Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 14, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194541 4.3 警告 SquirrelMail Project - SquirrelMail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4555 2012-03-27 18:42 2011-07-11 Show GitHub Exploit DB Packet Storm
194542 4.3 警告 SquirrelMail Project - SquirrelMail の functions/page_header.php におけるクリックジャック攻撃を誘発する脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4554 2012-03-27 18:42 2011-07-12 Show GitHub Exploit DB Packet Storm
194543 9.3 危険 Opera Software ASA - Opera における詳細不明の脆弱性 CWE-DesignError
CVE-2010-4587 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
194544 10 危険 Opera Software ASA - Opera のデフォルト設定における脆弱性 CWE-16
環境設定 		CVE-2010-4586 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
194545 5 警告 Opera Software ASA - Opera の自動更新機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4585 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
194546 2.6 注意 Opera Software ASA - Opera における信頼されるコンテンツを偽造される脆弱性 CWE-310
暗号の問題 		CVE-2010-4584 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
194547 2.6 注意 Opera Software ASA - Opera における信頼されるコンテンツを偽造される脆弱性 CWE-DesignError
CVE-2010-4583 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
194548 5 警告 Opera Software ASA - Opera におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4582 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
194549 10 危険 Opera Software ASA - Opera における詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4581 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
194550 5 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4580 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 10, 2024, 8:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
91 7.5 HIGH
Network 		- - The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. New CWE-23
 Relative Path Traversal 		CVE-2024-9922 2024-10-14 12:15 2024-10-14 Show GitHub Exploit DB Packet Storm
92 9.8 CRITICAL
Network 		- - The Team+ from TEAMPLUS TECHNOLOGY does not properly validate specific page parameter, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify and delete database c… New CWE-89
SQL Injection 		CVE-2024-9921 2024-10-14 12:15 2024-10-14 Show GitHub Exploit DB Packet Storm
93 7.5 HIGH
Network 		haproxy haproxy HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding (h2_send loop) under a certain set of conditions, as expl… Update NVD-CWE-noinfo
CVE-2024-45506 2024-10-14 12:15 2024-09-5 Show GitHub Exploit DB Packet Storm
94 - - - netease-youdao/qanything version 1.4.1 contains a vulnerability where unsafe data obtained from user input is concatenated in SQL queries, leading to SQL injection. The affected functions include `ge… New CWE-89
SQL Injection 		CVE-2024-7099 2024-10-14 06:15 2024-10-14 Show GitHub Exploit DB Packet Storm
95 - - - A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/sql.php. The manipulation of the a… New - CVE-2024-9918 2024-10-14 05:15 2024-10-14 Show GitHub Exploit DB Packet Storm
96 - - - A vulnerability, which was classified as critical, was found in HuangDou UTCMS V9. This affects an unknown part of the file app/modules/ut-template/admin/template_creat.php. The manipulation of the a… New CWE-502
 Deserialization of Untrusted Data 		CVE-2024-9917 2024-10-14 05:15 2024-10-14 Show GitHub Exploit DB Packet Storm
97 - - - CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that exposes test credentials in the firmware binary New CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2024-8070 2024-10-14 05:15 2024-10-14 Show GitHub Exploit DB Packet Storm
98 - - - A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipula… New CWE-78
OS Command  		CVE-2024-9916 2024-10-14 04:15 2024-10-14 Show GitHub Exploit DB Packet Storm
99 - - - A vulnerability classified as critical was found in D-Link DIR-619L B1 2.06. Affected by this vulnerability is the function formVirtualServ of the file /goform/formVirtualServ. The manipulation of th… New CWE-120
Classic Buffer Overflow 		CVE-2024-9915 2024-10-14 04:15 2024-10-14 Show GitHub Exploit DB Packet Storm
100 - - - A vulnerability classified as critical has been found in D-Link DIR-619L B1 2.06. Affected is the function formSetWizardSelectMode of the file /goform/formSetWizardSelectMode. The manipulation of the… New CWE-120
Classic Buffer Overflow 		CVE-2024-9914 2024-10-14 03:15 2024-10-14 Show GitHub Exploit DB Packet Storm