Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 1, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191411 7.5 危険 CA Technologies - 複数の CA 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-5143 2012-06-26 15:37 2006-10-10 Show GitHub Exploit DB Packet Storm
191412 7.5 危険 CA Technologies - CA BrightStor ARCserve Backup クライアントおよびサーバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-5142 2012-06-26 15:37 2006-10-10 Show GitHub Exploit DB Packet Storm
191413 7.5 危険 Yegnold - A-Blog における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5135 2012-06-26 15:37 2006-10-3 Show GitHub Exploit DB Packet Storm
191414 7.5 危険 conpresso - Bartels Schoene ConPresso の index.php における SQL インジェクションの脆弱性 - CVE-2006-5128 2012-06-26 15:37 2006-10-3 Show GitHub Exploit DB Packet Storm
191415 6.8 警告 conpresso - Bartels Schoene ConPresso におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5127 2012-06-26 15:37 2006-10-3 Show GitHub Exploit DB Packet Storm
191416 5 警告 devellion - Devellion CubeCart における重要な情報を取得される脆弱性 - CVE-2006-5109 2012-06-26 15:37 2006-10-3 Show GitHub Exploit DB Packet Storm
191417 6.8 警告 devellion - Devellion CubeCart におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5108 2012-06-26 15:37 2006-10-3 Show GitHub Exploit DB Packet Storm
191418 10 危険 CA Technologies - 複数の CA 製品で使用される RPC インターフェースにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-5172 2012-06-26 15:37 2007-01-11 Show GitHub Exploit DB Packet Storm
191419 7.5 危険 devellion - Devellion CubeCart における SQL インジェクションの脆弱性 - CVE-2006-5107 2012-06-26 15:37 2006-10-3 Show GitHub Exploit DB Packet Storm
191420 5.1 警告 FacileForms - Mambo および Joomla! 用の FacileForms におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5106 2012-06-26 15:37 2006-10-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 2, 2024, 5:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
781 6.1 MEDIUM
Network 		slicewp affiliate_program_suite The WordPress Affiliates Plugin — SliceWP Affiliates plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate escaping on the URL in… CWE-79
Cross-site Scripting 		CVE-2024-8714 2024-09-27 05:06 2024-09-14 Show GitHub Exploit DB Packet Storm
782 6.1 MEDIUM
Network 		leira roles_\&_capabilities The Roles & Capabilities plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and includ… CWE-79
Cross-site Scripting 		CVE-2024-8732 2024-09-27 05:01 2024-09-14 Show GitHub Exploit DB Packet Storm
783 6.1 MEDIUM
Network 		cvstech exit_notifier The Exit Notifier plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.… CWE-79
Cross-site Scripting 		CVE-2024-8730 2024-09-27 04:58 2024-09-14 Show GitHub Exploit DB Packet Storm
784 6.1 MEDIUM
Network 		leira cron_jobs The Cron Jobs plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.2.9.… CWE-79
Cross-site Scripting 		CVE-2024-8731 2024-09-27 04:43 2024-09-14 Show GitHub Exploit DB Packet Storm
785 9.8 CRITICAL
Network 		dedecms dedecms DedeCMS 5.7.102 has a File Upload vulnerability via uploads/dede/module_make.php. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2023-40784 2024-09-27 04:35 2023-09-13 Show GitHub Exploit DB Packet Storm
786 7.8 HIGH
Local 		raidenftpd raidenftpd Buffer Overflow vulnerability in RaidenFTPD 2.4.4005 allows a local attacker to execute arbitrary code via the Server name field of the Step by step setup wizard. CWE-120
Classic Buffer Overflow 		CVE-2023-39063 2024-09-27 04:35 2023-09-12 Show GitHub Exploit DB Packet Storm
787 8.0 HIGH
Adjacent 		tp-link archer_c3150_firmware Archer C3150 firmware versions prior to 'Archer C3150(JP)_V2_230511' allows a network-adjacent authenticated attacker to execute arbitrary OS commands. CWE-78
OS Command  		CVE-2023-38588 2024-09-27 04:35 2023-09-6 Show GitHub Exploit DB Packet Storm
788 6.1 MEDIUM
Network 		lucasstad lucas_string_replace The Lucas String Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and includ… CWE-79
Cross-site Scripting 		CVE-2024-8734 2024-09-27 04:30 2024-09-14 Show GitHub Exploit DB Packet Storm
789 5.4 MEDIUM
Network 		khromov email_obfuscate_shortcode The Email Obfuscate Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'email-obfuscate' shortcode in all versions up to, and including, 2.0 due to insuffici… CWE-79
Cross-site Scripting 		CVE-2024-8747 2024-09-27 04:23 2024-09-14 Show GitHub Exploit DB Packet Storm
790 6.1 MEDIUM
Network 		kubiq pdf_thumbnail_generator The PDF Thumbnail Generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and inc… CWE-79
Cross-site Scripting 		CVE-2024-8737 2024-09-27 04:18 2024-09-14 Show GitHub Exploit DB Packet Storm