Vulnerability Reports JP

past 12 months20172016201520142013201220112010200920082007200620052004

2018

2018/07/13 JVN#55813866:
Explzh vulnerable to directory traversal
2018/07/12 JVN#84825660:
Multiple vulnerabilities in Aterm HC100RC
2018/07/12 JVN#26629618:
Multiple vulnerabilities in Aterm W300P
2018/07/12 JVN#00401783:
Multiple OS command injection vulnerabilities in Aterm WG1200HP
2018/07/06 JVN#52574492:
The installers of multiple Logicool software programs may insecurely load Dynamic Link Libraries
2018/07/06 JVN#77409513:
DHC Online Shop App for Android fails to verify SSL server certificates
2018/07/03 JVN#84967039:
Installer of Glary Utilities may insecurely load Dynamic Link Libraries
2018/07/02 JVN#13415512:
Cybozu Garoon vulnerable to SQL injection
2018/07/02 JVN#63895206:
Multiple vulnerabilities in Calsos CSDX and CSDJ series products
2018/06/28 JVN#00846677:
Mailman vulnerable to cross-site scripting
2018/06/27 JVN#58362455:
MemoCGI vulnerable to directory traversal
2018/06/15 JVN#71535108:
ANA App for iOS fails to verify SSL server certificates
2018/06/15 JVN#98975951:
Chrome Extension "5000 trillion yen converter" vulnerable to cross-site scripting
2018/06/13 JVN#33124193:
Local File Inclusion vulnerability in Zenphoto
2018/06/12 JVN#92265618:
LINE for Windows may insecurely load Dynamic Link Libraries
2018/06/04 JVN#93226941:
H2O vulnerable to buffer overflow
2018/05/31 JVN#27978559:
Multiple vulnerabilities in Pixelpost
2018/05/29 JVN#20040004:
The installer of "FLET'S VIRUS CLEAR Easy Setup & Application Tool" and "FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool" may insecurely invoke an executable file
2018/05/28 JVN#60978548:
WordPress plugin "Site Reviews" vulnerable to cross-site scripting
2018/05/28 JVN#16471686:
WordPress plugin "Email Subscribers & Newsletters" vulnerable to cross-site scripting
2018/05/24 JVN#13940333:
The installer of PlayMemories Home for Windows may insecurely load Dynamic Link Libraries
2018/05/24 JVN#79301396:
Susie plug-in "axpdfium" may insecurely load Dynamic Link Libraries
2018/05/22 JVN#67881316:
Multiple vulnerabilities in baserCMS
2018/05/22 JVN#52319657:
Multiple cross-site scripting vulnerabilities in Cybozu Mailwise
2018/05/22 JVN#51737843:
Multiple vulnerabilities in Cybozu Office
2018/05/21 JVN#96954395:
Nessus vulnerable to cross-site scripting
2018/05/17 JVN#81196185:
The installer of Visual C++ Redistributable may insecurely load Dynamic Link Libraries
2018/05/17 JVN#72748502:
Self-Extracting Archive files created by IExpress may insecurely load Dynamic Link Libraries
2018/05/17 JVN#91151862:
Multiple Microsoft Windows applications and installers may insecurely load Dynamic Link Libraries
2018/05/11 JVN#83671755:
KINEPASS App fails to verify SSL server certificates
2018/05/11 JVN#27137002:
IIJ SmartKey App for Android vulnerable to authentication bypass
2018/05/10 JVN#28804532:
Multiple vulnerabilities in WordPress plugin "Ultimate Member"
2018/05/09 JVN#34562916:
RT-AC1200HP vulnerable to cross-site scripting
2018/05/09 JVN#73742314:
RT-AC68U vulnerable to cross-site scripting
2018/05/09 JVN#33901663:
RT-AC87U vulnerable to cross-site scripting
2018/04/27 JVN#08386386:
WordPress plugin "Open Graph for Facebook, Google+ and Twitter Card Tags" vulnerable to cross-site scripting
2018/04/27 JVN#61081552:
WordPress plugin "PixelYourSite" vulnerable to cross-site scripting
2018/04/27 JVN#01040170:
WordPress plugin "WP Google Map Plugin" vulnerable to cross-site scripting
2018/04/27 JVN#85531148:
WordPress plugin "Events Manager" vulnerable to cross-site scripting
2018/04/27 JVN#68345747:
The installers of multiple CELSYS,Inc. software may insecurely load Dynamic Link Libraries
2018/04/26 JVN#95589314:
Joruri Gw vulnerable to arbitrary file upload
2018/04/17 JVN#52695336:
