Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229481	4.4	警告	freedesktop.org	-	PolicyKit における認証なしで root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4945	2012-10-3 17:20	2012-10-1	Show	GitHub Exploit DB Packet Storm

229482	4.3	警告	Matthew Fries	-	WordPress 用 MF Gig Calendar プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4242	2012-10-3 17:17	2012-10-1	Show	GitHub Exploit DB Packet Storm

229483	3.5	注意	Eucalyptus Systems	-	Eucalyptus における不特定の認証チェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4065	2012-10-3 17:16	2012-08-28	Show	GitHub Exploit DB Packet Storm

229484	6.5	警告	Eucalyptus Systems	-	Eucalyptus における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4064	2012-10-3 17:14	2012-08-28	Show	GitHub Exploit DB Packet Storm

229485	5	警告	Eucalyptus Systems	-	Eucalyptus におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4063	2012-10-3 17:10	2012-08-28	Show	GitHub Exploit DB Packet Storm

229486	4.3	警告	NextBBS	-	NextBBS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1604	2012-10-3 17:06	2012-10-1	Show	GitHub Exploit DB Packet Storm

229487	7.5	危険	NextBBS	-	NextBBS の ajaxserver.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1603	2012-10-3 17:05	2012-10-1	Show	GitHub Exploit DB Packet Storm

229488	7.5	危険	NextBBS	-	NextBBS の user.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2012-1602	2012-10-3 17:03	2012-10-1	Show	GitHub Exploit DB Packet Storm

229489	5.8	警告	ocPortal	-	ocPortal の index.php におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2012-5234	2012-10-3 17:02	2012-03-21	Show	GitHub Exploit DB Packet Storm

229490	5	警告	ocPortal	-	ocPortal の catalogue_file.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1471	2012-10-3 17:02	2012-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298001	-	scilab	scilab-bin	scilab-bin 4.1.2 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/SciLink#####1, (b) /tmp/SciLink#####2, (c) /tmp/SciLink#####3, (d) /tmp/.#####, (e) /tmp/.#####.res…	CWE-59 Link Following	CVE-2008-4983	2017-08-8 10:33	2008-11-7	Show	GitHub Exploit DB Packet Storm

298002	-	freedesktop	scratchbox2	scratchbox2 1.99.0.24 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/dpkg.#####.tmp, (b) /tmp/missing_deps.#####, and (c) /tmp/sb2-pkg-chk.$tstamp.##### temporary fi…	CWE-59 Link Following	CVE-2008-4984	2017-08-8 10:33	2008-11-7	Show	GitHub Exploit DB Packet Storm

298003	-	cadsoft	vdr	vdrleaktest in Video Disk Recorder (aka vdr-dbg or vdr) 1.6.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/memleaktest.log temporary file.	CWE-59 Link Following	CVE-2008-4985	2017-08-8 10:33	2008-11-7	Show	GitHub Exploit DB Packet Storm

298004	-	georges_khaznadar	wims	wims 3.62 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/env#####, (b) /tmp/sed#####, and (c) /tmp/referer-home.log temporary files, related to the (1) coqweb and (2…	CWE-59 Link Following	CVE-2008-4986	2017-08-8 10:33	2008-11-7	Show	GitHub Exploit DB Packet Storm

298005	-	xastir	xastir	xastir 1.9.2 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/ldconfig.tmp, (b) /tmp/ldconf.tmp, and (c) /tmp/ld.so.conf temporary files, related to the (1) get-ma…	CWE-59 Link Following	CVE-2008-4987	2017-08-8 10:33	2008-11-7	Show	GitHub Exploit DB Packet Storm

298006	-	ec-cube	ec-cube	SQL injection vulnerability in LOCKON CO.,LTD. EC-CUBE 2.3.0 and earlier, 1.4.7 and earlier, and 1.5.0-beta2 and earlier; and Community Edition 1.3.5 and earlier allows remote attackers to execute ar…	CWE-89 SQL Injection	CVE-2008-4991	2017-08-8 10:33	2008-11-7	Show	GitHub Exploit DB Packet Storm

298007	-	sun	blade_t6300_server blade_t6320_server fire_enterprise_server_t1000 fire_enterprise_server_t2000 netra_cp3060_server netra_t2000_server netra_t5220_server sparc_enterprise_server_…	The SPARC hypervisor in Sun System Firmware 6.6.3 through 6.6.5 and 7.1.3 through 7.1.3.e on UltraSPARC T1, T2, and T2+ processors allows logical domain users to access memory in other logical domain…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-4992	2017-08-8 10:33	2008-11-8	Show	GitHub Exploit DB Packet Storm

298008	-	ti_kan	xmcd	The (1) ncsarmt and (2) ncsawrap scripts in xmcd 2.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.*pid temporary file.	CWE-59 Link Following	CVE-2008-4994	2017-08-8 10:33	2008-11-8	Show	GitHub Exploit DB Packet Storm

298009	-	jose_m.vidal	bk2site	redirect.pl in bk2site 1.1.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/redirect.log temporary file. NOTE: this vulnerability is only limited to debug mode, whic…	CWE-59 Link Following	CVE-2008-4995	2017-08-8 10:33	2008-11-8	Show	GitHub Exploit DB Packet Storm

298010	-	university_of_washington	imap_toolkit	smtp.c in the c-client library in University of Washington IMAP Toolkit 2007b allows remote SMTP servers to cause a denial of service (NULL pointer dereference and application crash) by responding to…	NVD-CWE-noinfo CWE-399 Resource Management Errors	CVE-2008-5006	2017-08-8 10:33	2008-11-10	Show	GitHub Exploit DB Packet Storm