Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 30, 2024, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
189221 6.8 警告 fuzzylime - fuzzylime (cms) の code/display.php における任意のファイルを上書きされる脆弱性 CWE-22
パス・トラバーサル
CVE-2009-2177 2012-06-26 16:10 2009-06-23 Show GitHub Exploit DB Packet Storm
189222 7.5 危険 fuzzylime - fuzzylime (cms) における ディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-2176 2012-06-26 16:10 2009-06-23 Show GitHub Exploit DB Packet Storm
189223 3.5 注意 gameis - Carom3D の LAN ゲーム機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-2173 2012-06-26 16:10 2009-06-23 Show GitHub Exploit DB Packet Storm
189224 4.3 警告 dream - Radio and TV Player addon for vBulletin の forum/radioandtv.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-2172 2012-06-26 16:10 2009-06-23 Show GitHub Exploit DB Packet Storm
189225 9.3 危険 EdrawSoft - Edraw PDF Viewer コンポーネントの pdfviewer.ocx における任意のファイルを作成される脆弱性 CWE-94
コード・インジェクション
CVE-2009-2169 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
189226 7.5 危険 egyplus - EgyPlus 7ammel の cpanel/login.php における認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2009-2168 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
189227 6.8 警告 egyplus - EgyPlus 7ammel の cpanel/login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-2167 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
189228 5 警告 adaptweb - AdaptWeb の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-2151 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
189229 6.8 警告 campusvirtualcomputrade - Campus Virtual-LMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2009-2150 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
189230 4.3 警告 campusvirtualcomputrade - Campus Virtual-LMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-2149 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 30, 2024, 8:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
91 - - - In da, there is a possible information disclosure due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not ne… Update - CVE-2024-20030 2024-10-30 06:35 2024-03-4 Show GitHub Exploit DB Packet Storm
92 - - - Cross Site Scripting (XSS) vulnerability in sourcecodester Simple Student Attendance System v1.0 allows attackers to execute arbitrary code via crafted GET request to web application URL. Update - CVE-2024-25551 2024-10-30 06:35 2024-03-3 Show GitHub Exploit DB Packet Storm
93 - - - OpenDMARC 1.4.2 contains a null pointer dereference vulnerability in /OpenDMARC/libopendmarc/opendmarc_policy.c. Update - CVE-2024-25768 2024-10-30 06:35 2024-02-27 Show GitHub Exploit DB Packet Storm
94 5.5 MEDIUM
Local
google android In Usage Stats Service, there is a possible way to determine whether an app is installed, without query permissions due to side channel information disclosure. This could lead to local information di… Update CWE-203
 Information Exposure Through Discrepancy
CVE-2022-20264 2024-10-30 06:35 2023-10-31 Show GitHub Exploit DB Packet Storm
95 6.1 MEDIUM
Network
cedargate ez-net_portal The Cedar Gate EZ-NET portal 6.5.5 6.8.0 Internet portal has a call to display messages to users which does not properly sanitize data sent in through a URL parameter. This leads to a Reflected Cross… Update CWE-79
Cross-site Scripting
CVE-2022-23397 2024-10-30 06:35 2022-03-5 Show GitHub Exploit DB Packet Storm
96 - - - A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Heap Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to cau… New - CVE-2024-8587 2024-10-30 06:15 2024-10-30 Show GitHub Exploit DB Packet Storm
97 - - - Missing Authorization vulnerability in The SEO Guys at SEOPress SEOPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SEOPress: from n/a through 8.1.1. New CWE-862
 Missing Authorization
CVE-2024-50456 2024-10-30 06:15 2024-10-30 Show GitHub Exploit DB Packet Storm
98 - - - Missing Authorization vulnerability in The SEO Guys at SEOPress SEOPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SEOPress: from n/a through 8.1.1. New CWE-862
 Missing Authorization
CVE-2024-50455 2024-10-30 06:15 2024-10-30 Show GitHub Exploit DB Packet Storm
99 - - - Cross Site Scripting vulnerability in TeslaLogger Admin Panel before v.1.59.6 allows a remote attacker to execute arbitrary code via the New Journey field. New - CVE-2024-48461 2024-10-30 06:15 2024-10-30 Show GitHub Exploit DB Packet Storm
100 - - - A Deserialization of Untrusted Data vulnerability in chainer v7.8.1.post1 leads to execution of arbitrary code. New - CVE-2024-48206 2024-10-30 06:15 2024-10-30 Show GitHub Exploit DB Packet Storm