EC-CUBE vulnerable to session fixation
2018/04/13 JVN#85056623:
Installer of SoundEngine Free may insecurely load Dynamic Link Libraries
2018/04/12 JVN#92220486:
The installer of PhishWall Client Internet Explorer edition may insecurely load Dynamic Link Libraries
2018/04/12 JVN#71255137:
Tenable Appliance vulnerable to cross-site scripting
2018/04/10 JVN#77753476:
Hatena Bookmark App for iOS contains an address bar spoofing vulnerability
2018/04/09 JVN#65268217:
Multiple vulnerabilities in Cybozu Garoon
2018/03/30 JVN#01161596:
Safari vulnerable to script injection
2018/03/29 JVN#72589538:
LXR vulnerable to OS command injection
2018/03/29 JVN#93397125:
Multiple vulnerabilities in WZR-1750DHP2
2018/03/27 JVN#43382653:
iRemoconWiFi App for Android fails to verify SSL server certificates
2018/03/15 JVN#39896275:
The installer of PhishWall Client Firefox and Chrome edition for Windows may insecurely load Dynamic Link Libraries
2018/03/13 JVN#87226910:[Unreachable]
WebProxy vulnerable to directory traversal
2018/03/13 JVN#22536871:[Unreachable]
QQQ SYSTEMS vulnerable to arbitrary command injection
2018/03/13 JVN#92259864:[Unreachable]
TinyFTP Daemon vulnerable to buffer overflow
2018/03/13 JVN#56764650:[Unreachable]
ViX may insecurely load Dynamic Link Libraries
2018/03/13 JVN#48774168:[Unreachable]
PHP 2chBBS vulnerable to cross-site scripting
2018/03/13 JVN#46471407:[Unreachable]
QQQ SYSTEMS vulnerable to cross-site scripting
2018/03/13 JVN#96655441:[Unreachable]
QQQ SYSTEMS vulnerable to cross-site scripting
2018/03/13 JVN#64990648:[Unreachable]
QQQ SYSTEMS vulnerable to cross-site scripting
2018/03/13 JVN#30864198:[Unreachable]
ArsenoL vulnerable to cross-site scripting
2018/03/09 JVN#15201064:
Multiple vulnerabilities in CG-WGR1200
2018/03/08 JVN#60032768:
WordPress plugin "WP All Import" vulnerable to cross-site scripting
2018/03/08 JVN#33527174:
WordPress plugin "WP All Import" vulnerable to cross-site scripting
2018/03/05 JVN#01837169:
Installer of WinShot may insecurely load Dynamic Link Libraries
2018/03/05 JVN#71816327:
Installer of JTrim may insecurely load Dynamic Link Libraries
2018/03/02 JVN#56132776:
Multiple vulnerabilities in Jubatus
2018/02/26 JVN#97144273:
Multiple vulnerabilities in WXR-1900DHP2
2018/02/20 JVN#75453852:
LINE for iOS fails to verify SSL server certificates
2018/02/20 JVN#83834277:
Multiple vulnerabilities in FS010W
2018/02/15 JVN#28865183:
Insecure DLL Loading issue in multiple Trend Micro products
2018/02/13 JVN#87403477:
Application and self-extracting archive containing the application of "FLET'S v4 / v6 address selection tool" may insecurely load Dynamic Link Libraries
2018/02/13 JVN#04564808:
Installer of ”FLET'S Azukeru Backup Tool” may insecurely load Dynamic Link Libraries
2018/02/08 JVN#15462187:
MP Form Mail CGI eCommerce Edition vulnerable to OS command injection
2018/02/06 JVN#70615027:
The installer of Anshin net security for Windows may insecurely load Dynamic Link Libraries
2018/02/06 JVN#36048131:
Multiple I-O DATA network devices incorporating "MagicalFinder" vulnerable to OS command injection
2018/02/02 JVN#99312352:
WordPress plugin "MTS Simple Booking C" vulnerable to cross-site scripting
2018/02/02 JVN#15643848:
Spring Security and Spring Framework vulnerable to authentication bypass
2018/02/01 JVN#91393903:
Multiple vulnerabilities in epg search result viewer(kkcald)
2018/01/30 JVN#30636823:
WordPress plugin "WP Retina 2x" vulnerable to cross-site scripting
2018/01/22 JVN#26255241:
The installer of "FLET'S VIRUS CLEAR Easy Setup & Application Tool" and "FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool" may insecurely load Dynamic Link Libraries
2018/01/19 JVN#10103841:
Nootka App for Android vulnerable to OS command injection
2018/01/19 JVN#26200083:
