Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 29, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192991 7.1 危険 Free Download Manager.ORG - FDM におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0999 2012-06-26 16:19 2010-05-17 Show GitHub Exploit DB Packet Storm
192992 10 危険 Free Download Manager.ORG - FDM におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0998 2012-06-26 16:19 2010-05-17 Show GitHub Exploit DB Packet Storm
192993 3.5 注意 e107.org - e107 の 107_plugins/content/content_manager.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0997 2012-06-26 16:19 2010-04-20 Show GitHub Exploit DB Packet Storm
192994 6 警告 e107.org - e107 における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-0996 2012-06-26 16:19 2010-04-20 Show GitHub Exploit DB Packet Storm
192995 6.8 警告 Enlightenment - imlib2 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0991 2012-06-26 16:19 2010-04-22 Show GitHub Exploit DB Packet Storm
192996 10 危険 creative - Creative Software AutoUpdate Engine ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0990 2012-06-26 16:19 2010-06-15 Show GitHub Exploit DB Packet Storm
192997 7.5 危険 chris simon
Joomla!		 - Joomla! の abbrev コンポーネントにおける任意のローカルファイルをインクルードおよび実行される脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0985 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
192998 5 警告 Acidcat - Acidcat CMS における資格情報を含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0984 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
192999 7.5 危険 Acidcat - Acidcat CMS におけるインストールプロセスを再起動される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0976 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
193000 7.5 危険 Joomla!
g4j.laoneo		 - Joomla! 用 GCalendar コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0972 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Dec. 29, 2024, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
51 - - - Dcat Admin v2.2.0-beta contains a cross-site scripting (XSS) vulnerability in /admin/articles/create. New - CVE-2024-54774 2024-12-28 07:15 2024-12-28 Show GitHub Exploit DB Packet Storm
52 - - - A Server-Side Request Forgery (SSRF) in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive information via a crafted script to the /FB/getFbVideoSource.php component. New - CVE-2024-50714 2024-12-28 07:15 2024-12-28 Show GitHub Exploit DB Packet Storm
53 - - - SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the client parameter in the /recuperaLog.php component. New - CVE-2024-50717 2024-12-28 06:15 2024-12-28 Show GitHub Exploit DB Packet Storm
54 - - - SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the id parameter in the /sendPushManually.php component. New - CVE-2024-50716 2024-12-28 06:15 2024-12-28 Show GitHub Exploit DB Packet Storm
55 - - - An issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive information via command injection through a vulnerable unsanitized parameter defined in the /youtubeInfo.ph… New - CVE-2024-50715 2024-12-28 06:15 2024-12-28 Show GitHub Exploit DB Packet Storm
56 - - - SmartAgent v1.1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/interface.php. New - CVE-2024-50713 2024-12-28 06:15 2024-12-28 Show GitHub Exploit DB Packet Storm
57 - - - HarfBuzz is a text shaping engine. Starting with 8.5.0 through 10.0.1, there is a heap-based buffer overflow in the hb_cairo_glyphs_from_buffer function. New CWE-122
Heap-based Buffer Overflow 		CVE-2024-56732 2024-12-28 05:15 2024-12-28 Show GitHub Exploit DB Packet Storm
58 - - - An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15. An Observable Response Discrepancy vulnerability in the sendPasswordReinit… New - CVE-2024-54454 2024-12-28 05:15 2024-12-28 Show GitHub Exploit DB Packet Storm
59 - - - An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15. A path traversal vulnerability in the DocServlet servlet allows remote att… New - CVE-2024-54453 2024-12-28 05:15 2024-12-28 Show GitHub Exploit DB Packet Storm
60 - - - An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18. A Directory Traversal and Local File Inclusion vulnerability in the logsSys.do page allows remote att… New - CVE-2024-54452 2024-12-28 05:15 2024-12-28 Show GitHub Exploit DB Packet Storm