Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
189021 6.8 警告 Novell - Novell ZENworks Configuration Management の AdminStudio における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-2658 2012-07-30 13:51 2011-10-14 Show GitHub Exploit DB Packet Storm
189022 6.8 警告 Novell - Novell ZENworks Configuration Management の AdminStudio におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-2657 2012-07-30 13:49 2011-10-14 Show GitHub Exploit DB Packet Storm
189023 5 警告 FreeBSD
NetBSD
- FreeBSD および NetBSD 向けの libc の jemalloc におけるメモリ関連の脆弱性 CWE-189
数値処理の問題
CVE-2007-6754 2012-07-30 13:44 2012-07-25 Show GitHub Exploit DB Packet Storm
189024 5 警告 FreeBSD
NetBSD
- FreeBSD および NetBSD 向けの libc の jemalloc における整数オーバーフロー脆弱性 CWE-189
数値処理の問題
CVE-2006-7252 2012-07-30 13:41 2012-07-25 Show GitHub Exploit DB Packet Storm
189025 5 警告 gperftools - gperftools の TCMalloc における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2005-4895 2012-07-30 11:51 2012-07-25 Show GitHub Exploit DB Packet Storm
189026 6.9 警告 シーメンス - Siemens SIMATIC PCS7 で使用される SIMATIC STEP7 における権限を取得される脆弱性 CWE-Other
その他
CVE-2012-3015 2012-07-30 11:32 2012-07-23 Show GitHub Exploit DB Packet Storm
189027 6.9 警告 Invensys - Invensys Wonderware InTouch における権限を取得される脆弱性 CWE-Other
その他
CVE-2012-3005 2012-07-30 11:30 2012-07-26 Show GitHub Exploit DB Packet Storm
189028 7.5 危険 ASP-DEV - ASP-DEv XM Diary における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-4061 2012-07-30 11:25 2012-07-25 Show GitHub Exploit DB Packet Storm
189029 7.5 危険 ASP-DEV - ASP-DEv XM Forums における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-4060 2012-07-30 11:25 2012-07-25 Show GitHub Exploit DB Packet Storm
189030 6.8 警告 Creative Digital Resources - SocketMail Pro の home/secretqtn.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-4059 2012-07-30 11:24 2012-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
741 - - - Stored Cross-Site Scripting (XSS) vulnerability in Snipe-IT - v7.0.13 allows an attacker to upload a malicious XML file containing JavaScript code. This can lead to privilege escalation when the payl… - CVE-2024-51093 2024-11-15 07:15 2024-11-13 Show GitHub Exploit DB Packet Storm
742 9.8 CRITICAL
Network
vice webopac Webopac from Grand Vice info has a SQL Injection vulnerability, allowing unauthenticated remote attacks to inject arbitrary SQL commands to read, modify, and delete database contents. CWE-89
SQL Injection
CVE-2024-11016 2024-11-15 06:53 2024-11-11 Show GitHub Exploit DB Packet Storm
743 9.8 CRITICAL
Network
matrixcomsec cosec_vega_faxq_firmware This vulnerability exists in Matrix Door Controller Cosec Vega FAXQ due to improper implementation of session management at the web-based management interface. A remote attacker could exploit this vu… NVD-CWE-Other
CVE-2024-10381 2024-11-15 06:44 2024-10-25 Show GitHub Exploit DB Packet Storm
744 6.1 MEDIUM
Network
cisco adaptive_security_appliance_software Cross-site scripting (XSS) vulnerability in the WebVPN login page in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to inject arbitrary web script or HTML via an unspecified… CWE-79
Cross-site Scripting
CVE-2014-2120 2024-11-15 06:42 2014-03-19 Show GitHub Exploit DB Packet Storm
745 - - - ID numbers displayed in the lesson overview report required additional sanitizing to prevent a stored XSS risk. - CVE-2024-34000 2024-11-15 06:35 2024-06-1 Show GitHub Exploit DB Packet Storm
746 - - - FusionPBX before 5.2.0 does not validate a session. - CVE-2024-24539 2024-11-15 06:35 2024-03-18 Show GitHub Exploit DB Packet Storm
747 - - - In ProtocolPsKeepAliveStatusAdapter::getCode() of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with bas… - CVE-2024-27230 2024-11-15 06:35 2024-03-12 Show GitHub Exploit DB Packet Storm
748 4.3 MEDIUM
Network
microsoft edge Microsoft Edge for Android Spoofing Vulnerability NVD-CWE-noinfo
CVE-2022-23258 2024-11-15 06:15 2022-01-26 Show GitHub Exploit DB Packet Storm
749 6.1 MEDIUM
Local
microsoft edge_chromium Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability CWE-269
 Improper Privilege Management
CVE-2022-21970 2024-11-15 06:15 2022-01-12 Show GitHub Exploit DB Packet Storm
750 9.0 CRITICAL
Adjacent
microsoft exchange_server Microsoft Exchange Server Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2022-21969 2024-11-15 06:15 2022-01-12 Show GitHub Exploit DB Packet Storm