Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 2:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
188601 4.3 警告 IBM - IBM Lotus Domino におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-3302 2012-08-22 16:54 2012-08-15 Show GitHub Exploit DB Packet Storm
188602 4.3 警告 IBM - IBM Lotus Domino の HTTP サーバにおける CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認
CVE-2012-3301 2012-08-22 16:53 2012-08-15 Show GitHub Exploit DB Packet Storm
188603 4.3 警告 IBM - IBM WAS の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-3293 2012-08-22 16:52 2012-08-6 Show GitHub Exploit DB Packet Storm
188604 5 警告 IBM - IBM WAS の HTTP サーバで使用される IBM Global Security Kit におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題
CVE-2012-2190 2012-08-22 16:51 2012-08-6 Show GitHub Exploit DB Packet Storm
188605 4 警告 ヒューレット・パッカード - HP Virtual SAN Appliance 上で稼働する HP SAN/iQ におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2012-4362 2012-08-22 16:50 2012-08-20 Show GitHub Exploit DB Packet Storm
188606 7.7 危険 ヒューレット・パッカード - HP Virtual SAN Appliance 上で稼働する HP SAN/iQ における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2012-4361 2012-08-22 16:48 2012-08-20 Show GitHub Exploit DB Packet Storm
188607 7.8 危険 ヒューレット・パッカード - HP Serviceguard におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2012-3252 2012-08-22 16:47 2012-08-15 Show GitHub Exploit DB Packet Storm
188608 7.7 危険 ヒューレット・パッカード - HP Virtual SAN Appliance 上で稼働する HP SAN/iQ における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2012-2986 2012-08-22 16:46 2012-08-20 Show GitHub Exploit DB Packet Storm
188609 2.1 注意 Tecnick.com - TCExam の admin/code/tce_edit_answer.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4238 2012-08-22 16:44 2012-08-6 Show GitHub Exploit DB Packet Storm
188610 6.8 警告 Tecnick.com - TCExam における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-4237 2012-08-22 16:43 2012-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 12:12 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
391 9.1 CRITICAL
Network
- - A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access the web interface with administrative privileges. This vul… New CWE-305
 Authentication Bypass by Primary Weakness
CVE-2023-20154 2024-11-16 00:15 2024-11-16 Show GitHub Exploit DB Packet Storm
392 8.6 HIGH
Network
- - A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an unauthenticated, remote attacker to exhaust system resources, causing a denial of service (DoS) condition. … New CWE-400
 Uncontrolled Resource Consumption
CVE-2023-20125 2024-11-16 00:15 2024-11-16 Show GitHub Exploit DB Packet Storm
393 7.0 HIGH
Local
microsoft windows_server_2008
windows_server_2012
windows_8.1
windows_7
windows_rt_8.1
windows_10_1909
windows_10_21h1
windows_10_20h2
windows_11_21h2
windows_10_21h2
windows_10_1…
Windows User Profile Service Elevation of Privilege Vulnerability CWE-59
Link Following
CVE-2022-21919 2024-11-15 23:35 2022-01-12 Show GitHub Exploit DB Packet Storm
394 7.8 HIGH
Local
microsoft windows_10_1909
windows_10_21h1
windows_10_20h2
windows_11_21h2
windows_10_21h2
windows_server_2022
windows_server_20h2
windows_server_2019
windows_10_1809
Win32k Elevation of Privilege Vulnerability CWE-787
 Out-of-bounds Write
CVE-2022-21882 2024-11-15 23:35 2022-01-12 Show GitHub Exploit DB Packet Storm
395 8.8 HIGH
Network
microsoft windows_server_2008
windows_server_2012
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019
windows_server_2022
windows_10_1607
windows_10_1809
Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCh… CWE-347
 Improper Verification of Cryptographic Signature
CVE-2013-3900 2024-11-15 23:34 2013-12-11 Show GitHub Exploit DB Packet Storm
396 - - - A vulnerability was found in IBPhoenix ibWebAdmin up to 1.0.2 and classified as problematic. This issue affects some unknown processing of the file /database.php of the component Banco de Dados Tab. … CWE-79
CWE-94
Cross-site Scripting
Code Injection
CVE-2024-11240 2024-11-15 23:23 2024-11-15 Show GitHub Exploit DB Packet Storm
397 - - - A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /sys/common/import.do?method=deleteFile of the comp… CWE-22
Path Traversal
CVE-2024-11239 2024-11-15 23:23 2024-11-15 Show GitHub Exploit DB Packet Storm
398 - - - Jenkins OpenId Connect Authentication Plugin 4.418.vccc7061f5b_6d and earlier does not invalidate the previous session on login. - CVE-2024-52553 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
399 - - - Jenkins Authorize Project Plugin 1.7.2 and earlier evaluates a string containing the job name with JavaScript on the Authorization view, resulting in a stored cross-site scripting (XSS) vulnerability… - CVE-2024-52552 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
400 - - - Jenkins Pipeline: Declarative Plugin 2.2214.vb_b_34b_2ea_9b_83 and earlier does not check whether the main (Jenkinsfile) script used to restart a build from a specific stage is approved, allowing att… - CVE-2024-52551 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm