Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209041	3.6	注意	オラクル	-	Oracle Database Server の Core RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2391	2010-11-1 15:37	2010-10-12	Show	GitHub Exploit DB Packet Storm

209042	4.3	警告	オラクル	-	Oracle Database Server の XDK コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2407	2010-11-1 15:37	2010-10-12	Show	GitHub Exploit DB Packet Storm

209043	6.8	警告	Vim	-	GVim における DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3914	2010-11-1 12:00	2010-11-1	Show	GitHub Exploit DB Packet Storm

209044	9.3	危険	オラクル	-	Oracle Siebel Option Pack for IE の ActiveX コントロールのメモリ初期化処理に脆弱性	CWE-94 コード・インジェクション	CVE-2009-3737	2010-10-29 16:43	2010-08-9	Show	GitHub Exploit DB Packet Storm

209045	4.6	警告	オラクル	-	Oracle Database Server の Job Queue コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2411	2010-10-29 16:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

209046	4.9	警告	オラクル	-	Oracle Database Server の Change Data Capture コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2415	2010-10-29 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

209047	5.5	警告	オラクル	-	Oracle Database Server の OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2412	2010-10-29 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

209048	6.5	警告	オラクル	-	Oracle Database Server の Java Virtual Machine コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2419	2010-10-29 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

209049	7.5	危険	オラクル	-	複数の Oracle 製品の Database Control コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2390	2010-10-29 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

209050	7.5	危険	マイクロソフト	-	Microsoft Windows Server の Microsoft Cluster Service 内にあるユーザインターフェイスにおけるディスク上のデータを読まれるまたは編集される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3223	2010-10-29 16:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
263011	-	apple	safari	Unspecified vulnerability in Apple Safari on Mac OS X 10.5.6 allows remote attackers to execute arbitrary code via unknown vectors triggered by clicking on a link, as demonstrated by Nils during a PW…	NVD-CWE-noinfo	CVE-2009-1042	2017-08-17 10:30	2009-03-23	Show	GitHub Exploit DB Packet Storm

263012	-	ichitaro	ichitaro ichitaro_viewer	Unspecified vulnerability in JustSystems Ichitaro 13, 2004 through 2008, Lite2, and Ichitaro viewer 5.1.5.0 and earlier allows remote attackers to execute arbitrary code via a crafted file, as exploi…	NVD-CWE-noinfo	CVE-2009-1054	2017-08-17 10:30	2009-03-24	Show	GitHub Exploit DB Packet Storm

263013	-	apple	safari	Unspecified vulnerability in Apple Safari on Mac OS X 10.5.6 allows remote attackers to execute arbitrary code via unknown vectors triggered by clicking on a link, as demonstrated by Charlie Miller d…	NVD-CWE-noinfo	CVE-2009-1060	2017-08-17 10:30	2009-03-24	Show	GitHub Exploit DB Packet Storm

263014	-	getpixie	pixie_cms	SQL injection vulnerability in index.php in Pixie CMS 1.01a allows remote attackers to execute arbitrary SQL commands via the x parameter. NOTE: the provenance of this information is unknown; the de…	CWE-89 SQL Injection	CVE-2009-1065	2017-08-17 10:30	2009-03-26	Show	GitHub Exploit DB Packet Storm

263015	-	drupal	content_construction_kit	Multiple cross-site scripting (XSS) vulnerabilities in the node edit form feature in Drupal Content Construction Kit (CCK) 6.x before 6.x-2.2, a module for Drupal, allow remote attackers to inject ar…	CWE-79 Cross-site Scripting	CVE-2009-1069	2017-08-17 10:30	2009-03-26	Show	GitHub Exploit DB Packet Storm

263016	-	sun	java_system_identity_manager	Sun Java System Identity Manager (IdM) 7.0 through 8.0 does not properly restrict access to the System Configuration object, which allows remote authenticated administrators and possibly remote attac…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-1084	2017-08-17 10:30	2009-03-26	Show	GitHub Exploit DB Packet Storm

263017	-	cisco	ironport_asyncos ironport_email_security_appliances	Cross-site scripting (XSS) vulnerability in the Spam Quarantine login page in Cisco IronPort AsyncOS before 6.5.2 on Series C, M, and X appliances allows remote attackers to inject arbitrary web scri…	CWE-79 Cross-site Scripting	CVE-2009-1162	2017-08-17 10:30	2009-06-6	Show	GitHub Exploit DB Packet Storm

263018	-	sun	opensolaris	Unspecified vulnerability in Sun OpenSolaris snv_100 through snv_101 allows local users, with privileges in a non-global zone, to execute arbitrary code in the global zone when a global-zone user is …	NVD-CWE-noinfo	CVE-2009-1170	2017-08-17 10:30	2009-03-31	Show	GitHub Exploit DB Packet Storm

263019	-	futomi	cgi_cafe_access_analyzer_cgi	Unspecified vulnerability in futomi's CGI Cafe Access Analyzer CGI Professional Version 4.11.5 and earlier allows remote attackers to gain administrative privileges via unknown vectors.	NVD-CWE-noinfo	CVE-2009-1206	2017-08-17 10:30	2009-04-1	Show	GitHub Exploit DB Packet Storm

263020	-	auth2db auth2dbauth2db	auth2db 0.1.1	SQL injection vulnerability in auth2db 0.2.5, and possibly other versions before 0.2.7, uses the addslashes function instead of the mysql_real_escape_string function, which allows remote attackers to…	CWE-89 SQL Injection	CVE-2009-1208	2017-08-17 10:30	2009-04-1	Show	GitHub Exploit DB Packet Storm