Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 20, 2024, 2:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188131	4.3	警告	Burnsy	-	e107 用 jbShop プラグインの jbshop.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5186	2012-09-21 15:32	2012-09-20	Show	GitHub Exploit DB Packet Storm

188132	4.3	警告	realmatrix	-	Online Subtitles Workshop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5185	2012-09-21 15:31	2012-09-20	Show	GitHub Exploit DB Packet Storm

188133	4.3	警告	ヒューレット・パッカード	-	HP Network Node Manager i におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5184	2012-09-21 15:30	2012-09-20	Show	GitHub Exploit DB Packet Storm

188134	7.5	危険	Bioinformatics	-	OrderSys における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5183	2012-09-21 15:29	2012-09-20	Show	GitHub Exploit DB Packet Storm

188135	4.3	警告	ClickDesk	-	WordPress 用 ClickDesk Live Support - Live Chat におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5181	2012-09-21 15:29	2012-09-20	Show	GitHub Exploit DB Packet Storm

188136	4.3	警告	ZooEffect	-	WordPress 用 ZooEffect プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5180	2012-09-21 15:29	2012-09-20	Show	GitHub Exploit DB Packet Storm

188137	4.3	警告	Skysa	-	WordPress 用 Skysa App Bar Integration プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5179	2012-09-21 15:28	2012-09-20	Show	GitHub Exploit DB Packet Storm

188138	4.3	警告	Infoblox	-	Infoblox NetMRI の netmri/config/userAdmin/login.tdf におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5178	2012-09-21 15:28	2011-10-18	Show	GitHub Exploit DB Packet Storm

188139	4.3	警告	eSyndiCat	-	eSyndiCat Pro の admin/controller.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5177	2012-09-21 15:27	2012-09-20	Show	GitHub Exploit DB Packet Storm

188140	5	警告	WizOne Solutions	-	Drupal 用 Fill PDF モジュールにおける任意の PDF ファイルを書かれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5007	2012-09-21 15:01	2012-01-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 20, 2024, 12:18 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
51	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Roberto Alicata ra_qrcode allows Stored XSS.This issue affects ra_qrcode: from n/a through… New	CWE-79 Cross-site Scripting	CVE-2024-52345	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

52	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Muhammad Junaid Provide Forex Signals allows Stored XSS.This issue affects Provide Forex S… New	CWE-79 Cross-site Scripting	CVE-2024-52344	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

53	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Offshorent Softwares Pvt. Ltd. \| Jinesh.P.V OS Pricing Tables allows Stored XSS.This issue… New	-	CVE-2024-52343	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

54	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Offshorent Solutions Pvt Ltd. \| Jinesh.P.V OS BXSlider allows Stored XSS.This issue affect… New	CWE-79 Cross-site Scripting	CVE-2024-52342	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

55	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Offshorent Solutions Pvt Ltd. \| Jinesh.P.V OS Our Team allows Stored XSS.This issue affect… New	CWE-79 Cross-site Scripting	CVE-2024-52341	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

56	5.3	MEDIUM Network	-	-	The Google for WooCommerce plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 2.8.6. This is due to publicly accessible print_php_information.php file.… New	CWE-862 Missing Authorization	CVE-2024-10486	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

57	-		-	-	The WesHacks GitHub repository provides the official Hackathon competition website source code for the Muweilah Wesgreen Hackathon. The page `schedule.html` before 17 November 2024 or commit 93dfb83 … New	CWE-494 Download of Code Without Integrity Check	CVE-2024-52583	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

58	-		-	-	MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write vulnerability accessible via the update_files method of the Subm… New	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-51499	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

59	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. The `XmlScanner` class has a scan method which should prevent XXE attacks. However, in a bypass of the previously reported `… New	CWE-611 XXE	CVE-2024-48917	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm

60	-		-	-	PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. The XmlScanner class has a scan method which should prevent XXE attacks. However, prior to versions 1.9.4, 2.1.3, 2.3.2, and… New	CWE-611 XXE	CVE-2024-47873	2024-11-20 06:57	2024-11-19	Show	GitHub Exploit DB Packet Storm