Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 15, 2024, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194141	7.8	危険	シスコシステムズ	-	Cisco FWSM におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0966	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194142	7.8	危険	シスコシステムズ	-	Cisco FWSM におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0965	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194143	5.4	警告	シスコシステムズ	-	Cisco FWSM におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0964	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194144	7.8	危険	シスコシステムズ	-	Cisco FWSM におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0963	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194145	4.3	警告	atmail pty ltd	-	Atmail の search.pl におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0953	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194146	7.5	危険	fullaspsite	-	Fullaspsite ASP ホスティングサイトの listmain.asp における SQL インジェクションの脆弱性	-	CVE-2007-0951	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194147	6.8	警告	fullaspsite	-	Fullaspsite ASP ホスティングサイトの listmain.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0950	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194148	7.5	危険	アルバネットワークス株式会社 Alcatel-Lucent	-	Aruba Mobility Controllers における管理用インターフェースまたは WLAN へアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-0932	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194149	7.5	危険	アルバネットワークス株式会社 Alcatel-Lucent	-	Aruba Mobility Controllers の管理インターフェースにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-0931	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

194150	7.5	危険	apache stats	-	Apache Stats における任意の変数を変更される脆弱性	-	CVE-2007-0930	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 16, 2024, 5:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1821	5.4	MEDIUM Network	cozythemes	cozy_blocks	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CozyThemes Cozy Blocks allows Stored XSS.This issue affects Cozy Blocks: from n/a through …	CWE-79 Cross-site Scripting	CVE-2024-50441	2024-11-9 05:33	2024-10-29	Show	GitHub Exploit DB Packet Storm

1822	5.4	MEDIUM Network	codepen	codepen	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Chris Coyier CodePen Embedded Pens Shortcode allows Stored XSS.This issue affects CodePen …	CWE-79 Cross-site Scripting	CVE-2024-50440	2024-11-9 05:33	2024-10-29	Show	GitHub Exploit DB Packet Storm

1823	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable IRQ if do_ale() triggered in irq-enabled context Unaligned access exception can be triggered in irq-enabled con…	NVD-CWE-noinfo	CVE-2024-50111	2024-11-9 05:32	2024-11-6	Show	GitHub Exploit DB Packet Storm

1824	5.4	MEDIUM Network	redefiningtheweb	pdf_generator_addon_for_elementor_page_builder	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in RedefiningTheWeb PDF Generator Addon for Elementor Page Builder allows Stored XSS.This iss…	CWE-79 Cross-site Scripting	CVE-2024-50449	2024-11-9 05:32	2024-10-29	Show	GitHub Exploit DB Packet Storm

1825	6.1	MEDIUM Network	yithemes	yith_woocommerce_product_add-ons	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Reflected XSS.This issue affects YITH WooComm…	CWE-79 Cross-site Scripting	CVE-2024-50448	2024-11-9 05:32	2024-10-29	Show	GitHub Exploit DB Packet Storm

1826	5.4	MEDIUM Network	fatcatapps	easy_pricing_tables	The Pricing Tables WordPress Plugin – Easy Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘fontFamily’ attribute in all versions up to, and including, 3.2.6 …	CWE-79 Cross-site Scripting	CVE-2024-8323	2024-11-9 05:30	2024-11-6	Show	GitHub Exploit DB Packet Storm

1827	5.4	MEDIUM Network	pluginus	woot	The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's woot_button shortcode in all versions u…	CWE-79 Cross-site Scripting	CVE-2024-10168	2024-11-9 05:27	2024-11-6	Show	GitHub Exploit DB Packet Storm

1828	5.4	MEDIUM Network	mappresspro	mappress	The MapPress Maps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Map block in all versions up to, and including, 2.94.1 due to insufficient input san…	CWE-79 Cross-site Scripting	CVE-2024-10715	2024-11-9 05:25	2024-11-6	Show	GitHub Exploit DB Packet Storm

1829	9.8	CRITICAL Network	eyecix	jobsearch_wp_job_board	The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_location_load_excel_file_callback() function in all versio…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-8615	2024-11-9 05:24	2024-11-6	Show	GitHub Exploit DB Packet Storm

1830	8.8	HIGH Network	eyecix	jobsearch_wp_job_board	The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_wp_handle_upload() function in all versions up to, and inc…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-8614	2024-11-9 05:23	2024-11-6	Show	GitHub Exploit DB Packet Storm