Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 4, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190261	7.5	危険	エフ・セキュア	-	複数の F-Secure 製品の Real-time Scanning コンポーネントにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2966	2012-06-26 15:46	2007-05-31	Show	GitHub Exploit DB Packet Storm

190262	9.3	危険	ブルーコートシステムズ	-	Blue Coat K9 Web Protection with Filter の filter サービスにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2952	2012-06-26 15:46	2008-08-1	Show	GitHub Exploit DB Packet Storm

190263	7.2	危険	エフ・セキュア	-	複数の F-Secure 製品の Real-time Scanning コンポーネントにおける権限を取得される脆弱性	-	CVE-2007-2965	2012-06-26 15:46	2007-05-31	Show	GitHub Exploit DB Packet Storm

190264	5	警告	エフ・セキュア	-	F-Secure Policy Manager Server の fsmsh.dll ホストモジュールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2964	2012-06-26 15:46	2007-05-31	Show	GitHub Exploit DB Packet Storm

190265	7.5	危険	filecloset	-	FileCloset における PHP ファイルをアップロードされる脆弱性	-	CVE-2007-2961	2012-06-26 15:46	2007-05-31	Show	GitHub Exploit DB Packet Storm

190266	7.5	危険	cpcommerce	-	cpCommerce の manufacturer.php における SQL インジェクションの脆弱性	-	CVE-2007-2959	2012-06-26 15:46	2007-05-31	Show	GitHub Exploit DB Packet Storm

190267	7.2	危険	シマンテック numara centennial	-	Numara Asset Manager および他の製品で使用される Centennial Discovery における権限を取得される脆弱性	-	CVE-2007-2950	2012-06-26 15:46	2007-07-23	Show	GitHub Exploit DB Packet Storm

190268	7.5	危険	david branco	-	OpenBASE Alpha における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2947	2012-06-26 15:46	2007-05-30	Show	GitHub Exploit DB Packet Storm

190269	6.8	警告	flap	-	FlaP における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2940	2012-06-26 15:46	2007-05-30	Show	GitHub Exploit DB Packet Storm

190270	7.5	危険	frequency clock	-	Frequency Clock における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2936	2012-06-26 15:46	2007-05-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 4, 2024, 8:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
461	9.8	CRITICAL Network	artbees	jupiter_x_core	The Jupiter X Core plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.7.5. This is due to improper authentication via the Social Login widget. This ma… Update	CWE-306 Missing Authentication for Critical Function	CVE-2024-7781	2024-10-3 01:21	2024-09-26	Show	GitHub Exploit DB Packet Storm

462	5.5	MEDIUM Local	asg017	sqlite-vec	sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow via the npy_token_next function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. Update	CWE-787 Out-of-bounds Write	CVE-2024-46488	2024-10-3 01:21	2024-09-26	Show	GitHub Exploit DB Packet Storm

463	9.8	CRITICAL Network	jianbo	rest_api_to_miniprogram	The REST API TO MiniProgram plugin for WordPress is vulnerable to privilege escalation via account takeovr in all versions up to, and including, 4.7.1 via the updateUserInfo() due to missing validati… Update	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-8485	2024-10-3 01:19	2024-09-25	Show	GitHub Exploit DB Packet Storm

464	-		-	-	Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer. The printer displays a “JPEG Unsupported” message which may not clear, po… New	-	CVE-2024-9423	2024-10-3 01:15	2024-10-3	Show	GitHub Exploit DB Packet Storm

465	-		-	-	Incorrect Permission Assignment for Critical Resource vulnerability in OpenText™ Vertica could allow Privilege Abuse and result in unauthorized access or privileges to Vertica agent apikey. This issu… New	-	CVE-2024-6360	2024-10-3 01:15	2024-10-3	Show	GitHub Exploit DB Packet Storm

466	-		-	-	Jenkins Credentials Plugin 1380.va_435002fa_924 and earlier, except 1371.1373.v4eb_fa_b_7161e9, does not redact encrypted values of credentials using the `SecretBytes` type when accessing item `confi… New	-	CVE-2024-47805	2024-10-3 01:15	2024-10-3	Show	GitHub Exploit DB Packet Storm

467	-		-	-	If an attempt is made to create an item of a type prohibited by `ACL#hasCreatePermission2` or `TopLevelItemDescriptor#isApplicableIn(ItemGroup)` through the Jenkins CLI or the REST API and either of … New	-	CVE-2024-47804	2024-10-3 01:15	2024-10-3	Show	GitHub Exploit DB Packet Storm

468	-		-	-	Jenkins 2.478 and earlier, LTS 2.462.2 and earlier does not redact multi-line secret values in error messages generated for form submissions involving the `secretTextarea` form field. New	-	CVE-2024-47803	2024-10-3 01:15	2024-10-3	Show	GitHub Exploit DB Packet Storm

469	-		-	-	FlatPress v1.3 is vulnerable to Cross Site Scripting (XSS). An attacker can inject malicious JavaScript code into the "Add New Entry" section, which allows them to execute arbitrary code in the conte… New	-	CVE-2024-33209	2024-10-3 01:15	2024-10-3	Show	GitHub Exploit DB Packet Storm

470	-		-	-	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Update	-	CVE-2024-5480	2024-10-3 01:15	2024-06-7	Show	GitHub Exploit DB Packet Storm