Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 20, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208231	7.5	危険	The PHP Group アップル	-	PHP の safe_mode 実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1129	2010-09-8 15:49	2010-03-26	Show	GitHub Exploit DB Packet Storm

208232	4.4	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0427	2010-09-8 15:49	2010-02-25	Show	GitHub Exploit DB Packet Storm

208233	6.6	警告	サイバートラスト株式会社レッドハット	-	QEMU-KVM の subpage MMIO initialization 機能における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2784	2010-09-7 15:51	2010-08-19	Show	GitHub Exploit DB Packet Storm

208234	6.6	警告	サイバートラスト株式会社レッドハット	-	QEMU-KVM のゲスト QXL ドライバポインタにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0431	2010-09-7 15:50	2010-08-19	Show	GitHub Exploit DB Packet Storm

208235	6.6	警告	サイバートラスト株式会社レッドハット	-	複数のレッドハット製品などで利用される libspice のメモリ管理操作における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0429	2010-09-7 15:49	2010-08-19	Show	GitHub Exploit DB Packet Storm

208236	6.6	警告	サイバートラスト株式会社レッドハット	-	複数のレッドハット製品などで利用される libspice のゲスト QXL ドライバポインタにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0428	2010-09-7 15:48	2010-08-19	Show	GitHub Exploit DB Packet Storm

208237	-	-	ワイズテクノロジー	-	Wyse ThinOS LPD サービスにバッファオーバーフローの脆弱性	-	-	2010-09-7 15:47	2010-08-17	Show	GitHub Exploit DB Packet Storm

208238	7.8	危険	日立	-	Hitachi Storage Command Suite 製品の組み込みデータベースにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	-	2010-09-7 15:45	2010-08-16	Show	GitHub Exploit DB Packet Storm

208239	7.8	危険	日立	-	JP1/Desktop Navigation 組み込みデータベースにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	-	2010-09-7 15:44	2010-08-16	Show	GitHub Exploit DB Packet Storm

208240	4.3	警告	Zabbix	-	Zabbix の formatQuery 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2790	2010-09-7 15:42	2010-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
272271	-	sky_gunning	myspeach	PHP remote file inclusion vulnerability in up.php in Sky GUNNING MySpeach 3.0.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the my_ms[root] parameter, a different v…	NVD-CWE-Other	CVE-2007-0491	2011-03-8 11:49	2007-01-25	Show	GitHub Exploit DB Packet Storm

272272	-	hitachi	tpi_link tpi_server_base	Hitachi TP1/LiNK 05-00 through 05-03-/F, 03-04 through 03-06-/K, and 03-00 through 03-03-/H; and TP1/Server Base 05-00 through 05-00-/M, 03-01-E through 03-01-FD, 03-01 through 03-01-DB, and 05-03; a…	NVD-CWE-Other	CVE-2007-0512	2011-03-8 11:49	2007-01-26	Show	GitHub Exploit DB Packet Storm

272273	-	hitachi	cosminexus_application_server cosminexus_application_server_version_5 cosminexus_developer_light_version_6 cosminexus_developer_professional_version_6 cosminexus_developer_standard_versio…	Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML …	NVD-CWE-Other	CVE-2007-0514	2011-03-8 11:49	2007-01-26	Show	GitHub Exploit DB Packet Storm

272274	-	novell	access_manager_identity_server	Cross-site scripting (XSS) vulnerability in nidp/idff/sso in Novell Access Manager Identity Server before 3.0.0-1013 allows remote attackers to inject arbitrary web script or HTML via the IssueInstan…	NVD-CWE-Other	CVE-2007-0110	2011-03-8 11:48	2007-01-9	Show	GitHub Exploit DB Packet Storm

272275	-	apple	mac_os_x mac_os_x_server	DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /L…	NVD-CWE-Other	CVE-2007-0117	2011-03-8 11:48	2007-01-9	Show	GitHub Exploit DB Packet Storm

272276	-	igeneric	ig_shop	Multiple SQL injection vulnerabilities in display_review.php in iGeneric iG Shop 1.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) user_login_cookie param…	NVD-CWE-Other	CVE-2007-0133	2011-03-8 11:48	2007-01-9	Show	GitHub Exploit DB Packet Storm

272277	-	hp	openvms	Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain "uninte…	NVD-CWE-Other	CVE-2007-0139	2011-03-8 11:48	2007-01-9	Show	GitHub Exploit DB Packet Storm

272278	-	cisco	ip_contact_center_enterprise ip_contact_center_hosted unified_contact_center_enterprise unified_contact_center_hosted	The JTapi Gateway process in Cisco Unified Contact Center Enterprise, Unified Contact Center Hosted, IP Contact Center Enterprise, and Cisco IP Contact Center Hosted 5.0 through 7.1 allows remote att…	NVD-CWE-Other	CVE-2007-0198	2011-03-8 11:48	2007-01-11	Show	GitHub Exploit DB Packet Storm

272279	-	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 5.0 through 5.1.1.0 allows remote attackers to obtain JSP source code and other sensitive information via certain "special URIs."	NVD-CWE-Other	CVE-2006-7165	2011-03-8 11:48	2007-03-20	Show	GitHub Exploit DB Packet Storm

272280	-	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 5.1.1.9 and earlier allows remote attackers to obtain JSP source code and other sensitive information via "a specific JSP URL."	NVD-CWE-Other	CVE-2006-7166	2011-03-8 11:48	2007-03-20	Show	GitHub Exploit DB Packet Storm