GroupSession vulnerable to open redirect
2018/01/11 JVN#57842148:
Lhaplus vulnerable to improper verification when expanding ZIP64 archives

2017

2017/12/25 JVN#45494523:
MQTT.js issue in handling PUBLISH packets
2017/12/22 JVN#60695371:
The installer of Music Center for PC may insecurely load Dynamic Link Libraries
2017/12/22 JVN#95423049:
The installer of Content Manager Assistant for PlayStation may insecurely load Dynamic Link Libraries
2017/12/19 JVN#93333702:
OneThird CMS vulnerable to directory traversal
2017/12/18 JVN#84182676:
Multiple vulnerabilities in H2O
2017/12/11 JVN#27342829:
Qt for Android environment variables alteration
2017/12/11 JVN#67389262:
Qt for Android vulnerable to OS command injection
2017/12/06 JVN#30352845:
The installer of The Public Certification Service for Individuals "The JPKI user's software" may insecurely load Dynamic Link Libraries
2017/12/01 JVN#65994435:
Multiple vulnerabilities in multiple Buffalo broadband routers
2017/11/30 JVN#78501037:
Movable Type plugin A-Member and A-Reserve vulnerable to SQL injection
2017/11/30 JVN#98295787:
Multiple vulnerabilities in Wireless mobile storage "Digizo ShAirDisk" PTW-WMS1
2017/11/29 JVN#71291160:
StreamRelay.net.exe and sDNSProxy.exe vulnerable to denial-of-service (DoS)
2017/11/22 JVN#73141967:
PWR-Q200 vulnerable to DNS cache poisoning attacks
2017/11/21 JVN#08517069:
The installer of Media Go and Music Center for PC may insecurely load Dynamic Link Libraries
2017/11/16 JVN#76382932:
Robotic appliance COCOROBO vulnerable to session management
2017/11/14 JVN#05398317:
WordPress plugin "TablePress" vulnerable to improper restriction of XML external entity (XXE) references
2017/11/14 JVN#18420340:
Multiple vulnerabilities in BOOK WALKER for Windows/Mac
2017/11/13 JVN#29602086:
CS-Cart Japanese Edition vulnerable to cross-site scripting
2017/11/09 JVN#71284826:
Installer of HYPER SBI may insecurely load Dynamic Link Libraries
2017/11/06 JVN#23367475:
Wi-Fi STATION L-02F vulnerable to buffer overflow
2017/11/06 JVN#87886530:
I-O DATA LAN DISK Connect vulnerable to denial-of-service (DoS)
2017/11/02 JVN#97243511:
Installer of ”Flets Easy Setup Tool" may insecurely load Dynamic Link Libraries
2017/11/01 JVN#79546124:
OpenAM (Open Source Edition) vulnerable to authentication bypass
2017/10/17 JVN#54795166:
Home unit KX-HJB1000 contains multiple vulnerabilities
2017/10/11 JVN#94056834:
Installer of HIBUN Confidential File Viewer may insecurely load Dynamic Link Libraries and invoke executable files
2017/10/11 JVN#55516206:
HIBUN Confidential File Decryption program may insecurely load Dynamic Link Libraries
2017/10/11 JVN#58909026:
HIBUN Confidential File Decryption program may insecurely load Dynamic Link Libraries
2017/10/11 JVN#14658424:
Cybozu Office fails to restrict access permissions
2017/09/14 JVN#75929834:
Install program and Installer of i-フィルター 6.0 may insecurely load Dynamic Link Libraries and invoke executable files
2017/09/12 JVN#03044183:
Wi-Fi STATION L-02F fails to restrict access permissions
2017/09/12 JVN#68922465:
Backdoor access issue in Wi-Fi STATION L-02F
2017/09/11 JVN#76692689:
SEIL Series routers vulnerable to denial-of-service (DoS)
2017/09/11 JVN#57205588:
Installer of FENCE-Explorer may insecurely load Dynamic Link Libraries and invoke executable files
2017/09/08 JVN#00719891:
Multiple vulnerabilities in CG-WLR300NM
2017/08/31 JVN#09769017:
Multiple Fuji Xerox products may insecurely load Dynamic Link Libraries
2017/08/30 JVN#26115441:
Installer of ”Remote Support Tool (Enkaku Support Tool)” may insecurely load Dynamic Link Libraries
2017/08/25 JVN#22272314:
Installer of "Flets Setsuzoku Tool" may insecurely load Dynamic Link Libraries
2017/08/25 JVN#36303528:
Installer and self-extracting archive containing the installer of "Security Setup Tool" may insecurely load Dynamic Link Libraries
2017/08/25 JVN#14926025:
Installer of ”Flets Install Tool” may insecurely load Dynamic Link Libraries
2017/08/25 JVN#14658714:
Installer of "Flets Azukeru for Windows Auto Backup Tool" may insecurely load Dynamic Link Libraries
2017/08/25 JVN#11601216:
Installer of "Security Kinou Mihariban" may insecurely load Dynamic Link Libraries
2017/08/25 JVN#87540575:
Installer of Optimal Guard may insecurely load Dynamic Link Libraries
2017/08/25 JVN#78151490:
Multiple vulnerabilities in baserCMS
2017/08/24 JVN#58559719:
WordPress plugin "BackupGuard" vulnerable to cross-site scripting
2017/08/24 JVN#39628662:
Multiple vulnerabilities in SEO Panel
2017/08/24 JVN#23340457:
Multiple vulnerabilities in WebCalendar
2017/08/23 JVN#30866130:
The installer of the Ministry of Justice [The electronic authentication system based on the commercial registration system "The CRCA user's Software"] may insecurely load Dynamic Link Libraries
2017/08/23 JVN#87410770:
Multiple vulnerabilities in "Dokodemo eye Smart HD" SCR02HD
2017/08/22 JVN#67954465:
Installer of Photo Collection PC Software provided by NTT DOCOMO, INC. may insecurely load Dynamic Link Libraries and invoke executable files
2017/08/21 JVN#63564682:
Multiple vulnerabilities in Cybozu Garoon
2017/08/18 JVN#18641169:
Installer and self-extracting archive containing the installer of TDB CA TypeA use software may insecurely load Dynamic Link Libraries
2017/08/17 JVN#23546631:
Installer of Shin Kinkyuji Houkoku Data Nyuryoku Program may insecurely load Dynamic Link Libraries
2017/08/17 JVN#71104430:
Installer of Shin Sekiyu Yunyu Chousa Houkoku Data Nyuryoku Program may insecurely load Dynamic Link Libraries
2017/08/17 JVN#73559859:
Installer of Shin Kikan Toukei Houkoku Data Nyuryokuyou Program may insecurely load Dynamic Link Libraries
2017/08/17 JVN#53292345:
Teikihoukokusho Sakuseishien Tool may insecurely load Dynamic Link Libraries
2017/08/08 JVN#81659403:
Installer of Qua station connection tool for Windows may insecurely load Dynamic Link Libraries
2017/08/08 JVN#74871939:
WSR-300HP vulnerable to arbitrary code execution
2017/08/08 JVN#05340005:
WCR-1166DS vulnerable to OS command injection
2017/08/03 JVN#86724730:
Installer of IP Messenger may insecurely load Dynamic Link Libraries
2017/08/03 JVN#17788774:
Installer of Baidu IME may insecurely load Dynamic Link Libraries
2017/07/27 JVN#74554973:
Installer of LhaForge may insecurely load Dynamic Link Libraries
2017/07/27 JVN#33797604:
NFC Port Software remover may insecurely load Dynamic Link Libraries
2017/07/27 JVN#16136413:
Installers of Sony PaSoRi related software may insecurely load Dynamic Link Libraries
2017/07/27 JVN#51410509:
I-O DATA WN-G300R31 uses hard-coded credentials
2017/07/27 JVN#01312667:
Multiple vulnerabilities in I-O DATA WN-AX1167GR
2017/07/24 JVN#17523256:
Installer of Tween may insecurely load Dynamic Link Libraries
2017/07/24 JVN#24238648:
RBB SPEED TEST App fails to verify SSL server certificates
2017/07/24 JVN#31459091:
WordPress plugin "Simple Custom CSS and JS" vulnerable to cross-site scripting
2017/07/24 JVN#92921024:
WordPress plugin "Popup Maker" vulnerable to cross-site scripting
2017/07/24 JVN#74247807:
Multiple cross-site scripting vulnerabilities in ScreenOS
2017/07/20 JVN#48413726:
Multiple vulnerabilities in multiple Buffalo wireless LAN routers
2017/07/20 JVN#48823557:
Multiple Buffalo wireless LAN access point devices do not properly perform authentication
2017/07/19 JVN#77412145:
SONY Portable Wireless Server WG-C10 fails to restrict access permissions
2017/07/19 JVN#14151222:
Multiple vulnerabilities SONY Portable Wireless Server WG-C10
2017/07/14 JVN#61502349:
Self-Extracting Encrypted Files created by AttacheCase may insecurely load Dynamic Link Libraries