Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 15, 2024, 6:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
188751 1.9 注意 iain - gypsy における制限されているファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-0523 2012-08-15 14:13 2011-01-24 Show GitHub Exploit DB Packet Storm
188752 2.1 注意 レッドハット - JBoss AS および EAP における資格情報を読まれる脆弱性 CWE-255
証明書・パスワード管理
CVE-2009-5066 2012-08-15 14:02 2010-01-12 Show GitHub Exploit DB Packet Storm
188753 5 警告 MyBB Group - MyBB における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2012-2327 2012-08-15 13:45 2012-04-1 Show GitHub Exploit DB Packet Storm
188754 4.3 警告 MyBB Group - MyBB の管理者用コントロールパネルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2326 2012-08-15 13:44 2012-04-1 Show GitHub Exploit DB Packet Storm
188755 7.5 危険 MyBB Group - MyBB の管理者用コントロールパネルにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-2325 2012-08-15 13:27 2012-04-1 Show GitHub Exploit DB Packet Storm
188756 7.5 危険 MyBB Group - MyBB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-2324 2012-08-15 13:25 2012-04-1 Show GitHub Exploit DB Packet Storm
188757 3.5 注意 Ushahidi - Ushahidi Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-3476 2012-08-14 16:57 2012-08-12 Show GitHub Exploit DB Packet Storm
188758 7.5 危険 Ushahidi - Ushahidi Platform のインストーラにおける管理者権限を取得される脆弱性 CWE-DesignError
CVE-2012-3475 2012-08-14 16:56 2012-08-12 Show GitHub Exploit DB Packet Storm
188759 5 警告 Ushahidi - Ushahidi Platform におけるコメント投稿者についての重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2012-3474 2012-08-14 16:55 2012-08-12 Show GitHub Exploit DB Packet Storm
188760 6.4 警告 Ushahidi - Ushahidi Platform のコメントに関する API におけるレポートを生成される脆弱性 CWE-287
不適切な認証
CVE-2012-3473 2012-08-14 16:54 2012-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 15, 2024, 4:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191 6.1 MEDIUM
Network
wpplugin contact_form_7_redirect_\&_thank_you_page The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 1.0.6 due to insufficie… Update CWE-79
Cross-site Scripting
CVE-2024-10685 2024-11-15 04:40 2024-11-12 Show GitHub Exploit DB Packet Storm
192 7.5 HIGH
Network
onedev_project onedev OneDev is a Git server with CI/CD, kanban, and packages. A vulnerability in versions prior to 11.0.9 allows unauthenticated users to read arbitrary files accessible by the OneDev server process. This… Update CWE-22
Path Traversal
CVE-2024-45309 2024-11-15 04:39 2024-10-22 Show GitHub Exploit DB Packet Storm
193 8.1 HIGH
Network
ampache ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating catalog. … Update CWE-352
 Origin Validation Error
CVE-2024-51487 2024-11-15 04:37 2024-11-12 Show GitHub Exploit DB Packet Storm
194 - - - In multiple functions in AppInfoBase.java, there is a possible way to manipulate app permission settings belonging to another user on the device due to a missing permission check. This could lead to … New - CVE-2024-43088 2024-11-15 04:35 2024-11-14 Show GitHub Exploit DB Packet Storm
195 - - - In getInstalledAccessibilityPreferences of AccessibilitySettings.java, there is a possible way to hide an enabled accessibility service in the accessibility service settings due to a logic error in t… New - CVE-2024-43087 2024-11-15 04:35 2024-11-14 Show GitHub Exploit DB Packet Storm
196 - - - In setTransactionState of SurfaceFlinger.cpp, there is a possible way to change protected display attributes due to a logic error in the code. This could lead to local escalation of privilege with no… New - CVE-2024-40660 2024-11-15 04:35 2024-11-14 Show GitHub Exploit DB Packet Storm
197 - - - In multiple locations, there is a possible permissions bypass due to a missing null check. This could lead to local escalation of privilege with no additional execution privileges needed. User intera… New - CVE-2024-34719 2024-11-15 04:35 2024-11-14 Show GitHub Exploit DB Packet Storm
198 9.8 CRITICAL
Network
mikexstudios xcomic A vulnerability classified as critical has been found in mikexstudios Xcomic up to 0.8.2. This affects an unknown part. The manipulation of the argument cmd leads to os command injection. It is possi… Update CWE-78
OS Command 
CVE-2005-10003 2024-11-15 04:35 2024-10-17 Show GitHub Exploit DB Packet Storm
199 - - - The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.1, macOS Monterey 12.7.1, macOS Ventura 13.6.1. An app may be able to access user-sensitive data. Update - CVE-2023-42840 2024-11-15 04:35 2024-02-21 Show GitHub Exploit DB Packet Storm
200 5.5 MEDIUM
Local
gpac gpac GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the BM_ParseIndexValueReplace function at /lib/libgpac.so. Update NVD-CWE-noinfo
CVE-2023-37767 2024-11-15 04:35 2023-07-12 Show GitHub Exploit DB Packet Storm