Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 27, 2025, 12:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
187971 5 警告 Novell - SLE の yast2-webclient におけるセッションクッキーを偽造される脆弱性 CWE-255
証明書・パスワード管理
CVE-2010-1507 2012-09-25 17:38 2010-08-2 Show GitHub Exploit DB Packet Storm
187972 7.5 危険 musicboxv2 - MusicBox の genre_artists.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-1499 2012-09-25 17:38 2010-04-23 Show GitHub Exploit DB Packet Storm
187973 7.5 危険 jolt - Joomla! 用の joltcard コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-1496 2012-09-25 17:38 2010-04-23 Show GitHub Exploit DB Packet Storm
187974 7.5 危険 matamko - Joomla! 用の Matamko コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1495 2012-09-25 17:38 2010-04-23 Show GitHub Exploit DB Packet Storm
187975 5 警告 PaloSanto Solutions - Elastix の help/frameRight.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1492 2012-09-25 17:38 2010-04-23 Show GitHub Exploit DB Packet Storm
187976 5 警告 mms.pipp - Joomla! 用の MMS Blog コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1491 2012-09-25 17:38 2010-04-23 Show GitHub Exploit DB Packet Storm
187977 10 危険 IBM - IBM Cognos 8 Business Intelligence における脆弱性 CWE-noinfo
情報不足
CVE-2010-1490 2012-09-25 17:38 2010-04-21 Show GitHub Exploit DB Packet Storm
187978 4.3 警告 マイクロソフト - Microsoft Internet Explorer 8 の XSS Filter におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1489 2012-09-25 17:38 2010-04-19 Show GitHub Exploit DB Packet Storm
187979 2.1 注意 Linux - Linux kernel の fs/proc/base.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-1488 2012-09-25 17:38 2010-04-1 Show GitHub Exploit DB Packet Storm
187980 2.1 注意 IBM - IBM Lotus Notes における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2010-1487 2012-09-25 17:38 2010-04-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
111 - - - An issue was discovered in Centreon centreon-web 24.10.x before 24.10.3, 24.04.x before 24.04.9, 23.10.x before 23.10.19, 23.04.x before 23.04.24. A user with high privileges is able to inject SQL in… New - CVE-2024-55573 2025-01-25 04:15 2025-01-24 Show GitHub Exploit DB Packet Storm
112 - - - An issue was discovered in Centreon Web 24.10.x before 24.10.3, 24.04.x before 24.04.9, 23.10.x before 23.10.19, 23.04.x before 23.04.24. A user with high privileges is able to achieve SQL injection … New - CVE-2024-53923 2025-01-25 04:15 2025-01-24 Show GitHub Exploit DB Packet Storm
113 - - - A NULL pointer dereference in the ngap_app::handle_receive routine of OpenAirInterface CN5G AMF (oai-cn5g-amf) up to v2.0.0 allows attackers to cause a Denial of Service (DoS) via a crafted NGAP mess… Update - CVE-2024-24442 2025-01-25 04:15 2025-01-22 Show GitHub Exploit DB Packet Storm
114 7.5 HIGH
Network
magmacore magma Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) are susceptible to an assertion-based crash when an oversized NAS packet is received. An attacker may leverage … Update CWE-617
 Reachable Assertion
CVE-2023-37029 2025-01-25 04:10 2025-01-22 Show GitHub Exploit DB Packet Storm
115 7.5 HIGH
Network
magmacore magma The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a buffer overflow in the decode_esm_message_container function at /nas/ie… Update CWE-787
 Out-of-bounds Write
CVE-2024-24423 2025-01-25 04:07 2025-01-22 Show GitHub Exploit DB Packet Storm
116 5.4 MEDIUM
Network
gambit stackable The Stackable – Page Builder Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' parameter of the Button block in all versions up to, and including, 3.1… Update CWE-79
Cross-site Scripting
CVE-2024-12117 2025-01-25 04:05 2025-01-22 Show GitHub Exploit DB Packet Storm
117 5.4 MEDIUM
Network
aipower aipower The AI Power: Complete AI Pack plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.8.96 via the wpaicg_troubleshoot_add_vector(). This makes it p… Update CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2024-13360 2025-01-25 03:58 2025-01-22 Show GitHub Exploit DB Packet Storm
118 8.8 HIGH
Network
aipower aipower The AI Power: Complete AI Pack plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wpaicg_save_image_media function in all versions up to, and including… Update CWE-862
 Missing Authorization
CVE-2024-13361 2025-01-25 03:55 2025-01-22 Show GitHub Exploit DB Packet Storm
119 7.5 HIGH
Network
open5gs open5gs A reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet. Update CWE-617
 Reachable Assertion
CVE-2024-24427 2025-01-25 03:47 2025-01-22 Show GitHub Exploit DB Packet Storm
120 7.5 HIGH
Network
open5gs open5gs A reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NGAP packet. Update CWE-617
 Reachable Assertion
CVE-2024-24428 2025-01-25 03:44 2025-01-22 Show GitHub Exploit DB Packet Storm