Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208981	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player に脆弱性	CWE-119 バッファエラー	CVE-2010-3653	2010-11-16 14:49	2010-10-25	Show	GitHub Exploit DB Packet Storm

208982	7.5	危険	富士通	-	Interstage Application Server におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6258	2010-11-16 14:48	2008-02-19	Show	GitHub Exploit DB Packet Storm

208983	6.5	警告	アップルサイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	MySQL におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1848	2010-11-15 16:20	2010-05-5	Show	GitHub Exploit DB Packet Storm

208984	5	警告	サイバートラスト株式会社 Zabbix	-	Zabbix サーバの trapper/trapper.c 内にある process_trap 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4500	2010-11-15 15:41	2009-07-21	Show	GitHub Exploit DB Packet Storm

208985	9.3	危険	サイバートラスト株式会社 Zabbix	-	Zabbix Agent の net.c 内にある NET_TCP_LISTEN 関数における任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4502	2010-11-15 15:41	2009-09-10	Show	GitHub Exploit DB Packet Storm

208986	5	警告	サイバートラスト株式会社 Zabbix	-	Zabbix サーバの zbx_get_next_field 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4501	2010-11-15 15:40	2009-11-25	Show	GitHub Exploit DB Packet Storm

208987	7.5	危険	サイバートラスト株式会社 Zabbix	-	Zabbix サーバの get_history_lastid 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4499	2010-11-15 15:40	2009-09-10	Show	GitHub Exploit DB Packet Storm

208988	6.8	警告	サイバートラスト株式会社 Zabbix	-	Zabbix サーバの node_process_command 関数における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2009-4498	2010-11-15 15:40	2009-09-10	Show	GitHub Exploit DB Packet Storm

208989	6.9	警告	Mozilla Foundation	-	Windows 上で稼働する複数の Mozilla 製品における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3181	2010-11-11 15:07	2010-10-19	Show	GitHub Exploit DB Packet Storm

208990	9.3	危険	アドビシステムズ	-	複数の Adobe 製品における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-3153	2010-11-10 15:34	2010-10-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
263831	-	adobe	acrobat_reader	acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files related to SSL certificate handling.	CWE-59 Link Following	CVE-2008-0883	2017-08-8 10:29	2008-03-6	Show	GitHub Exploit DB Packet Storm

263832	-	redhat	directory_server	Red Hat Directory Server 7.1 before SP4 uses insecure permissions for certain directories, which allows local users to modify JAR files and execute arbitrary code via unknown vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-0890	2017-08-8 10:29	2008-03-12	Show	GitHub Exploit DB Packet Storm

263833	-	redhat	directory_server	Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, does not properly restrict access to CGI scripts, which allows remote attackers to perform administrative actions.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-0893	2017-08-8 10:29	2008-04-17	Show	GitHub Exploit DB Packet Storm

263834	-	schoolwires	academic_portal	SQL injection vulnerability in browse.asp in Schoolwires Academic Portal allows remote attackers to execute arbitrary SQL commands via the c parameter. NOTE: the provenance of this information is un…	CWE-89 SQL Injection	CVE-2008-0908	2017-08-8 10:29	2008-02-23	Show	GitHub Exploit DB Packet Storm

263835	-	f-secure	f-secure_anti-virus f-secure_anti-virus_client_security f-secure_anti-virus_for_linux f-secure_anti-virus_for_workstations f-secure_anti-virus_linux_client_security f-secure_internet_s…	Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection Service, and others, allow remote attackers to bypass malware d…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-0910	2017-08-8 10:29	2008-02-23	Show	GitHub Exploit DB Packet Storm

263836	-	astats joomla	astatspro com_astatspro	SQL injection vulnerability in includes/count_dl_or_link.inc.php in the astatsPRO (com_astatspro) 1.0.1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id para…	CWE-89 SQL Injection	CVE-2008-0918	2017-08-8 10:29	2008-02-23	Show	GitHub Exploit DB Packet Storm

263837	-	novell	edirectory	Cross-site scripting (XSS) vulnerability in the iMonitor interface in Novell eDirectory 8.7.3.x before 8.7.3 sp10, and 8.8.x before 8.8.2 ftf2, allows remote attackers to inject arbitrary web script …	CWE-79 Cross-site Scripting	CVE-2008-0925	2017-08-8 10:29	2008-06-19	Show	GitHub Exploit DB Packet Storm

263838	-	ibm	informix_dynamic_server	Unspecified vulnerability in IBM Informix Dynamic Server (IDS) 7.x through 11.x allows remote attackers to gain privileges via a malformed connection request packet.	NVD-CWE-noinfo	CVE-2008-0949	2017-08-8 10:29	2008-03-18	Show	GitHub Exploit DB Packet Storm

263839	-	ibm	informix_dynamic_server	IBM links require software support sign in to access information.	NVD-CWE-noinfo	CVE-2008-0949	2017-08-8 10:29	2008-03-18	Show	GitHub Exploit DB Packet Storm

263840	-	hp	instant_support	The AppendStringToFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to create files with arbitrary c…	NVD-CWE-noinfo	CVE-2008-0952	2017-08-8 10:29	2008-06-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed