Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 14, 2024, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
188851 6.8 警告 WordPress.org - WordPress のカスタマイザにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-3384 2012-07-24 15:37 2012-06-27 Show GitHub Exploit DB Packet Storm
188852 2.6 注意 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-3383 2012-07-24 15:36 2012-06-27 Show GitHub Exploit DB Packet Storm
188853 2.6 注意 フェンリル株式会社 - Sleipnir Mobile for Android における WebView クラスに関する脆弱性 CWE-Other
その他
CVE-2012-2646 2012-07-24 12:02 2012-07-24 Show GitHub Exploit DB Packet Storm
188854 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品におけるアドレスバーを偽造される脆弱性 CWE-Other
その他
CVE-2012-0479 2012-07-23 17:58 2012-04-24 Show GitHub Exploit DB Packet Storm
188855 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の texImage2D の実装における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-0478 2012-07-23 17:57 2012-04-24 Show GitHub Exploit DB Packet Storm
188856 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-0477 2012-07-23 17:57 2012-04-24 Show GitHub Exploit DB Packet Storm
188857 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品の docshell の実装におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-0474 2012-07-23 17:56 2012-04-24 Show GitHub Exploit DB Packet Storm
188858 5 警告 Mozilla Foundation - 複数の Mozilla 製品の WebGLBuffer::FindMaxUshortElement 関数における重要な情報を取得される脆弱性 CWE-189
数値処理の問題
CVE-2012-0473 2012-07-23 17:56 2012-04-24 Show GitHub Exploit DB Packet Storm
188859 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-0471 2012-07-23 17:56 2012-04-24 Show GitHub Exploit DB Packet Storm
188860 10 危険 Mozilla Foundation - 複数の Mozilla 製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-0470 2012-07-23 17:55 2012-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 14, 2024, 5:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261 5.4 MEDIUM
Network
themepunch slider_revolution The Slider Revolution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.7.18 due to insufficient input sanitization and ou… Update CWE-79
Cross-site Scripting
CVE-2024-8107 2024-11-14 03:06 2024-10-1 Show GitHub Exploit DB Packet Storm
262 5.4 MEDIUM
Network
benjaminzekavica easy_svg_support The Easy SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG File uploads in all versions up to, and including, 3.7 due to insufficient input sanitization a… Update CWE-79
Cross-site Scripting
CVE-2024-10269 2024-11-14 02:59 2024-11-8 Show GitHub Exploit DB Packet Storm
263 7.1 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Check if more than chunk-size bytes are written A incorrectly formatted chunk may decompress into more than LZNT_CHUNK_… Update CWE-125
Out-of-bounds Read
CVE-2024-50247 2024-11-14 02:58 2024-11-9 Show GitHub Exploit DB Packet Storm
264 7.2 HIGH
Network
wavlink wn530h4_firmware
wn530hg4_firmware
wn572hg3_firmware
A vulnerability classified as critical has been found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. Affected is the function set_ipv6 of the file internet.cgi. The manipulation of the arg… Update CWE-77
Command Injection
CVE-2024-10429 2024-11-14 02:58 2024-10-28 Show GitHub Exploit DB Packet Storm
265 7.2 HIGH
Network
wavlink wn530h4_firmware
wn530hg4_firmware
wn572hg3_firmware
A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been rated as critical. This issue affects the function set_ipv6 of the file firewall.cgi. The manipulation … Update CWE-77
Command Injection
CVE-2024-10428 2024-11-14 02:57 2024-10-28 Show GitHub Exploit DB Packet Storm
266 4.3 MEDIUM
Network
jenkins jenkins Jenkins 2.478 and earlier, LTS 2.462.2 and earlier does not redact multi-line secret values in error messages generated for form submissions involving the `secretTextarea` form field. Update CWE-209
Information Exposure Through an Error Message
CVE-2024-47803 2024-11-14 02:45 2024-10-3 Show GitHub Exploit DB Packet Storm
267 5.4 MEDIUM
Network
mappresspro mappress The MapPress Maps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the width and height parameters in all versions up to, and including, 2.88.16 due to insufficient… Update CWE-79
Cross-site Scripting
CVE-2023-7225 2024-11-14 02:43 2024-01-30 Show GitHub Exploit DB Packet Storm
268 9.8 CRITICAL
Network
mappresspro mappress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Chris Richardson MapPress Maps for WordPress mappress-google-maps-for-wordpress allows SQL Inject… Update CWE-89
SQL Injection
CVE-2023-26015 2024-11-14 02:43 2023-11-3 Show GitHub Exploit DB Packet Storm
269 5.4 MEDIUM
Network
mappresspro mappress The MapPress Maps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'mappress' shortcode in versions up to, and including, 2.88.4 due to insufficient input sanitizat… Update - CVE-2023-4840 2024-11-14 02:43 2023-09-12 Show GitHub Exploit DB Packet Storm
270 7.8 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add rough attr alloc_size check Update NVD-CWE-noinfo
CVE-2024-50246 2024-11-14 02:38 2024-11-9 Show GitHub Exploit DB Packet Storm