Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 5, 2024, 11:32 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1	7	重要 Local	Canonical Linux	Ubuntu Linux Kernel	Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2022-2602	2024-02-5 11:24	2022-10-19	Show	GitHub Exploit DB Packet Storm

2	7.8	重要 Local	Canonical Linux	Ubuntu Linux Kernel	Linux の Linux Kernel 等複数ベンダの製品における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2022-2588	2024-02-5 11:09	2022-08-9	Show	GitHub Exploit DB Packet Storm

3	7.8	重要 Local	Canonical Linux	Ubuntu Linux Kernel	Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2022-2586	2024-02-5 11:02	2022-08-9	Show	GitHub Exploit DB Packet Storm

4	5.5	警告 Local	fortanix	confidential computing manager	fortanix の Intel Software Guard Extensions 用 confidential computing manager における脆弱性	CWE-noinfo 情報不足	CVE-2023-38021	2024-02-2 17:01	2023-12-30	Show	GitHub Exploit DB Packet Storm

5	5.5	警告 Local	fortanix	confidential computing manager	fortanix の Intel Software Guard Extensions 用 confidential computing manager における脆弱性	CWE-noinfo 情報不足	CVE-2023-38022	2024-02-2 17:01	2023-12-30	Show	GitHub Exploit DB Packet Storm

6	5.5	警告 Local	scontain	scone	scontain の scone における脆弱性	CWE-noinfo 情報不足	CVE-2023-38023	2024-02-2 17:01	2023-12-30	Show	GitHub Exploit DB Packet Storm

7	7.2	重要 Network	oretnom23	house rental management system	oretnom23 の house rental management system における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2024-0502	2024-02-2 17:01	2024-01-13	Show	GitHub Exploit DB Packet Storm

8	7.5	重要 Network	newtonsoft	json.net	newtonsoft の json.net における例外的な状態の処理に関する脆弱性	CWE-755 例外的な状態における不適切な処理	CVE-2024-21907	2024-02-2 17:01	2024-01-3	Show	GitHub Exploit DB Packet Storm

9	5.5	警告 Local	アップル	iPadOS iOS	複数のアップル製品における脆弱性	CWE-noinfo 情報不足	CVE-2022-46710	2024-02-2 16:58	2022-12-13	Show	GitHub Exploit DB Packet Storm

10	7.8	重要 Local		-	アップルの macOS における脆弱性	CWE-noinfo 情報不足	CVE-2022-46721	2024-02-2 16:58	2022-10-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2024, 8:15 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	-	-	-	A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /Admin/user-recor… New	CWE-79 Cross-site Scripting	CVE-2024-4528	2024-05-6 16:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

2	-	-	-	E-Mails exported as PDF were stored in a cache that did not consider specific session information for the related user account. Users of the same service node could access other users E-Mails in case… New	-	CVE-2024-23193	2024-05-6 16:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

3	-	-	-	Maliciously crafted E-Mail attachment names could be used to temporarily execute script code in the context of the users browser session. Common user interaction is required for the vulnerability to … New	-	CVE-2024-23188	2024-05-6 16:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

4	-	-	-	Content-ID based embedding of resources in E-Mails could be abused to trigger client-side script code when using the "show more" option. Attackers could perform malicious API requests or extract info… New	-	CVE-2024-23187	2024-05-6 16:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

5	-	-	-	E-Mail containing malicious display-name information could trigger client-side script execution when using specific mobile devices. Attackers could perform malicious API requests or extract informati… New	-	CVE-2024-23186	2024-05-6 16:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

6	-	-	-	A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /view/student_payment_detail… New	CWE-79 Cross-site Scripting	CVE-2024-4527	2024-05-6 15:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

7	-	-	-	A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /view/student_payment_deta… New	CWE-79 Cross-site Scripting	CVE-2024-4526	2024-05-6 15:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

8	-	-	-	A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /view/student_payment_de… New	CWE-79 Cross-site Scripting	CVE-2024-4525	2024-05-6 15:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

9	-	-	-	A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/student_payment_invoice.ph… New	CWE-79 Cross-site Scripting	CVE-2024-4524	2024-05-6 15:15	2024-05-6	Show	GitHub Exploit DB Packet Storm

10	-	-	-	The MF Gig Calendar WordPress plugin through 1.2.1 does not have CSRF checks in some places, which could allow attackers to make logged in Contributors and above delete arbitrary events via a CSRF at… New	-	CVE-2024-3756	2024-05-6 15:15	2024-05-6	Show	GitHub Exploit DB Packet Storm