Vulnerability-Lookup - Search a vulnerability

Search criteria

Vendor

Product

Assigner

Sources

Sort by

Order

JVNDB-2006-000605

Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00

Severity ?

() - -

Summary

Hyper NIKKI System allows unauthorized email submission

Details

Hyper NIKKI System (hns) is web log software from the Hyper NIKKI System Project. hns allows unauthorized email submission as it does not validate inputs properly.

References

Type

URL

JVN

http://jvn.jp/en/jp/JVN65542239/index.html

Impacted products

Vendor

Product

HyperNikkiSystem Project

hns

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000605.html",
  "dc:date": "2008-05-21T00:00+09:00",
  "dcterms:issued": "2008-05-21T00:00+09:00",
  "dcterms:modified": "2008-05-21T00:00+09:00",
  "description": "Hyper NIKKI System (hns) is web log software from the Hyper NIKKI System Project. hns allows unauthorized email submission as it does not validate inputs properly.",
  "link": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000605.html",
  "sec:cpe": {
    "#text": "cpe:/a:hns:hns",
    "@product": "hns",
    "@vendor": "HyperNikkiSystem Project",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "5.0",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2006-000605",
  "sec:references": {
    "#text": "http://jvn.jp/en/jp/JVN65542239/index.html",
    "@id": "JVN#65542239",
    "@source": "JVN"
  },
  "title": "Hyper NIKKI System allows unauthorized email submission"
}

JVNDB-2005-000789

Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00

Severity ?

() - -

Summary

Hyper NIKKI System cross-site request forgery vulnerability

Details

Hyper NIKKI System (hns), a weblog system from the Hyper NIKKI System Project, contains a cross-site request forgery (CSRF) vulnerability.

References

Type

URL

JVN

http://jvn.jp/en/jp/JVN97422426/index.html

Impacted products

Vendor

Product

HyperNikkiSystem Project

hns

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2005/JVNDB-2005-000789.html",
  "dc:date": "2008-05-21T00:00+09:00",
  "dcterms:issued": "2008-05-21T00:00+09:00",
  "dcterms:modified": "2008-05-21T00:00+09:00",
  "description": "Hyper NIKKI System (hns), a weblog system from the Hyper NIKKI System Project, contains a cross-site request forgery (CSRF) vulnerability.",
  "link": "https://jvndb.jvn.jp/en/contents/2005/JVNDB-2005-000789.html",
  "sec:cpe": {
    "#text": "cpe:/a:hns:hns",
    "@product": "hns",
    "@vendor": "HyperNikkiSystem Project",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "2.6",
    "@severity": "Low",
    "@type": "Base",
    "@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:N",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2005-000789",
  "sec:references": {
    "#text": "http://jvn.jp/en/jp/JVN97422426/index.html",
    "@id": "JVN#97422426",
    "@source": "JVN"
  },
  "title": "Hyper NIKKI System cross-site request forgery vulnerability"
}

JVNDB-2006-000760

Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00

Severity ?

() - -

Summary

Hyper NIKKI System cross-site scripting vulnerability

Details

Hyper NIKKI System (hns), web log software from the Hyper NIKKI System Project, contains a cross-site scripting vulnerability.

References

Type

URL

	JVN	http://jvn.jp/en/jp/JVN88325166/index.html
	CVE	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5774
	NVD	http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5774
	SECUNIA	http://secunia.com/advisories/22697/
	BID	http://www.securityfocus.com/bid/20949
	XF	http://xforce.iss.net/xforce/xfdb/30040

Impacted products

Vendor

Product

HyperNikkiSystem Project

hns

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000760.html",
  "dc:date": "2008-05-21T00:00+09:00",
  "dcterms:issued": "2008-05-21T00:00+09:00",
  "dcterms:modified": "2008-05-21T00:00+09:00",
  "description": "Hyper NIKKI System (hns), web log software from the Hyper NIKKI System Project, contains a cross-site scripting vulnerability.",
  "link": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000760.html",
  "sec:cpe": {
    "#text": "cpe:/a:hns:hns",
    "@product": "hns",
    "@vendor": "HyperNikkiSystem Project",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "2.6",
    "@severity": "Low",
    "@type": "Base",
    "@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:N",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2006-000760",
  "sec:references": [
    {
      "#text": "http://jvn.jp/en/jp/JVN88325166/index.html",
      "@id": "JVN#88325166",
      "@source": "JVN"
    },
    {
      "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5774",
      "@id": "CVE-2006-5774",
      "@source": "CVE"
    },
    {
      "#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5774",
      "@id": "CVE-2006-5774",
      "@source": "NVD"
    },
    {
      "#text": "http://secunia.com/advisories/22697/",
      "@id": "SA22697",
      "@source": "SECUNIA"
    },
    {
      "#text": "http://www.securityfocus.com/bid/20949",
      "@id": "20949",
      "@source": "BID"
    },
    {
      "#text": "http://xforce.iss.net/xforce/xfdb/30040",
      "@id": "30040",
      "@source": "XF"
    }
  ],
  "title": "Hyper NIKKI System cross-site scripting vulnerability"
}

Search criteria

3 vulnerabilities found for hns by HyperNikkiSystem Project

JVNDB-2006-000605

JVNDB-2005-000789

JVNDB-2006-000760