Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
188441 4.3 警告 The phpMyAdmin Project - phpMyAdmin の show_config_errors.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2012-1902 2012-09-4 17:18 2012-03-28 Show GitHub Exploit DB Packet Storm
188442 3.6 注意 オラクル - Oracle Virtualization の Oracle VM VirtualBox コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2012-0111 2012-09-4 10:01 2012-01-17 Show GitHub Exploit DB Packet Storm
188443 3.7 注意 オラクル - Oracle Virtualization の Oracle VM VirtualBox コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2012-0105 2012-09-4 09:59 2012-01-17 Show GitHub Exploit DB Packet Storm
188444 10 危険 ブルーコートシステムズ - Windows 上で稼働する Blue Coat Reporter におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-5127 2012-09-3 19:04 2011-09-6 Show GitHub Exploit DB Packet Storm
188445 5 警告 ブルーコートシステムズ - Blue Coat ProxySG における重要な認証情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-5126 2012-09-3 19:02 2011-06-16 Show GitHub Exploit DB Packet Storm
188446 4.3 警告 ブルーコートシステムズ - Blue Coat Director におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5125 2012-09-3 18:52 2011-09-8 Show GitHub Exploit DB Packet Storm
188447 10 危険 ブルーコートシステムズ - Blue Coat で使用される BCAAA コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-5124 2012-09-3 18:38 2011-04-4 Show GitHub Exploit DB Packet Storm
188448 4.3 警告 ブルーコートシステムズ - Blue Coat ProxySG の Java 管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-5192 2012-09-3 18:15 2010-09-29 Show GitHub Exploit DB Packet Storm
188449 9.3 危険 ブルーコートシステムズ - Blue Coat ProxyAV アプライアンスにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2010-5191 2012-09-3 18:13 2010-06-19 Show GitHub Exploit DB Packet Storm
188450 5 警告 ブルーコートシステムズ - Blue Coat ProxySG のアクティブコンテンツの変換機能における JavaScript の検出を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-5190 2012-09-3 18:12 2010-10-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261 - - - Budget Control Gateway acts as an entry point for incoming requests and routes them to the appropriate microservices for Budget Control. Budget Control Gateway does not properly validate auth tokens,… New CWE-285
Improper Authorization
CVE-2024-52528 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
262 - - - Nextcloud Server is a self hosted personal cloud system. Under certain conditions the password of a user was stored unencrypted in the session data. The session data is encrypted before being saved i… New CWE-312
 Cleartext Storage of Sensitive Information
CVE-2024-52525 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
263 - - - Nextcloud Server is a self hosted personal cloud system. MD5 hashes were used to check background jobs for their uniqueness. This increased the chances of a background job with arguments falsely bein… New CWE-328
 Use of Weak Hash
CVE-2024-52521 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
264 - - - Nextcloud Server is a self hosted personal cloud system. The OAuth2 client secrets were stored in a recoverable way, so that an attacker that got access to a backup of the database and the Nextcloud … New CWE-922
 Insecure Storage of Sensitive Information
CVE-2024-52519 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
265 - - - Nextcloud Server is a self hosted personal cloud system. After an attacker got access to the session of a user or administrator, the attacker would be able to create, change or delete external storag… New CWE-287
Improper Authentication
CVE-2024-52518 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
266 - - - Nextcloud Server is a self hosted personal cloud system. After storing "Global credentials" on the server, the API returns them and adds them into the frontend again, allowing to read them in plain t… New CWE-200
Information Exposure
CVE-2024-52517 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
267 - - - Nextcloud Server is a self hosted personal cloud system. When a server is configured to only allow sharing with users that are in ones own groups, after a user was removed from a group, previously sh… New CWE-269
 Improper Privilege Management
CVE-2024-52516 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
268 - - - Nextcloud Server is a self hosted personal cloud system. After an admin enables the default-disabled SVG preview provider, a malicious user could upload a manipulated SVG file referencing paths. If t… New CWE-706
 Use of Incorrectly-Resolved Name or Reference
CVE-2024-52515 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
269 - - - emlog pro <=2.3.18 is vulnerable to Cross Site Scripting (XSS), which allows attackers to write malicious JavaScript code in published articles. New - CVE-2024-50655 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
270 - - - lilishop <=4.2.4 is vulnerable to Incorrect Access Control, which can allow attackers to obtain coupons beyond the quantity limit by capturing and sending the data packets for coupon collection in hi… New - CVE-2024-50654 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm