Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194031	9	危険	data domain	-	Data Domain OS のコマンドライン管理インターフェースにおける任意のコマンドを実行される脆弱性	-	CVE-2007-1836	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

194032	7.8	危険	シスコシステムズ	-	CUCM におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1834	2012-06-26 15:46	2007-03-28	Show	GitHub Exploit DB Packet Storm

194033	5	警告	シスコシステムズ	-	CUCM の SCCP 実装におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1833	2012-06-26 15:46	2007-03-28	Show	GitHub Exploit DB Packet Storm

194034	7.8	危険	シスコシステムズ	-	CUCM の IPSec Manager Service におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1826	2012-06-26 15:46	2007-03-28	Show	GitHub Exploit DB Packet Storm

194035	10	危険	Alcatel-Lucent	-	Alcatel-Lucent Lucent Technologies ボイスメールシステムにおけるメールボックスを再設定される脆弱性	-	CVE-2007-1822	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

194036	10	危険	dproxy	-	dproxy-nexgen の dns_decode_reverse_name 関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1866	2012-06-26 15:46	2004-06-24	Show	GitHub Exploit DB Packet Storm

194037	7.5	危険	forum picture and meta tags	-	phpBB の Forum ピクチャなどの MOD_forum_fields_parse.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1818	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

194038	7.5	危険	bt-sondage	-	BT-Sondage のutilitaires/gestion_sondage.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1812	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

194039	7.5	危険	chapi	-	tinyevent の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1811	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

194040	7.5	危険	grafxsoftware	-	CWB PRO における PHP リモートファイルインクルーションの脆弱性	-	CVE-2007-1809	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 19, 2024, 5:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
451	6.1	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'dir' parameter in all versions up to, and including, 2.1.7 due to insufficient input … Update	CWE-79 Cross-site Scripting	CVE-2024-10684	2024-11-19 00:03	2024-11-13	Show	GitHub Exploit DB Packet Storm

452	4.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the update_assistant() function in all versions up to,… Update	CWE-862 Missing Authorization	CVE-2024-10531	2024-11-19 00:02	2024-11-13	Show	GitHub Exploit DB Packet Storm

453	4.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the add_new_assistant() function in all versions up to… Update	CWE-862 Missing Authorization	CVE-2024-10530	2024-11-18 23:59	2024-11-13	Show	GitHub Exploit DB Packet Storm

454	5.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_assistant() function in all versions up to,… Update	CWE-862 Missing Authorization	CVE-2024-10529	2024-11-18 23:59	2024-11-13	Show	GitHub Exploit DB Packet Storm

455	-		-	-	The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the execution of system commands Update	-	CVE-2024-50809	2024-11-18 23:35	2024-11-9	Show	GitHub Exploit DB Packet Storm

456	-		-	-	An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH CloudPanel v2.0.0 to v2.4.2 allows low-privilege users to bypass access controls and gain unauthorized a… Update	-	CVE-2024-44765	2024-11-18 23:35	2024-11-9	Show	GitHub Exploit DB Packet Storm

457	-		-	-	All versions of the package jsonpath-plus are vulnerable to Remote Code Execution (RCE) due to improper input sanitization. An attacker can execute aribitrary code on the system by exploiting the uns… Update	-	CVE-2024-21534	2024-11-18 20:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

458	-		-	-	SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via SSRF and malicious requests or content Users are recommended to upgrade to version 2.4.60 which… Update	-	CVE-2024-38472	2024-11-18 18:15	2024-07-2	Show	GitHub Exploit DB Packet Storm

459	-		-	-	AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes a public IP address within network traffic. The attacker must know the victim's AnyDesk ID. New	-	CVE-2024-52940	2024-11-18 14:15	2024-11-18	Show	GitHub Exploit DB Packet Storm

460	-		-	-	Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process. New	-	CVE-2024-43704	2024-11-18 14:15	2024-11-18	Show	GitHub Exploit DB Packet Storm