Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":July 5, 2024, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192981	5	警告	オラクル	-	Oracle Application Server の Access Manager Identity Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0066	2010-02-15 19:31	2010-01-12	Show	GitHub Exploit DB Packet Storm

192982	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1385	2010-02-15 11:03	2009-06-4	Show	GitHub Exploit DB Packet Storm

192983	4.6	警告	サイバートラスト株式会社 Todd C. Miller	-	sudo の Perl スクリプト実行時における権限昇格の脆弱性	-	CVE-2005-4158	2010-02-15 11:03	2005-11-8	Show	GitHub Exploit DB Packet Storm

192984	1	注意	オラクル	-	Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3412	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

192985	3.2	注意	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3413	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

192986	3.6	注意	オラクル	-	Oracle Database の RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3410	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

192987	4	警告	オラクル	-	Oracle Database の Logical Standby コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1996	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

192988	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

192989	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

192990	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:July 5, 2024, 10:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2041	7.5	HIGH Network	trihedral	vtscada	The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via unspecified v… Update	CWE-125 Out-of-bounds Read	CVE-2016-4523	2024-07-3 01:57	2016-06-9	Show	GitHub Exploit DB Packet Storm

2042	7.8	HIGH Local	microsoft	windows_server_2012 windows_rt windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2003	win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and … Update	NVD-CWE-noinfo	CVE-2014-4113	2024-07-3 01:57	2014-10-15	Show	GitHub Exploit DB Packet Storm

2043	9.8	CRITICAL Network	indusoft	web_studio	Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1 before SP2 Patch 4 allows remote attackers to read administrative passwords in APP files, and consequently execute arbitrar… Update	CWE-22 Path Traversal	CVE-2014-0780	2024-07-3 01:56	2014-04-25	Show	GitHub Exploit DB Packet Storm

2044	7.5	HIGH Network	openssl filezilla-project siemens intellian mitel opensuse canonical fedoraproject redhat debian ricon broadcom splunk	openssl filezilla_server application_processing_engine_firmware cp_1543-1_firmware simatic_s7-1500_firmware simatic_s7-1500t_firmware elan-8.2 wincc_open_architecture v100_fir…	The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process … Update	CWE-125 Out-of-bounds Read	CVE-2014-0160	2024-07-3 01:52	2014-04-8	Show	GitHub Exploit DB Packet Storm

2045	8.8	HIGH Network	microsoft	internet_explorer	Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via vectors involving crafted JavaScript code, CMarkup, and the onpropertychange… Update	CWE-416 Use After Free	CVE-2014-0322	2024-07-3 01:50	2014-02-15	Show	GitHub Exploit DB Packet Storm

2046	-		-	-	SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. When SoftEtherVPN is deployed with L2TP enabled on a device, it introduces the possibility of the host being used for ampli… Update	-	CVE-2024-38520	2024-07-3 01:15	2024-06-27	Show	GitHub Exploit DB Packet Storm

2047	5.4	MEDIUM Network	wpdeveloper	embedpress	The EmbedPress – Embed PDF, YouTube, Google Docs, Vimeo, Wistia Videos, Audios, Maps & Any Documents in Gutenberg & Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…	CWE-79 Cross-site Scripting	CVE-2024-1565	2024-07-2 23:51	2024-06-13	Show	GitHub Exploit DB Packet Storm

2048	6.1	MEDIUM Network	plugin-planet	dashboard_widgets_suite	The Dashboard Widgets Suite plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 3.4.3 due to insufficient input sanitiza…	CWE-79 Cross-site Scripting	CVE-2024-0979	2024-07-2 23:51	2024-06-13	Show	GitHub Exploit DB Packet Storm

2049	5.4	MEDIUM Network	wpbakery_page_builder_clipboard_project	wpbakery_page_builder_clipboard	The WPBakery Visual Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link attribute within the vc_single_image shortcode in all versions up to, and including, 7.6 du…	CWE-79 Cross-site Scripting	CVE-2024-5265	2024-07-2 23:51	2024-06-13	Show	GitHub Exploit DB Packet Storm

2050	5.4	MEDIUM Network	elespare	elespare	The Elespare – Blog, Magazine and Newspaper Addons for Elementor with Templates, Widgets, Kits, and Header/Footer Builder. One Click Import: No Coding Required! plugin for WordPress is vulnerable to …	CWE-79 Cross-site Scripting	CVE-2024-4615	2024-07-2 23:51	2024-06-13	Show	GitHub Exploit DB Packet Storm