Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 19, 2025, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208171 1.9 注意 オラクル - Oracle Supply Chain Products Suite の Oracle Transportation Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2371 2010-08-6 18:27 2010-07-13 Show GitHub Exploit DB Packet Storm
208172 4.3 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Transportation Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2372 2010-08-6 18:27 2010-07-13 Show GitHub Exploit DB Packet Storm
208173 10 危険 アップル
サイバートラスト株式会社
サン・マイクロシステムズ
レッドハット		 - 複数の Oracle 製品 の New Java Plug-in コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0887 2010-08-5 17:16 2010-04-15 Show GitHub Exploit DB Packet Storm
208174 2.6 注意 オラクル - Oracle E-Business Suite の Oracle Knowledge Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0836 2010-08-5 16:36 2010-07-13 Show GitHub Exploit DB Packet Storm
208175 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0909 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
208176 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0913 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
208177 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0905 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
208178 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0912 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
208179 5.5 警告 オラクル - Oracle E-Business Suite の Oracle Advanced Product Catalog コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0915 2010-08-5 16:34 2010-07-13 Show GitHub Exploit DB Packet Storm
208180 7.5 危険 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0908 2010-08-5 16:34 2010-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264281 - simplemachines smf Successful exploitation requires privileges to add a new board. CWE-89
SQL Injection 		CVE-2006-4564 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
264282 - the_address_book the_address_book Multiple SQL injection vulnerabilities in The Address Book 1.04e allow remote attackers to execute arbitrary SQL commands via the (1) lastname, (2) firstname, (3) passwordOld, (4) passwordNew, (5) id… NVD-CWE-Other
CVE-2006-4575 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm
264283 - the_address_book the_address_book Cross-site scripting (XSS) vulnerability in The Address Book 1.04e allows remote attackers to inject arbitrary web script or HTML by uploading the HTML file with a GIF or JPG extension, which is rend… NVD-CWE-Other
CVE-2006-4576 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm
264284 - the_address_book the_address_book Multiple cross-site scripting (XSS) vulnerabilities in The Address Book 1.04e allow remote attackers to inject arbitrary web script or HTML via Javascript events in the (1) email, (2) websites, and (… NVD-CWE-Other
CVE-2006-4577 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm
264285 - the_address_book the_address_book export.php in The Address Book 1.04e writes username and password hash information into a publicly accessible file when dumping the MySQL database contents, which allows remote attackers to obtain se… NVD-CWE-Other
CVE-2006-4578 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm
264286 - the_address_book the_address_book Directory traversal vulnerability in users.php in The Address Book 1.04e allows remote attackers to include arbitrary files via a .. (dot dot) in the language parameter. NVD-CWE-Other
CVE-2006-4579 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm
264287 - the_address_book the_address_book register.php in The Address Book 1.04e allows remote attackers to bypass the "Allow User Self-Registration" setting and create arbitrary users by setting the mode parameter to "confirm". NVD-CWE-Other
CVE-2006-4580 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm
264288 - the_address_book the_address_book Unrestricted file upload vulnerability in The Address Book 1.04e validates the Content-Type header but not the file extension, which allows remote attackers to upload arbitrary PHP scripts. NVD-CWE-Other
CVE-2006-4581 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm
264289 - the_address_book the_address_book Cross-site request forgery (CSRF) vulnerability in The Address Book 1.04e allows remote attackers to perform unauthorized actions as other users via unspecified vectors, as demonstrated by deleting a… NVD-CWE-Other
CVE-2006-4582 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm
264290 - jetstat.com js_asp_faq_manager SQL injection vulnerability in admin/default.asp in Jetstat.com JS ASP Faq Manager 1.10 and earlier allows remote attackers to execute arbitrary SQL commands via the uid parameter, a different vector… NVD-CWE-Other
CVE-2006-4590 2017-07-20 10:33 2006-09-7 Show GitHub Exploit DB Packet Storm