Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 14, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194601 7.5 危険 aigaion - Aigaion の indexlight.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4503 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
194602 7.2 危険 CA Technologies - CA Internet Security Suite Plus の KmxSbx.sys における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4502 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
194603 6.8 警告 mrcgiguy - MCG FreeTicket の contact.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4500 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
194604 9 危険 TIBCO Software - TIBCO ActiveMatrix Service Grid などで使用される ActiveMatrix Runtime コンポーネントにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4495 2012-03-27 18:42 2010-12-14 Show GitHub Exploit DB Packet Storm
194605 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4493 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194606 10 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4492 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194607 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4491 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194608 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4490 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194609 4.3 警告 Google - Google Chrome およびその他の製品で使用されている libvpx におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4489 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194610 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証 		CVE-2010-4488 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 10, 2024, 8:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
141 7.5 HIGH
Network 		atlassian atlasboard The renderWidgetResource resource in Atlasian Atlasboard before version 1.1.9 allows remote attackers to read arbitrary files via a path traversal vulnerability. Update CWE-22
Path Traversal 		CVE-2021-39109 2024-10-12 06:35 2021-09-1 Show GitHub Exploit DB Packet Storm
142 7.5 HIGH
Network 		atlassian data_center
jira
jira_server
jira_data_center 		Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to continue to view cached content even after losing permissions, via a Broken Access Control vulnerability… Update CWE-613
 Insufficient Session Expiration 		CVE-2021-39113 2024-10-12 06:35 2021-08-30 Show GitHub Exploit DB Packet Storm
143 5.3 MEDIUM
Network 		atlassian jira_server
jira_data_center 		Affected versions of Atlassian Jira Server and Data Center allow remote attackers to read particular files via a path traversal vulnerability in the /WEB-INF/web.xml endpoint. The affected versions a… Update CWE-22
Path Traversal 		CVE-2021-26086 2024-10-12 06:35 2021-08-16 Show GitHub Exploit DB Packet Storm
144 5.3 MEDIUM
Network 		atlassian data_center
jira
jira_server
jira_data_center 		REST API in Atlassian Jira Server and Jira Data Center before version 8.5.14, from version 8.6.0 before 8.13.6, and from version 8.14.0 before 8.16.1 allows remote attackers to enumerate usernames vi… Update NVD-CWE-noinfo
CVE-2021-26081 2024-10-12 06:35 2021-07-20 Show GitHub Exploit DB Packet Storm
145 - - - Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email. Parsing the content of emails where HTML code is copied from Microsoft Word could lead to high CPU usage and… New - CVE-2024-48938 2024-10-12 06:15 2024-10-12 Show GitHub Exploit DB Packet Storm
146 - - - Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows XSS. JavaScript code in the short description of the SLA field in Activity Dialogues is executed. New - CVE-2024-48937 2024-10-12 06:15 2024-10-12 Show GitHub Exploit DB Packet Storm
147 - - - An issue in YESCAM (com.yescom.YesCam.zwave) 1.0.2 allows a remote attacker to obtain sensitive information via the firmware update process. New - CVE-2024-48788 2024-10-12 06:15 2024-10-12 Show GitHub Exploit DB Packet Storm
148 - - - An issue in C-CHIP (com.cchip.cchipamaota) v.1.2.8 allows a remote attacker to obtain sensitive information via the firmware update process. New - CVE-2024-48772 2024-10-12 06:15 2024-10-12 Show GitHub Exploit DB Packet Storm
149 - - - A Server-Side Request Forgery (SSRF) vulnerability exists in the jpress <= v5.1.1, which can be exploited by an attacker to obtain sensitive information, resulting in an information disclosure. New - CVE-2024-46468 2024-10-12 06:15 2024-10-12 Show GitHub Exploit DB Packet Storm
150 - - - An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with chipset Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, Mo… New - CVE-2024-45184 2024-10-12 06:15 2024-10-12 Show GitHub Exploit DB Packet Storm