Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208551 6.9 警告 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3957 2011-01-13 16:22 2010-12-14 Show GitHub Exploit DB Packet Storm
208552 9.3 危険 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3956 2011-01-13 16:19 2010-12-14 Show GitHub Exploit DB Packet Storm
208553 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3346 2011-01-13 16:15 2010-12-14 Show GitHub Exploit DB Packet Storm
208554 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3345 2011-01-13 16:11 2010-12-14 Show GitHub Exploit DB Packet Storm
208555 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3343 2011-01-13 15:48 2010-12-14 Show GitHub Exploit DB Packet Storm
208556 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3340 2011-01-13 15:43 2010-12-14 Show GitHub Exploit DB Packet Storm
208557 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の Advanced Audio Coding におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4395 2011-01-12 15:29 2010-12-10 Show GitHub Exploit DB Packet Storm
208558 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の RealPix におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4394 2011-01-12 15:23 2010-12-10 Show GitHub Exploit DB Packet Storm
208559 9.3 危険 レッドハット
リアルネットワークス		 - RealNetworks RealPlayer の ImageMap におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4392 2011-01-12 15:21 2010-12-10 Show GitHub Exploit DB Packet Storm
208560 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の RMX ヘッダーにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4391 2011-01-12 15:18 2010-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
263761 - drupal aggregation_module
drupal 		Per Hyperlink Record 1026625, Drupal core is not affected. If you do not use the contributed Aggregation module, there is nothing you need to do. CWE-89
SQL Injection 		CVE-2008-2999 2017-08-8 10:31 2008-07-4 Show GitHub Exploit DB Packet Storm
263762 - drupal aggregation_module The Aggregation module 5.x before 5.x-4.4 for Drupal, when node access modules are used, does not properly implement access control, which allows remote attackers to bypass intended restrictions. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3000 2017-08-8 10:31 2008-07-4 Show GitHub Exploit DB Packet Storm
263763 - drupal aggregation_module Per Hyperlink Record 1026625, Drupal core is not affected. If you do not use the contributed Aggregation module, there is nothing you need to do. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3000 2017-08-8 10:31 2008-07-4 Show GitHub Exploit DB Packet Storm
263764 - drupal aggregation_module The Aggregation module 5.x before 5.x-4.4 for Drupal allows remote attackers to upload files with arbitrary extensions, and possibly execute arbitrary code, via a crafted feed that allows upload of f… CWE-94
Code Injection 		CVE-2008-3001 2017-08-8 10:31 2008-07-4 Show GitHub Exploit DB Packet Storm
263765 - drupal aggregation_module Per Hyperlink Record 1026625, Drupal core is not affected. If you do not use the contributed Aggregation module, there is nothing you need to do. CWE-94
Code Injection 		CVE-2008-3001 2017-08-8 10:31 2008-07-4 Show GitHub Exploit DB Packet Storm
263766 - typo3 send_a_card Multiple cross-site scripting (XSS) vulnerabilities in the Send-A-Card (sr_sendcard) extension 2.2.2 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecifie… CWE-79
Cross-site Scripting 		CVE-2008-3028 2017-08-8 10:31 2008-07-8 Show GitHub Exploit DB Packet Storm
263767 - typo3 wec_discussion_forum Cross-site scripting (XSS) vulnerability in the WEC Discussion Forum (wec_discussion) extension 1.6.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecif… CWE-79
Cross-site Scripting 		CVE-2008-3029 2017-08-8 10:31 2008-07-8 Show GitHub Exploit DB Packet Storm
263768 - typo3 phpmyadmin Cross-site scripting (XSS) vulnerability in the phpMyAdmin (phpmyadmin) extension 3.0.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2008-3032 2017-08-8 10:31 2008-07-8 Show GitHub Exploit DB Packet Storm
263769 - typo3 address_directory Cross-site scripting (XSS) vulnerability in the Address Directory (sp_directory) extension 0.2.10 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified … CWE-79
Cross-site Scripting 		CVE-2008-3037 2017-08-8 10:31 2008-07-8 Show GitHub Exploit DB Packet Storm
263770 - typo3 address_directory SQL injection vulnerability in the Address Directory (sp_directory) extension 0.2.10 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2008-3038 2017-08-8 10:31 2008-07-8 Show GitHub Exploit DB Packet Storm