Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207941 4.3 警告 アップル - Apple Safari のウインドウの機能における任意のローカルファイルが送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0167 2011-04-6 18:01 2011-03-11 Show GitHub Exploit DB Packet Storm
207942 5.8 警告 アップル - Apple Safari の HTML5 ドラッグ&ドロップの機能における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0166 2011-04-6 17:38 2011-03-11 Show GitHub Exploit DB Packet Storm
207943 5 警告 アップル - Apple iOS の Safari にある Safari 設定機能におけるユーザを追跡可能な脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0159 2011-04-6 17:34 2011-03-11 Show GitHub Exploit DB Packet Storm
207944 7.5 危険 アップル - Apple iOS の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0157 2011-04-6 17:29 2011-03-11 Show GitHub Exploit DB Packet Storm
207945 5 警告 OpenSLP - OpenSLP にサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-3609 2011-04-6 17:27 2011-03-22 Show GitHub Exploit DB Packet Storm
207946 5.8 警告 Apache Software Foundation - Apache Tomcat におけるアクセス制限を回避される脆弱性 CWE-DesignError
CVE-2011-1088 2011-04-6 17:23 2011-03-11 Show GitHub Exploit DB Packet Storm
207947 9.3 危険 マイクロソフト - Microsoft Groove 2007 における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3146 2011-04-6 17:09 2011-03-8 Show GitHub Exploit DB Packet Storm
207948 9.3 危険 マイクロソフト - Microsoft Remote Desktop Connection のクライアントにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-0029 2011-04-6 16:57 2011-03-8 Show GitHub Exploit DB Packet Storm
207949 9.3 危険 マイクロソフト - 複数の Microsoft 製品の SBE.dll における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0042 2011-04-6 16:53 2011-03-8 Show GitHub Exploit DB Packet Storm
207950 9.3 危険 マイクロソフト - 複数の Microsoft 製品の DirectShow における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-0032 2011-04-6 16:17 2011-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255291 - moinmoin moinmoin _macro_Getval in wikimacro.py in MoinMoin 1.5.8 and earlier does not properly enforce ACLs, which allows remote attackers to read protected pages. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-1099 2018-10-4 06:53 2008-03-6 Show GitHub Exploit DB Packet Storm
255292 - ltsp linux_terminal_server_project ldm in Linux Terminal Server Project (LTSP) 0.99 and 2 passes the -ac option to the X server on each LTSP client, which allows remote attackers to connect to this server via TCP port 6006 (aka displa… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-1293 2018-10-4 06:53 2008-04-29 Show GitHub Exploit DB Packet Storm
255293 - xiph.org libvorbis Integer overflow in residue partition value (aka partvals) evaluation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to execute arbitrary code via a crafted OGG file, which triggers … CWE-189
Numeric Errors 		CVE-2008-1420 2018-10-4 06:53 2008-05-16 Show GitHub Exploit DB Packet Storm
255294 - linux linux_kernel The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service (crash) via unknown vectors that … NVD-CWE-noinfo
CWE-399
 Resource Management Errors 		CVE-2007-6694 2018-10-4 06:52 2008-01-30 Show GitHub Exploit DB Packet Storm
255295 - gnu emacs Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a large precision value in an integ… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-6109 2018-10-4 06:51 2007-12-7 Show GitHub Exploit DB Packet Storm
255296 - net_dns net_dns Net/DNS/RR/A.pm in Net::DNS 0.60 build 654, as used in packages such as SpamAssassin and OTRS, allows remote attackers to cause a denial of service (program "croak") via a crafted DNS response. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-6341 2018-10-4 06:51 2007-12-21 Show GitHub Exploit DB Packet Storm
255297 - mysql mysql The convert_search_mode_to_innobase function in ha_innodb.cc in the InnoDB engine in MySQL 5.1.23-BK and earlier allows remote authenticated users to cause a denial of service (database crash) via a … CWE-20
 Improper Input Validation  		CVE-2007-5925 2018-10-4 06:50 2007-11-10 Show GitHub Exploit DB Packet Storm
255298 - hp linux_imaging_and_printing_project hpssd in Hewlett-Packard Linux Imaging and Printing Project (hplip) 1.x and 2.x before 2.7.10 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a from addre… CWE-20
 Improper Input Validation  		CVE-2007-5208 2018-10-4 06:49 2007-10-13 Show GitHub Exploit DB Packet Storm
255299 - mozilla firefox Mozilla Firefox 2.0 before 2.0.0.8 allows remote attackers to obtain sensitive system information by using the addMicrosummaryGenerator sidebar method to access file: URIs. CWE-200
Information Exposure 		CVE-2007-5335 2018-10-4 06:49 2007-10-24 Show GitHub Exploit DB Packet Storm
255300 - php php The money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and (2) %n tokens, which has unknown impact and attack vectors, possibly related to a format string vu… NVD-CWE-Other
CVE-2007-4658 2018-10-4 06:48 2007-09-5 Show GitHub Exploit DB Packet Storm