Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193571 5.1 警告 Fedora Project - SSSD の auth_send 関数における pam_authenticate の認証要求を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-2940 2012-06-26 16:19 2010-08-30 Show GitHub Exploit DB Packet Storm
193572 7.5 危険 av scripts - AV Scripts AV Arcade における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2933 2012-06-26 16:19 2010-08-5 Show GitHub Exploit DB Packet Storm
193573 9.3 危険 BarCodeWiz, Inc. - BarCodeWiz BarCode ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2932 2012-06-26 16:19 2010-08-5 Show GitHub Exploit DB Packet Storm
193574 7.5 危険 ali kenan - AKY Blog の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2922 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
193575 6.8 警告 foobla
Joomla!		 - Joomla! の foobla_suggestions コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2920 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
193576 4.3 警告 aj square - AJ Square AJ Article の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2917 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
193577 7.5 危険 aj square - AJ Square AJ HYIP MERIDIAN の news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2916 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
193578 7.5 危険 aj square - AJ Square AJ HYIP PRIME の welcome.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2915 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
193579 2.1 注意 アップル
citibank		 - Citibank Citi Mobile アプリケーションにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2913 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
193580 7.5 危険 alexred
Joomla!		 - Joomla! の oziogallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2910 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 12, 2025, 4:59 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Tooltip allows Cross-Site Scripting (XSS).This issue affects Tooltip: from 0.0.0 before 1.… New - CVE-2024-13292 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
212 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Cookiebot + GTM allows Cross-Site Scripting (XSS).This issue affects Cookiebot + GTM: from… New - CVE-2024-13289 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
213 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Views SVG Animation allows Cross-Site Scripting (XSS).This issue affects Views SVG Animati… New - CVE-2024-13287 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
214 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal SVG Embed allows Cross-Site Scripting (XSS).This issue affects SVG Embed: from 0.0.0 befor… New - CVE-2024-13286 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
215 - - - Vulnerability in Drupal wkhtmltopdf.This issue affects wkhtmltopdf: *.*. New - CVE-2024-13285 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
216 - - - Cross-Site Request Forgery (CSRF) vulnerability in Drupal Gutenberg allows Cross Site Request Forgery.This issue affects Gutenberg: from 0.0.0 before 2.13.0, from 3.0.0 before 3.0.5. New - CVE-2024-13284 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
217 - - - Incorrect Authorization vulnerability in Drupal Block permissions allows Forceful Browsing.This issue affects Block permissions: from 1.0.0 before 1.2.0. New - CVE-2024-13282 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
218 - - - Incorrect Authorization vulnerability in Drupal Monster Menus allows Forceful Browsing.This issue affects Monster Menus: from 0.0.0 before 9.3.2. New - CVE-2024-13281 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
219 - - - Insufficient Session Expiration vulnerability in Drupal Persistent Login allows Forceful Browsing.This issue affects Persistent Login: from 0.0.0 before 1.8.0, from 2.0.* before 2.2.2. New - CVE-2024-13280 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm
220 - - - Session Fixation vulnerability in Drupal Two-factor Authentication (TFA) allows Session Fixation.This issue affects Two-factor Authentication (TFA): from 0.0.0 before 1.8.0. New - CVE-2024-13279 2025-01-11 02:15 2025-01-10 Show GitHub Exploit DB Packet Storm