Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 29, 2024, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192661 7.5 危険 ScriptsFeed.com - ScriptsFeed Scripts Directory の info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2905 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
192662 9.3 危険 DELL EMC (旧 EMC Corporation) - EMC Celerra NAS 機器におけるユーザのデータディレクトリ内の任意のファイルを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2860 2012-06-26 16:19 2010-08-5 Show GitHub Exploit DB Packet Storm
192663 5 警告 boesch-it - SimpNews の news.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2859 2012-06-26 16:19 2010-07-24 Show GitHub Exploit DB Packet Storm
192664 4.3 警告 boesch-it - SimpNews の news.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2858 2012-06-26 16:19 2010-07-24 Show GitHub Exploit DB Packet Storm
192665 6.8 警告 Daniel James Scott - Joomla! 用の Music Manager コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2857 2012-06-26 16:19 2010-07-24 Show GitHub Exploit DB Packet Storm
192666 5 警告 gonzalo maser
Joomla!		 - Joomla! 用の InterJoomla ArtForms コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2848 2012-06-26 16:19 2010-07-24 Show GitHub Exploit DB Packet Storm
192667 7.5 危険 gonzalo maser
Joomla!		 - Joomla! 用の InterJoomla ArtForms コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2847 2012-06-26 16:19 2010-07-24 Show GitHub Exploit DB Packet Storm
192668 4.3 警告 gonzalo maser
Joomla!		 - Joomla! 用の InterJoomla ArtForms コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2846 2012-06-26 16:19 2010-07-24 Show GitHub Exploit DB Packet Storm
192669 7.8 危険 シスコシステムズ - Cisco Unified Presence の PE サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2840 2012-06-26 16:19 2010-08-25 Show GitHub Exploit DB Packet Storm
192670 7.8 危険 シスコシステムズ - Cisco Unified Presence の SIPD におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2839 2012-06-26 16:19 2010-08-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Dec. 29, 2024, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
51 - - - Dcat Admin v2.2.0-beta contains a cross-site scripting (XSS) vulnerability in /admin/articles/create. New - CVE-2024-54774 2024-12-28 07:15 2024-12-28 Show GitHub Exploit DB Packet Storm
52 - - - A Server-Side Request Forgery (SSRF) in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive information via a crafted script to the /FB/getFbVideoSource.php component. New - CVE-2024-50714 2024-12-28 07:15 2024-12-28 Show GitHub Exploit DB Packet Storm
53 - - - SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the client parameter in the /recuperaLog.php component. New - CVE-2024-50717 2024-12-28 06:15 2024-12-28 Show GitHub Exploit DB Packet Storm
54 - - - SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the id parameter in the /sendPushManually.php component. New - CVE-2024-50716 2024-12-28 06:15 2024-12-28 Show GitHub Exploit DB Packet Storm
55 - - - An issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive information via command injection through a vulnerable unsanitized parameter defined in the /youtubeInfo.ph… New - CVE-2024-50715 2024-12-28 06:15 2024-12-28 Show GitHub Exploit DB Packet Storm
56 - - - SmartAgent v1.1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/interface.php. New - CVE-2024-50713 2024-12-28 06:15 2024-12-28 Show GitHub Exploit DB Packet Storm
57 - - - HarfBuzz is a text shaping engine. Starting with 8.5.0 through 10.0.1, there is a heap-based buffer overflow in the hb_cairo_glyphs_from_buffer function. New CWE-122
Heap-based Buffer Overflow 		CVE-2024-56732 2024-12-28 05:15 2024-12-28 Show GitHub Exploit DB Packet Storm
58 - - - An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15. An Observable Response Discrepancy vulnerability in the sendPasswordReinit… New - CVE-2024-54454 2024-12-28 05:15 2024-12-28 Show GitHub Exploit DB Packet Storm
59 - - - An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15. A path traversal vulnerability in the DocServlet servlet allows remote att… New - CVE-2024-54453 2024-12-28 05:15 2024-12-28 Show GitHub Exploit DB Packet Storm
60 - - - An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18. A Directory Traversal and Local File Inclusion vulnerability in the logsSys.do page allows remote att… New - CVE-2024-54452 2024-12-28 05:15 2024-12-28 Show GitHub Exploit DB Packet Storm