Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Sept. 29, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192051 4 警告 オラクル - Oracle PeopleSoft Enterprise HCM における Human Resources の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0521 2012-05-9 18:18 2012-04-17 Show GitHub Exploit DB Packet Storm
192052 4 警告 オラクル - Oracle PeopleSoft Enterprise FCSM における Receivables の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0533 2012-05-9 18:16 2012-04-17 Show GitHub Exploit DB Packet Storm
192053 4 警告 オラクル - Oracle PeopleSoft Enterprise CRM における SEC の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0514 2012-05-9 18:14 2012-04-17 Show GitHub Exploit DB Packet Storm
192054 4.3 警告 オラクル - Oracle PeopleSoft Enterprise PeopleTools におけるポータルの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0560 2012-05-9 18:14 2012-04-17 Show GitHub Exploit DB Packet Storm
192055 5.5 警告 オラクル - Oracle PeopleSoft Enterprise PeopleTools における検索処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0538 2012-05-9 18:13 2012-04-17 Show GitHub Exploit DB Packet Storm
192056 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における eCompensation Manager Desktop の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0517 2012-05-9 18:08 2012-04-17 Show GitHub Exploit DB Packet Storm
192057 6.5 警告 オラクル - Oracle PeopleSoft Enterprise PeopleTools におけるクエリ処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0564 2012-05-9 18:06 2012-04-17 Show GitHub Exploit DB Packet Storm
192058 4 警告 オラクル - Oracle DB UM Connector for Oracle Identity Manager (Oracle Identity Manager Connector) における脆弱性 CWE-noinfo
情報不足 		CVE-2012-0515 2012-05-9 18:04 2012-04-17 Show GitHub Exploit DB Packet Storm
192059 4.3 警告 オラクル - Oracle JDeveloper における Java Business Objects の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0522 2012-05-9 17:57 2012-04-17 Show GitHub Exploit DB Packet Storm
192060 4.3 警告 オラクル - Oracle BI Publisher における Administration の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0543 2012-05-9 17:54 2012-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Sept. 29, 2024, 8:11 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
421 7.2 HIGH
Network 		- - The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter in all versions up to, and including, 3.16.1 due to insu… New CWE-89
SQL Injection 		CVE-2024-9130 2024-09-27 15:15 2024-09-27 Show GitHub Exploit DB Packet Storm
422 6.4 MEDIUM
Network 		- - The Absolute Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Name' field of a custom post criteria in all versions up to, and including, 1.1.3 due to insufficient i… New - CVE-2024-8965 2024-09-27 15:15 2024-09-27 Show GitHub Exploit DB Packet Storm
423 8.8 HIGH
Network 		- - The Product Enquiry for WooCommerce, WooCommerce product catalog plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.2.33.32 via deserialization of untr… New CWE-502
 Deserialization of Untrusted Data 		CVE-2024-8922 2024-09-27 15:15 2024-09-27 Show GitHub Exploit DB Packet Storm
424 - - - The AI ChatBot with ChatGPT and Content Generator by AYS WordPress plugin before 2.1.0 lacks sufficient access controls allowing an unauthenticated user to disconnect the AI ChatBot with ChatGPT and … New - CVE-2024-7714 2024-09-27 15:15 2024-09-27 Show GitHub Exploit DB Packet Storm
425 - - - The AI ChatBot with ChatGPT and Content Generator by AYS WordPress plugin before 2.1.0 discloses the Open AI API Key, allowing unauthenticated users to obtain it New - CVE-2024-7713 2024-09-27 15:15 2024-09-27 Show GitHub Exploit DB Packet Storm
426 - - - Sharp NEC Projectors (NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-… New - CVE-2024-7011 2024-09-27 12:15 2024-09-27 Show GitHub Exploit DB Packet Storm
427 7.8 HIGH
Local 		hitachi eh-view ** UNSUPPORTED WHEN ASSIGNED ** Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hitachi EH-VIEW (KeypadDesigner) allows local attackers to potentially disclos… Update CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2023-39984 2024-09-27 11:15 2023-08-23 Show GitHub Exploit DB Packet Storm
428 8.8 HIGH
Network 		tosei-corporation online_store_management_system A vulnerability was found in Tosei Online Store Management System ??????????? 4.02/4.03/4.04. It has been rated as critical. Affected by this issue is some unknown functionality of the file /cgi-bin/… Update CWE-77
Command Injection 		CVE-2024-7896 2024-09-27 10:16 2024-08-17 Show GitHub Exploit DB Packet Storm
429 7.2 HIGH
Network 		benjaminrojas wp_editor The WP Editor plugin for WordPress is vulnerable to deserialization of untrusted input via the 'current_theme_root' parameter in versions up to, and including 1.2.9. This makes it possible for authen… Update CWE-502
 Deserialization of Untrusted Data 		CVE-2022-2446 2024-09-27 10:09 2024-09-14 Show GitHub Exploit DB Packet Storm
430 5.4 MEDIUM
Network 		arnoldgoodway neighborly The Neighborly theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter within the theme's Button shortcode in all versions up to, and including, 1.4 due to insufficie… Update CWE-79
Cross-site Scripting 		CVE-2024-5869 2024-09-27 10:06 2024-09-14 Show GitHub Exploit DB Packet Storm