523	10	危険	オラクル	-	Oracle Sun Product Suite の Sun Ray Server Software コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0888	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

207524	5	警告	サン・マイクロシステムズ Pidgin レッドハット	-	Pidgin の gtkimhtml.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0423	2010-05-14 18:39	2010-02-18	Show	GitHub Exploit DB Packet Storm

207525	4.3	警告	サン・マイクロシステムズ Pidgin レッドハット	-	Pidgin の libpurple におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0420	2010-05-14 18:38	2010-02-18	Show	GitHub Exploit DB Packet Storm

207526	7.5	危険	Carnegie Mellon University (Project Cyrus) アップルサイバートラスト株式会社サン・マイクロシステムズオラクルレッドハット	-	Cyrus SASL ライブラリにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0688	2010-05-14 18:37	2009-05-15	Show	GitHub Exploit DB Packet Storm

207527	7.5	危険	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) における複数の整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0587	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

207528	5.8	警告	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0582	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

207529	1.2	注意	日本電気サイバートラスト株式会社サン・マイクロシステムズターボリナックス OpenSSL Project レッドハット	-	RSA key reconstruction vulnerability	-	CVE-2007-3108	2010-05-14 18:37	2007-08-16	Show	GitHub Exploit DB Packet Storm

207530	5	警告	ヒューレット・パッカードサイバートラスト株式会社 OpenSSL Project ターボリナックスレッドハット	-	OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-4355	2010-05-13 17:21	2010-01-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 10, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
270381	-	ibm	db2_universal_database	IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow attackers to have an unknown impact involving "memory corruption." NOTE: the vendo…	CWE-399 Resource Management Errors	CVE-2007-6053	2011-03-8 12:01	2007-11-21	Show	GitHub Exploit DB Packet Storm

270382	-	feed2js	feed2js	Cross-site scripting (XSS) vulnerability in Feed to JavaScript (Feed2JS) 1.91 allows remote attackers to inject arbitrary web script or HTML via a URL in a feed.	CWE-79 Cross-site Scripting	CVE-2007-6102	2011-03-8 12:01	2007-11-24	Show	GitHub Exploit DB Packet Storm

270383	-	irc_services	irc_services	Unspecified vulnerability in IRC Services 5.1.8 has unknown impact and attack vectors.	NVD-CWE-noinfo	CVE-2007-6123	2011-03-8 12:01	2007-11-27	Show	GitHub Exploit DB Packet Storm

270384	-	gnu	gnump3d	gnump3d 2.9final does not apply password protection to its plugins, which might allow remote attackers to bypass intended access restrictions.	CWE-287 Improper Authentication	CVE-2007-6130	2011-03-8 12:01	2007-11-27	Show	GitHub Exploit DB Packet Storm

270385	-	redhat	fedora_core	buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg temporary files.	CWE-16 Configuration	CVE-2007-6131	2011-03-8 12:01	2007-11-27	Show	GitHub Exploit DB Packet Storm

270386	-	xunlei	web_thunder	Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5064	2011-03-8 12:00	2007-09-25	Show	GitHub Exploit DB Packet Storm

270387	-	kaspersky_lab	kaspersky_anti-virus kaspersky_internet_security	Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain parameters to System Service Descriptor Table (SSDT) and Shadow SSDT function handlers, which allows lo…	CWE-20 Improper Input Validation	CVE-2007-5086	2011-03-8 12:00	2007-09-26	Show	GitHub Exploit DB Packet Storm

270388	-	phpbb	phpbb_plus	Multiple PHP remote file inclusion vulnerabilities in phpBB Plus 1.53, and 1.53a before 20070922, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in t…	CWE-94 Code Injection	CVE-2007-5100	2011-03-8 12:00	2007-09-27	Show	GitHub Exploit DB Packet Storm

270389	-	dragonfrugal	dfd_cart	Cross-site scripting (XSS) vulnerability in DFD Cart 1.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2007-5136	2011-03-8 12:00	2007-09-29	Show	GitHub Exploit DB Packet Storm

270390	-	xoops	xoops	Unspecified vulnerability in the XOOPS uploader class in Xoops 2.0.17.1-RC1 and earlier allows remote attackers to upload arbitrary files via unspecified vectors related to improper upload configurat…	NVD-CWE-noinfo	CVE-2007-5188	2011-03-8 12:00	2007-10-3	Show	GitHub Exploit DB Packet Storm