Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Sept. 29, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192191 6.4 警告 IBM - IBM Tivoli Directory Server の TLS のデフォルト設定における非暗号化通信を誘発される脆弱性 CWE-310
暗号の問題 		CVE-2012-0726 2012-04-24 16:15 2012-04-16 Show GitHub Exploit DB Packet Storm
192192 9.3 危険 IBM - IBM Rational ClearQuest の Ole API におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0708 2012-04-24 16:12 2012-04-22 Show GitHub Exploit DB Packet Storm
192193 4.4 警告 Debian - Debian GNU/Linux 上で稼働する apache2 におけるクロスサイトスクリプティング (XSS) 攻撃を誘発される脆弱性 CWE-DesignError
CVE-2012-0216 2012-04-24 16:05 2012-04-15 Show GitHub Exploit DB Packet Storm
192194 4.3 警告 TeamPass - TeamPass の sources/users.queries.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2234 2012-04-24 15:59 2012-04-22 Show GitHub Exploit DB Packet Storm
192195 4.3 警告 WordPress.org - WordPress の wp-comments-post.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2404 2012-04-24 15:51 2012-04-21 Show GitHub Exploit DB Packet Storm
192196 4.3 警告 WordPress.org - WordPress の wp-includes/formatting.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2403 2012-04-24 15:49 2012-04-21 Show GitHub Exploit DB Packet Storm
192197 5.5 警告 WordPress.org - WordPress の wp-admin/plugins.php におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2402 2012-04-24 15:43 2012-04-21 Show GitHub Exploit DB Packet Storm
192198 5 警告 WordPress.org
Moxiecode Systems		 - WordPress および他の製品で使用される Plupload における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2401 2012-04-24 15:35 2012-04-21 Show GitHub Exploit DB Packet Storm
192199 10 危険 WordPress.org - WordPress の wp-includes/js/swfobject.js における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-2400 2012-04-24 15:27 2012-04-21 Show GitHub Exploit DB Packet Storm
192200 6.8 警告 ジャストシステム - 複数のジャストシステム製品における DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2012-1242 2012-04-24 12:00 2012-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Sept. 29, 2024, 8:11 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261 - - - Monica AI Assistant desktop application v2.3.0 is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor. A prompt injection allows an attacker to modify chatbot answer with an unlo… New - CVE-2024-45989 2024-09-28 00:35 2024-09-27 Show GitHub Exploit DB Packet Storm
262 - - - Incorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands via crafted web requests. New - CVE-2024-46627 2024-09-28 00:35 2024-09-27 Show GitHub Exploit DB Packet Storm
263 5.4 MEDIUM
Network 		mediaron custom_query_blocks Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MediaRon LLC Custom Query Blocks allows Stored XSS.This issue affects Custom Query Blocks:… Update CWE-79
Cross-site Scripting 		CVE-2024-44059 2024-09-28 00:33 2024-09-15 Show GitHub Exploit DB Packet Storm
264 6.1 MEDIUM
Network 		mohammadarif opor_ayam Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mohammad Arif Opor Ayam allows Reflected XSS.This issue affects Opor Ayam: from n/a throug… Update CWE-79
Cross-site Scripting 		CVE-2024-44053 2024-09-28 00:32 2024-09-15 Show GitHub Exploit DB Packet Storm
265 4.8 MEDIUM
Network 		acquia mautic With access to edit a Mautic form, the attacker can add Cross-Site Scripting stored in the html filed. This could be used to steal sensitive information from the user's current session. Update CWE-79
Cross-site Scripting 		CVE-2024-47058 2024-09-28 00:31 2024-09-19 Show GitHub Exploit DB Packet Storm
266 6.1 MEDIUM
Network 		acquia mautic Prior to this patch being applied, Mautic's tracking was vulnerable to Cross-Site Scripting through the Page URL variable. Update CWE-79
Cross-site Scripting 		CVE-2024-47050 2024-09-28 00:29 2024-09-19 Show GitHub Exploit DB Packet Storm
267 8.8 HIGH
Network 		purestorage purity\/\/fa
purity\/\/fb 		A condition exists in FlashArray and FlashBlade Purity whereby a malicious user could execute arbitrary commands remotely through a specifically crafted SNMP configuration. Update CWE-77
Command Injection 		CVE-2024-0005 2024-09-28 00:25 2024-09-24 Show GitHub Exploit DB Packet Storm
268 - - - NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the TM subsystem (crypto_tm.c). New - CVE-2024-44912 2024-09-28 00:15 2024-09-28 Show GitHub Exploit DB Packet Storm
269 - - - NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the TC subsystem (crypto_aos.c). New - CVE-2024-44911 2024-09-28 00:15 2024-09-28 Show GitHub Exploit DB Packet Storm
270 - - - NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the AOS subsystem (crypto_aos.c). New - CVE-2024-44910 2024-09-28 00:15 2024-09-28 Show GitHub Exploit DB Packet Storm