Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 26, 2025, 4 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
208291 5 警告 アップル - Apple Mac OS X の AFP Server における共有名を列挙される脆弱性 CWE-DesignError
CVE-2010-1830 2010-11-25 15:17 2010-11-15 Show GitHub Exploit DB Packet Storm
208292 6 警告 アップル - Apple Mac OS X の AFP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1829 2010-11-25 15:17 2010-11-15 Show GitHub Exploit DB Packet Storm
208293 5 警告 アップル - Apple Mac OS X の AFP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2010-1828 2010-11-25 15:17 2010-11-15 Show GitHub Exploit DB Packet Storm
208294 4.3 警告 アップル - Apple Mac OS X の Time Machine における重要な情報を取得される脆弱性 CWE-DesignError
CVE-2010-1803 2010-11-25 15:16 2010-11-15 Show GitHub Exploit DB Packet Storm
208295 7.5 危険 アップル - Apple Mac OS X の OpenSSL における X.509 証明書の認証を回避される脆弱性 CWE-310
暗号の問題
CVE-2010-1378 2010-11-25 15:15 2010-11-12 Show GitHub Exploit DB Packet Storm
208296 4.9 警告 アップル - Apple Mac OS X の hfs 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-0105 2010-11-25 15:15 2010-04-27 Show GitHub Exploit DB Packet Storm
208297 9.3 危険 アップル
アドビシステムズ
レッドハット
- Adobe Flash の ActionScript の処理に脆弱性 CWE-94
コード・インジェクション
CVE-2010-0209 2010-11-25 15:14 2010-08-11 Show GitHub Exploit DB Packet Storm
208298 9.3 危険 アップル
アドビシステムズ
ターボリナックス
レッドハット
- Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-399
CWE-noinfo
CVE-2009-3793 2010-11-25 15:13 2010-06-10 Show GitHub Exploit DB Packet Storm
208299 6.8 警告 アップル
GNU Project
ターボリナックス
サイバートラスト株式会社
レッドハット
- GNU gzip における任意のコードを実行される脆弱性 CWE-189
数値処理の問題
CVE-2010-0001 2010-11-25 15:12 2010-01-29 Show GitHub Exploit DB Packet Storm
208300 2.6 注意 アップル
サン・マイクロシステムズ
Apache Software Foundation
- Apache HTTP Server 用 mod_perl の Status.pm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-0796 2010-11-25 15:12 2009-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259181 - adultscript adultscript admin/administrator.php in Adult Script 1.6 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication and obtain administrative credent… CWE-255
Credentials Management
CVE-2007-6414 2017-09-29 10:29 2007-12-18 Show GitHub Exploit DB Packet Storm
259182 - xen xen The copy_to_user function in the PAL emulation functionality for Xen 3.1.2 and earlier, when running on ia64 systems, allows HVM guest users to access arbitrary physical memory by triggering certain … CWE-264
Permissions, Privileges, and Access Controls
CVE-2007-6416 2017-09-29 10:29 2007-12-18 Show GitHub Exploit DB Packet Storm
259183 - hp hp-ux Unspecified vulnerability in rpc.yppasswdd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors. NVD-CWE-noinfo
CVE-2007-6419 2017-09-29 10:29 2007-12-25 Show GitHub Exploit DB Packet Storm
259184 - my123tkshop e-commerce-suite SQL injection vulnerability in shop/mainfile.php in 123tkShop 0.9.1 allows remote attackers to execute arbitrary SQL commands via a base64-encoded value of the admin parameter to shop/admin.php. CWE-89
SQL Injection
CVE-2007-6458 2017-09-29 10:29 2007-12-20 Show GitHub Exploit DB Packet Storm
259185 - php_real_estate_classifieds php_real_estate_classifieds_premium_plus SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection
CVE-2007-6462 2017-09-29 10:29 2007-12-20 Show GitHub Exploit DB Packet Storm
259186 - form_tools form_tools Multiple PHP remote file inclusion vulnerabilities in Form tools 1.5.0b allow remote attackers to execute arbitrary PHP code via a URL in the g_root_dir parameter to (1) admin_page_open.php and (2) c… CWE-94
Code Injection
CVE-2007-6464 2017-09-29 10:29 2007-12-20 Show GitHub Exploit DB Packet Storm
259187 - freewebshop freewebshop Multiple SQL injection vulnerabilities in index.php in FreeWebshop 2.2.1 allow remote attackers to execute arbitrary SQL commands via (1) the prod parameter in a details action, (2) the cat parameter… CWE-89
SQL Injection
CVE-2007-6466 2017-09-29 10:29 2007-12-20 Show GitHub Exploit DB Packet Storm
259188 - phpmyrealty phpmyrealty Multiple SQL injection vulnerabilities in phpMyRealty (PMR) 1.0.9 allow (1) remote attackers to execute arbitrary SQL commands via the type parameter to search.php and (2) remote authenticated admini… CWE-89
SQL Injection
CVE-2007-6472 2017-09-29 10:29 2007-12-21 Show GitHub Exploit DB Packet Storm
259189 - texas_imperial_software wftpd_pro_explorer Heap-based buffer overflow in Texas Imperial Software WFTPD Pro Explorer 1.0 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2007-6473 2017-09-29 10:29 2007-12-21 Show GitHub Exploit DB Packet Storm
259190 - gf_3xplorer gf_3xplorer Multiple cross-site scripting (XSS) vulnerabilities in GF-3XPLORER 2.4 allow remote attackers to inject arbitrary web script or HTML via the newdir parameter to index_3x.php, and unspecified other ve… CWE-79
Cross-site Scripting
CVE-2007-6474 2017-09-29 10:29 2007-12-21 Show GitHub Exploit DB Packet Storm