Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208631	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

208632	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

208633	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

208634	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

208635	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

208636	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

208637	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

208638	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
260641	-	punbb	punbb	Cross-site scripting (XSS) vulnerability in userlist.php in PunBB before 1.2.20 allows remote attackers to inject arbitrary web script or HTML via the p parameter.	CWE-79 Cross-site Scripting	CVE-2008-3968	2017-08-8 10:32	2008-09-11	Show	GitHub Exploit DB Packet Storm

260642	-	punbb	punbb	Patch information - http://punbb.informer.com/downloads.php	CWE-79 Cross-site Scripting	CVE-2008-3968	2017-08-8 10:32	2008-09-11	Show	GitHub Exploit DB Packet Storm

260643	-	gmanedit2	gmanedit	Heap-based buffer overflow in the open_man_file function in callbacks.c in gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, which is not properly handled durin…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-3971	2017-08-8 10:32	2008-09-11	Show	GitHub Exploit DB Packet Storm

260644	-	opensc-project	opensc	pkcs15-tool in OpenSC before 0.11.6 does not apply security updates to a smart card unless the card's label matches the "OpenSC" string, which might allow physically proximate attackers to exploit vu…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-3972	2017-08-8 10:32	2008-09-11	Show	GitHub Exploit DB Packet Storm

260645	-	opensc-project	opensc	Direct Patch Link - http://www.opensc-project.org/files/opensc/opensc-0.11.6.tar.gz	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-3972	2017-08-8 10:32	2008-09-11	Show	GitHub Exploit DB Packet Storm

260646	-	oracle	application_server	Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3 and 10.1.2.3 allows remote attackers to affect integrity via unknown vectors, a different vulnerability t…	NVD-CWE-noinfo	CVE-2008-3975	2017-08-8 10:32	2008-10-15	Show	GitHub Exploit DB Packet Storm

260647	-	oracle	database_10g database_9i	Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via u…	NVD-CWE-noinfo	CVE-2008-3976	2017-08-8 10:32	2008-10-15	Show	GitHub Exploit DB Packet Storm

260648	-	oracle	application_server	Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3 and 10.1.2.3 allows remote attackers to affect integrity via unknown vectors, a different vulnerability t…	NVD-CWE-noinfo	CVE-2008-3977	2017-08-8 10:32	2008-10-15	Show	GitHub Exploit DB Packet Storm

260649	-	oracle	database_10g	Unspecified vulnerability in the Upgrade component in Oracle Database 10.1.0.5 and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.	NVD-CWE-noinfo	CVE-2008-3980	2017-08-8 10:32	2008-10-15	Show	GitHub Exploit DB Packet Storm

260650	-	oracle	database_10g database_11i database_9i	Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and in…	NVD-CWE-noinfo	CVE-2008-3982	2017-08-8 10:32	2008-10-15	Show	GitHub Exploit DB Packet Storm