Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 26, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193731 3.5 注意 Drupal - Drupal 用の Taxonomy manager モジュールの管理ページインターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2079 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
193732 4 警告 Angry Donuts
Drupal		 - Drupal のモジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2077 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
193733 3.5 注意 Drupal - Drupal 用の Views モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2076 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
193734 7.5 危険 Angry Donuts
Drupal		 - Drupal のモジュールの Nodequeue における詳細不明な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2075 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
193735 3.5 注意 Drupal - Drupal 用の Nodequeue モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2074 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
193736 6.8 警告 シスコシステムズ - Linksys WRT160N ワイアレスルータにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2073 2012-06-26 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
193737 5.4 警告 アップル - Apple Safari における任意の https サイトを偽装される脆弱性 CWE-287
不適切な認証 		CVE-2009-2072 2012-06-26 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
193738 6.8 警告 アップル - Apple Safari における https サイトのコンテキスト内の Web スクリプトを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2066 2012-06-26 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
193739 6.8 警告 アップル - Apple Safari における https サイトコンテキスト内の任意の Web スクリプトを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2062 2012-06-26 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
193740 6.8 警告 アップル - Apple Safari における任意の Web スクリプトを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2058 2012-06-26 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Dec. 26, 2024, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
31 - - - A vulnerability was found in CodeAstro House Rental Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ownersignup.php. T… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-12943 2024-12-26 18:15 2024-12-26 Show GitHub Exploit DB Packet Storm
32 - - - Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the music host file to be deleted or the file permission to be changed.(Vulnerabil… New - CVE-2023-7300 2024-12-26 18:15 2024-12-26 Show GitHub Exploit DB Packet Storm
33 - - - A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/admin_login.php. The manipulatio… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-12942 2024-12-26 17:15 2024-12-26 Show GitHub Exploit DB Packet Storm
34 - - - A vulnerability was found in CodeAstro Blood Donor Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /pages/deletedannounce.php. The manipulatio… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-12941 2024-12-26 17:15 2024-12-26 Show GitHub Exploit DB Packet Storm
35 - - - A vulnerability has been found in 1000 Projects Attendance Tracking Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/student_action.php. Th… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-12940 2024-12-26 16:15 2024-12-26 Show GitHub Exploit DB Packet Storm
36 - - - A vulnerability was found in code-projects Job Recruitment 1.0. It has been rated as critical. This issue affects the function add_edu of the file /_parse/_all_edits.php. The manipulation of the argu… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-12939 2024-12-26 16:15 2024-12-26 Show GitHub Exploit DB Packet Storm
37 - - - A vulnerability has been found in code-projects Simple Admin Panel 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file updateOrderStatus.php. The ma… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-12938 2024-12-26 15:15 2024-12-26 Show GitHub Exploit DB Packet Storm
38 - - - A vulnerability, which was classified as critical, was found in code-projects Simple Admin Panel 1.0. Affected is an unknown function of the file addVariationController.php. The manipulation of the a… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-12937 2024-12-26 15:15 2024-12-26 Show GitHub Exploit DB Packet Storm
39 - - - The WPForms WordPress plugin before 1.9.2.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks eve… New - CVE-2024-11223 2024-12-26 15:15 2024-12-26 Show GitHub Exploit DB Packet Storm
40 - - - The Broken Link Checker WordPress plugin before 2.4.2 does not validate a the link URLs before making a request to them, which could allow admin users to perform SSRF attack, for example on a multisi… New - CVE-2024-10903 2024-12-26 15:15 2024-12-26 Show GitHub Exploit DB Packet Storm