Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 7, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188841	7.5	危険	Accoria Networks	-	Accoria Web Server の authcfg.cgi におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2010-2271	2012-06-26 16:19	2010-06-15	Show	GitHub Exploit DB Packet Storm

188842	7.5	危険	Accoria Networks	-	Accoria Web Server におけるセッションをハイジャックされる脆弱性	CWE-310 暗号の問題	CVE-2010-2270	2012-06-26 16:19	2010-06-15	Show	GitHub Exploit DB Packet Storm

188843	5	警告	Accoria Networks	-	Accoria Web Server の loadstatic.cgi におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2269	2012-06-26 16:19	2010-06-15	Show	GitHub Exploit DB Packet Storm

188844	6.8	警告	Accoria Networks	-	Accoria Web Server の authcfg.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2268	2012-06-26 16:19	2010-06-15	Show	GitHub Exploit DB Packet Storm

188845	4.3	警告	Accoria Networks	-	Accoria Web Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2267	2012-06-26 16:19	2010-06-15	Show	GitHub Exploit DB Packet Storm

188846	4.3	警告	アップルマイクロソフト	-	Apple Safari の CSS 実装における訪問した Web ページに関する重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2264	2012-06-26 16:19	2010-06-7	Show	GitHub Exploit DB Packet Storm

188847	5	警告	galileo students	-	Galileo Students Team Weborf におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2262	2012-06-26 16:19	2010-06-3	Show	GitHub Exploit DB Packet Storm

188848	4.3	警告	gambitdesign	-	Gambit Design Bandwidth Meter におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2260	2012-06-26 16:19	2010-06-9	Show	GitHub Exploit DB Packet Storm

188849	4.3	警告	eschew	-	phpBannerExchange Arabic の signupconfirm.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2258	2012-06-26 16:19	2010-06-9	Show	GitHub Exploit DB Packet Storm

188850	6.8	警告	Apache Software Foundation	-	Apache CouchDB におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2234	2012-06-26 16:19	2010-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 7, 2024, 4:18 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
81	-		-	-	symfony/runtime is a module for the Symphony PHP framework which enables decoupling PHP applications from global state. When the `register_argv_argc` php directive is set to `on` , and users call any… New	CWE-74 Injection	CVE-2024-50340	2024-11-7 06:15	2024-11-7	Show	GitHub Exploit DB Packet Storm

82	-		-	-	A malicious website could have included an iframe with an malformed URI resulting in a non-exploitable browser crash. This vulnerability affects Firefox < 126. New	-	CVE-2024-10941	2024-11-7 06:15	2024-11-7	Show	GitHub Exploit DB Packet Storm

83	-		-	-	A vulnerability was found in IBPhoenix ibWebAdmin up to 1.0.2 and classified as problematic. This issue affects some unknown processing of the file /toggle_fold_panel.php of the component Tabelas Sec… New	CWE-79 CWE-74 Cross-site Scripting Injection	CVE-2024-10926	2024-11-7 06:15	2024-11-7	Show	GitHub Exploit DB Packet Storm

84	-		-	-	happy-dom is a JavaScript implementation of a web browser without its graphical user interface. Versions of happy-dom prior to 15.10.2 may execute code on the host via a script tag. This would execut… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2024-51757	2024-11-7 06:15	2024-11-7	Show	GitHub Exploit DB Packet Storm

85	6.1	MEDIUM Network	shibulijack	cj_change_howdy	Cross-Site Request Forgery (CSRF) vulnerability in Shibu Lijack a.K.A CyberJack CJ Change Howdy allows Stored XSS.This issue affects CJ Change Howdy: from n/a through 3.3.1. Update	CWE-352 Origin Validation Error	CVE-2024-49223	2024-11-7 05:55	2024-10-18	Show	GitHub Exploit DB Packet Storm

86	6.1	MEDIUM Network	julianweinert	cslider	Cross-Site Request Forgery (CSRF) vulnerability in Julian Weinert // cs&m cSlider allows Stored XSS.This issue affects cSlider: from n/a through 2.4.2. Update	CWE-352 Origin Validation Error	CVE-2024-49221	2024-11-7 05:54	2024-10-18	Show	GitHub Exploit DB Packet Storm

87	9.8	CRITICAL Network	madirisalmanaashish	adding_drop_down_roles_in_registration	Incorrect Privilege Assignment vulnerability in Madiri Salman Aashish Adding drop down roles in registration allows Privilege Escalation.This issue affects Adding drop down roles in registration: fro… Update	NVD-CWE-Other	CVE-2024-49217	2024-11-7 05:53	2024-10-18	Show	GitHub Exploit DB Packet Storm

88	8.8	HIGH Network	themexpo	rs-members	Incorrect Privilege Assignment vulnerability in themexpo RS-Members allows Privilege Escalation.This issue affects RS-Members: from n/a through 1.0.3. Update	NVD-CWE-Other	CVE-2024-49219	2024-11-7 05:45	2024-10-18	Show	GitHub Exploit DB Packet Storm

89	6.1	MEDIUM Network	cookie-scanner	cookie_scanner	Cross-Site Request Forgery (CSRF) vulnerability in Cookie Scanner – Nikel Schubert Cookie Scanner allows Stored XSS.This issue affects Cookie Scanner: from n/a through 1.1. Update	CWE-352 Origin Validation Error	CVE-2024-49220	2024-11-7 05:41	2024-10-18	Show	GitHub Exploit DB Packet Storm

90	6.1	MEDIUM Network	arifnezami	better_author_bio	Cross-Site Request Forgery (CSRF) vulnerability in Arif Nezami Better Author Bio allows Cross-Site Scripting (XSS).This issue affects Better Author Bio: from n/a through 2.7.10.11. Update	CWE-352 Origin Validation Error	CVE-2024-49229	2024-11-7 05:40	2024-10-18	Show	GitHub Exploit DB Packet Storm