Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 19, 2024, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194441 7.1 危険 advanced guestbook - Advanced Guestbook における重要な情報を取得される脆弱性 - CVE-2007-0608 2012-06-26 15:46 2007-05-9 Show GitHub Exploit DB Packet Storm
194442 4.3 警告 advanced guestbook - Advanced Guestbook の picture.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0605 2012-06-26 15:46 2007-05-9 Show GitHub Exploit DB Packet Storm
194443 7.5 危険 aztek forum - Aztek Forum の common/safety.php における危険な操作を入力される脆弱性 - CVE-2007-0601 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194444 7.5 危険 aztek forum - Aztek Forum の common/config.php における任意のプログラム変数を上書きする脆弱性 - CVE-2007-0599 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194445 4.3 警告 designmind - High 5 Review Site の search におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0595 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194446 5.8 警告 forum livre - Forum Livre の busca2.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0590 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194447 7.5 危険 forum livre - Forum Livre における SQL インジェクションの脆弱性 - CVE-2007-0589 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194448 7.1 危険 アップル - Apple QuickDraw の InternalUnpackBits 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0588 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194449 7.5 危険 g-neric - PhP Generic Library & Framework membres/membreManager.ph における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0584 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194450 7.5 危険 chernobile - ChernobiLe の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0582 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 19, 2024, 4:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2231 5.4 MEDIUM
Network 		codepen codepen Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Chris Coyier CodePen Embedded Pens Shortcode allows Stored XSS.This issue affects CodePen … CWE-79
Cross-site Scripting 		CVE-2024-50440 2024-11-9 05:33 2024-10-29 Show GitHub Exploit DB Packet Storm
2232 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable IRQ if do_ale() triggered in irq-enabled context Unaligned access exception can be triggered in irq-enabled con… NVD-CWE-noinfo
CVE-2024-50111 2024-11-9 05:32 2024-11-6 Show GitHub Exploit DB Packet Storm
2233 5.4 MEDIUM
Network 		redefiningtheweb pdf_generator_addon_for_elementor_page_builder Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in RedefiningTheWeb PDF Generator Addon for Elementor Page Builder allows Stored XSS.This iss… CWE-79
Cross-site Scripting 		CVE-2024-50449 2024-11-9 05:32 2024-10-29 Show GitHub Exploit DB Packet Storm
2234 6.1 MEDIUM
Network 		yithemes yith_woocommerce_product_add-ons Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Reflected XSS.This issue affects YITH WooComm… CWE-79
Cross-site Scripting 		CVE-2024-50448 2024-11-9 05:32 2024-10-29 Show GitHub Exploit DB Packet Storm
2235 5.4 MEDIUM
Network 		fatcatapps easy_pricing_tables The Pricing Tables WordPress Plugin – Easy Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘fontFamily’ attribute in all versions up to, and including, 3.2.6 … CWE-79
Cross-site Scripting 		CVE-2024-8323 2024-11-9 05:30 2024-11-6 Show GitHub Exploit DB Packet Storm
2236 5.4 MEDIUM
Network 		pluginus woot The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's woot_button shortcode in all versions u… CWE-79
Cross-site Scripting 		CVE-2024-10168 2024-11-9 05:27 2024-11-6 Show GitHub Exploit DB Packet Storm
2237 5.4 MEDIUM
Network 		mappresspro mappress The MapPress Maps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Map block in all versions up to, and including, 2.94.1 due to insufficient input san… CWE-79
Cross-site Scripting 		CVE-2024-10715 2024-11-9 05:25 2024-11-6 Show GitHub Exploit DB Packet Storm
2238 9.8 CRITICAL
Network 		eyecix jobsearch_wp_job_board The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_location_load_excel_file_callback() function in all versio… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-8615 2024-11-9 05:24 2024-11-6 Show GitHub Exploit DB Packet Storm
2239 8.8 HIGH
Network 		eyecix jobsearch_wp_job_board The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_wp_handle_upload() function in all versions up to, and inc… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-8614 2024-11-9 05:23 2024-11-6 Show GitHub Exploit DB Packet Storm
2240 5.3 MEDIUM
Network 		dlink dns-320_firmware
dns-320lw_firmware
dns-325_firmware
dns-340l_firmware 		A vulnerability classified as problematic has been found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. This affects an unknown part of the file /xml/info.xml of the component HTT… NVD-CWE-Other
CVE-2024-10916 2024-11-9 05:11 2024-11-7 Show GitHub Exploit DB Packet Storm