Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 4 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
188721 4.3 警告 AITpro - WordPress 用 BulletProof Security プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4268 2012-08-15 20:20 2012-05-11 Show GitHub Exploit DB Packet Storm
188722 4.3 警告 pu-gh - Sockso の user/registe におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4267 2012-08-15 20:19 2012-08-13 Show GitHub Exploit DB Packet Storm
188723 4.3 警告 ITechScripts - Proman Xpress の client_details.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4266 2012-08-15 20:19 2012-08-13 Show GitHub Exploit DB Packet Storm
188724 7.5 危険 ITechScripts - Proman Xpress の category_edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-4265 2012-08-15 20:18 2012-08-13 Show GitHub Exploit DB Packet Storm
188725 4.3 警告 Bit51 - WordPress 用 Better WP Security プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4264 2012-08-15 20:16 2012-05-11 Show GitHub Exploit DB Packet Storm
188726 4.3 警告 Bit51 - WordPress 用 Better WP Security プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4263 2012-08-15 20:15 2012-05-11 Show GitHub Exploit DB Packet Storm
188727 4.3 警告 healthcare Consulting - myCare2x におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4262 2012-08-15 20:13 2012-08-13 Show GitHub Exploit DB Packet Storm
188728 7.5 危険 healthcare Consulting - myCare2x の modules/patient/mycare2x_pat_info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-4261 2012-08-15 20:12 2012-08-13 Show GitHub Exploit DB Packet Storm
188729 7.5 危険 healthcare Consulting - myCare2x における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-4260 2012-08-15 20:07 2012-08-13 Show GitHub Exploit DB Packet Storm
188730 4.3 警告 C4B Com For Business - C4B XPhone Unified Communications 2011 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4259 2012-08-15 20:06 2012-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
381 - - - The "Stammdaten" menu of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.291), in /Apps/TOPqw/qwStammdaten.aspx, is vulnerable to persistent Cross-Site Scripting (XSS). Update - CVE-2024-45878 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
382 - - - baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User Management function in /Apps/TOPqw/BenutzerManagement.aspx. This allows a low privileged user to access all… Update - CVE-2024-45877 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
383 - - - The login form of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.283.4) at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsern… Update - CVE-2024-45876 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
384 - - - The create user function in baltic-it TOPqw Webportal 1.35.287.1 (fixed in version1.35.291), in /Apps/TOPqw/BenutzerManagement.aspx/SaveNewUser, is vulnerable to SQL injection. The JSON object userna… Update - CVE-2024-45875 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
385 - - - Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access. Update - CVE-2024-41167 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
386 - - - Use after free in the UEFI firmware of some Intel(R) Server M20NTP BIOS may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-416
 Use After Free
CVE-2024-40885 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
387 - - - Improper input validation in firmware for some Intel(R) Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-20
 Improper Input Validation 
CVE-2024-39811 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
388 - - - Improper neutralization of special elements used in SQL command in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable escalation of pri… Update CWE-1336
 Improper Neutralization of Special Elements Used in a Template Engine
CVE-2024-39766 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
389 - - - Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-284
Improper Access Control
CVE-2024-39609 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
390 - - - Improper neutralization of special elements used in an SQL command ('SQL Injection') in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially ena… Update CWE-89
SQL Injection
CVE-2024-39368 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm