Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189011 5.5 警告 Moodle - Moodle の mod/data/preset.php における任意のデータベースアクティビティのプリセットが上書きされる脆弱性 CWE-DesignError
CVE-2012-2366 2012-07-24 16:16 2012-07-21 Show GitHub Exploit DB Packet Storm
189012 3.5 注意 Moodle - Moodle の lib/filelib.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2364 2012-07-24 16:14 2012-07-21 Show GitHub Exploit DB Packet Storm
189013 6.5 警告 Moodle - Moodle のカレンダーの実装における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2363 2012-07-24 16:10 2012-07-21 Show GitHub Exploit DB Packet Storm
189014 3.5 注意 Moodle - Moodle の Web サービスの実装におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2361 2012-07-24 16:07 2012-07-21 Show GitHub Exploit DB Packet Storm
189015 3.5 注意 Moodle - Moodle の Wiki サブシステムにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2360 2012-07-24 16:05 2012-07-21 Show GitHub Exploit DB Packet Storm
189016 6.5 警告 Moodle - Moodle の admin/roles/override.php における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2359 2012-07-24 16:03 2012-07-21 Show GitHub Exploit DB Packet Storm
189017 5.5 警告 Moodle - Moodle におけるアクティビティの読み取り専用の状態を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2358 2012-07-24 16:00 2012-07-21 Show GitHub Exploit DB Packet Storm
189018 5 警告 Moodle - Moodle の auth/cas/cas_form.html 内 のマルチ認証機能における資格情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2357 2012-07-24 15:54 2012-07-21 Show GitHub Exploit DB Packet Storm
189019 4 警告 Moodle - Moodle の question-bank 機能における機能制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2356 2012-07-24 15:52 2012-07-21 Show GitHub Exploit DB Packet Storm
189020 4 警告 Moodle - Moodle における question:use* 機能の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2355 2012-07-24 15:51 2012-07-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
551 - - - Unrestricted Upload of File with Dangerous Type vulnerability in cmsMinds Boat Rental Plugin for WordPress allows Upload a Web Shell to a Web Server.This issue affects Boat Rental Plugin for WordPres… New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-52376 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
552 - - - Unrestricted Upload of File with Dangerous Type vulnerability in Arttia Creative Datasets Manager by Arttia Creative.This issue affects Datasets Manager by Arttia Creative: from n/a through 1.5. New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-52375 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
553 - - - Unrestricted Upload of File with Dangerous Type vulnerability in DoThatTask Do That Task allows Upload a Web Shell to a Web Server.This issue affects Do That Task: from n/a through 1.5.5. New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-52374 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
554 - - - Unrestricted Upload of File with Dangerous Type vulnerability in Team Devexhub Devexhub Gallery allows Upload a Web Shell to a Web Server.This issue affects Devexhub Gallery: from n/a through 2.0.1. New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-52373 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
555 - - - Unrestricted Upload of File with Dangerous Type vulnerability in WebTechGlobal Easy CSV Importer BETA allows Upload a Web Shell to a Web Server.This issue affects Easy CSV Importer BETA: from n/a thr… New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-52372 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
556 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in DonnellC Global Gateway e4 | Payeezy Gateway.This issue affects Global Gateway e4 | Payeezy Gateway: fr… New CWE-22
Path Traversal 		CVE-2024-52371 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
557 - - - A SQL Injection was found in /admin/admin_user.php in kashipara E-learning Management System Project 1.0 via the username and password parameters. New - CVE-2024-50831 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
558 - - - A SQL Injection vulnerability was found in /admin/calendar_of_events.php in kashipara E-learning Management System Project 1.0 via the date_start, date_end, and title parameters. New - CVE-2024-50830 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
559 - - - A SQL Injection vulnerability was found in /admin/edit_subject.php in kashipara E-learning Management System Project 1.0 via the unit parameter. New - CVE-2024-50829 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm
560 - - - A SQL Injection vulnerability was found in /admin/edit_department.php in kashipara E-learning Management System Project 1.0 via the d parameter. New - CVE-2024-50828 2024-11-15 22:58 2024-11-15 Show GitHub Exploit DB Packet Storm