Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207831 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 における解放済みメモリを使用する脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0346 2011-05-2 13:25 2011-01-7 Show GitHub Exploit DB Packet Storm
207832 - - マイクロソフト - Microsoft Windows にバッファオーバーフローの脆弱性 - - 2011-05-2 08:51 2011-02-17 Show GitHub Exploit DB Packet Storm
207833 5.1 警告 レッドハット - SPICE Firefox のプラグインにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1179 2011-04-28 15:51 2011-04-7 Show GitHub Exploit DB Packet Storm
207834 3.3 注意 レッドハット - SPICE Firefox のプラグインにおける任意のファイルを上書される脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-0012 2011-04-28 15:32 2011-04-7 Show GitHub Exploit DB Packet Storm
207835 5.8 警告 Apache Software Foundation - Apache Tomcat におけるアクセス制限を回避される脆弱性 CWE-DesignError
CVE-2011-1183 2011-04-28 15:31 2011-04-1 Show GitHub Exploit DB Packet Storm
207836 5 警告 Apache Software Foundation - Apache Tomcat の HTTP BIO コネクタにおけるレスポンスを閲覧される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1475 2011-04-28 15:29 2011-03-28 Show GitHub Exploit DB Packet Storm
207837 2.1 注意 オラクル - Oracle Solaris 10 に認証情報漏えいの脆弱性 - CVE-2011-0412 2011-04-28 15:27 2011-04-6 Show GitHub Exploit DB Packet Storm
207838 - - デル - Dell Kace K2000 Systems Deployment Appliance に脆弱性 - - 2011-04-28 15:21 2011-04-6 Show GitHub Exploit DB Packet Storm
207839 - - ネットギア - Netgear Prosafe Wireless-N Access Point に複数の脆弱性 - - 2011-04-28 15:19 2011-04-6 Show GitHub Exploit DB Packet Storm
207840 7.2 危険 Prefix WhoIs Project - pWhois Layer Four Traceroute に権限昇格の脆弱性 CWE-noinfo
情報不足 		CVE-2011-0765 2011-04-28 15:18 2011-04-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255291 - bea weblogic_server BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP5 and earlier, do not properly validate derived Principals with multiple PrincipalValidators, which might allow attackers to ga… NVD-CWE-Other
CVE-2005-4756 2018-09-28 06:38 2005-12-31 Show GitHub Exploit DB Packet Storm
255292 - bea weblogic_server BEA WebLogic Server and WebLogic Express 8.1 SP3 and earlier, and 7.0 SP5 and earlier, do not properly "constrain" a "/" (slash) servlet root URL pattern, which might allow remote attackers to bypass… NVD-CWE-Other
CVE-2005-4757 2018-09-28 06:38 2005-12-31 Show GitHub Exploit DB Packet Storm
255293 - bea weblogic_server Unspecified vulnerability in the Administration server in BEA WebLogic Server and WebLogic Express 8.1 SP3 and earlier allows remote authenticated Admin users to read arbitrary files via unknown atta… NVD-CWE-Other
CVE-2005-4758 2018-09-28 06:38 2005-12-31 Show GitHub Exploit DB Packet Storm
255294 - bea weblogic_server BEA WebLogic Server and WebLogic Express 8.1 SP3 and earlier, and 7.0 SP5 and earlier, when fullyDelegatedAuthorization is enabled for a servlet, does not cause servlet deployment to fail when failur… NVD-CWE-Other
CVE-2005-4760 2018-09-28 06:38 2005-12-31 Show GitHub Exploit DB Packet Storm
255295 - ez ez_publish The siteaccess URIMatching implementation in eZ publish 3.5 through 3.8 before 20050812 converts all non-alphanumeric characters in a URI to '_' (underscore), which allows remote attackers to bypass … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2005-4852 2018-09-28 06:38 2005-12-31 Show GitHub Exploit DB Packet Storm
255296 - ez ez_publish Unrestricted file upload vulnerability in eZ publish 3.5 before 3.5.5, 3.6 before 3.6.2, 3.7 before 3.7.0rc2, and 3.8 before 20050922 does not restrict Image datatype uploads to image content types, … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2005-4855 2018-09-28 06:38 2005-12-31 Show GitHub Exploit DB Packet Storm
255297 - xerox copycentre_c65
copycentre_c75
copycentre_c90
workcentre_65
workcentre_75
workcentre_90 		Buffer overflow in the PostScript file interpreter code for Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allows attackers … NVD-CWE-Other
CVE-2006-1136 2018-09-28 06:33 2006-03-10 Show GitHub Exploit DB Packet Storm
255298 - netiq
novell 		identity_manager
client_login_extension_\(cle\) 		The Client Login Extension (CLE) in Novell Identity Manager before 3.5.1 20070730 stores the username and password in a local file, which allows local users to obtain sensitive information by reading… CWE-255
Credentials Management 		CVE-2007-4526 2018-09-28 06:30 2007-08-25 Show GitHub Exploit DB Packet Storm
255299 - netiq identity_manager idmlib.sh in nxdrv in Novell Identity Manager (IDM) 3.0.1 allows local users to execute arbitrary commands via unspecified vectors, possibly involving the " (quote) and \ (backslash) characters and e… NVD-CWE-Other
CVE-2006-4506 2018-09-28 06:30 2006-09-1 Show GitHub Exploit DB Packet Storm
255300 - netiq identity_manager The vendor has released a patch to address this issue. NVD-CWE-Other
CVE-2006-4506 2018-09-28 06:30 2006-09-1 Show GitHub Exploit DB Packet Storm