Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 6, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
121	9.8	緊急 Network	Modern Tribe, Inc.	The Events Calendar	stellarwp の WordPress 用 the events calendar における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2024-8275	2024-10-3 10:43	2024-09-25	Show	GitHub Exploit DB Packet Storm

122	7.2	重要 Network	Uncanny Owl	Uncanny Groups for LearnDash	Uncanny Owl の WordPress 用 Uncanny Groups for LearnDash における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-8349	2024-10-3 10:43	2024-09-25	Show	GitHub Exploit DB Packet Storm

123	6.5	警告 Network	madrasthemes	mas static content	madrasthemes の WordPress 用 mas static content における脆弱性	CWE-200 CWE-noinfo	CVE-2024-8483	2024-10-3 10:43	2024-09-25	Show	GitHub Exploit DB Packet Storm

124	7.2	重要 Network	prisna	google website translator	prisna の WordPress 用 google website translator における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2024-8514	2024-10-3 10:43	2024-09-25	Show	GitHub Exploit DB Packet Storm

125	7.5	重要 Network	clibomanager	clibo manager	clibomanager の clibo manager における脆弱性	CWE-799 CWE-Other	CVE-2024-9199	2024-10-3 10:43	2024-09-26	Show	GitHub Exploit DB Packet Storm

126	8.8	重要 Network	Rockwell Automation	thinmanager	Rockwell Automation の thinmanager における別領域リソースに対する外部からの制御可能な参照に関する脆弱性	CWE-610 CWE-610	CVE-2024-45826	2024-10-3 10:43	2024-09-12	Show	GitHub Exploit DB Packet Storm

127	8.8	重要 Network	Supsystic	slider Social Share Buttons by Supsystic	Supsystic の slider および Social Share Buttons by Supsystic における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-47330	2024-10-3 10:42	2024-09-26	Show	GitHub Exploit DB Packet Storm

128	5.3	警告 Network	myCred	myCred	WordPress 用 myCred における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-8658	2024-10-3 10:20	2024-09-25	Show	GitHub Exploit DB Packet Storm

129	5.3	警告 Network	revolut	revolut gateway for woocommerce	revolut の WordPress 用 revolut gateway for woocommerce における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-8678	2024-10-3 10:20	2024-09-25	Show	GitHub Exploit DB Packet Storm

130	6.1	警告 Network	outtheboxthemes	beam me up scotty	outtheboxthemes の WordPress 用 beam me up scotty におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-8741	2024-10-3 10:19	2024-09-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 6, 2024, 8:10 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	-	-	-	A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It has been classified as critical. Affected is the function formLogDnsquery of the file /goform/formLogDnsquery. The manipulation of the ar… New	CWE-120 Classic Buffer Overflow	CVE-2024-9550	2024-10-6 18:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

2	-	-	-	Diebold Nixdorf – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor New	CWE-200 Information Exposure	CVE-2024-45245	2024-10-6 17:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

3	-	-	-	A vulnerability was found in D-Link DIR-605L 2.13B01 BETA and classified as critical. This issue affects the function formEasySetupWizard/formEasySetupWizard2 of the file /goform/formEasySetupWizard.… New	-	CVE-2024-9549	2024-10-6 13:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

4	-	-	-	A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this issue is some unknown functionality of the file /MultiServerBackService?path=1. The manipulation of the a… New	CWE-89 SQL Injection	CVE-2024-9536	2024-10-6 01:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

5	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThemeKraft BuddyForms allows Stored XSS.This issue affects BuddyForms: from n/a through 2.… New	CWE-79 Cross-site Scripting	CVE-2024-47377	2024-10-6 01:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

6	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Tribulant Slideshow Gallery allows Stored XSS.This issue affects Slideshow Gallery: from n… New	CWE-79 Cross-site Scripting	CVE-2024-47376	2024-10-6 01:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

7	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ashraf XLTab – Accordions and Tabs for Elementor Page Builder allows Stored XSS.This issue… New	CWE-79 Cross-site Scripting	CVE-2024-47375	2024-10-6 01:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

8	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Stored XSS.This issue affects LiteSpeed Cach… New	CWE-79 Cross-site Scripting	CVE-2024-47374	2024-10-6 01:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

9	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Stored XSS.This issue affects LiteSpeed Cach… New	CWE-79 Cross-site Scripting	CVE-2024-47373	2024-10-6 01:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

10	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThemeNcode LLC TNC PDF viewer allows Stored XSS.This issue affects TNC PDF viewer: from n/… New	CWE-79 Cross-site Scripting	CVE-2024-47372	2024-10-6 01:15	2024-10-6	Show	GitHub Exploit DB Packet Storm