Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 13, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194611 7.5 危険 アップル
Google
Linux		 - Google Chrome における不完全なブラックリストに関連した脆弱性\ CWE-Other
その他 		CVE-2010-4487 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194612 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4486 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194613 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4485 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194614 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4484 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194615 4.3 警告 Google - Google Chrome における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4483 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194616 5 警告 Google - Google Chrome におけるポップアップブロッカーを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4482 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194617 5 警告 The phpMyAdmin Project - phpMyAdmin における認証を回避する脆弱性 CWE-287
不適切な認証 		CVE-2010-4481 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194618 4.3 警告 The phpMyAdmin Project - PhpMyAdmin の error.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4480 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194619 4.3 警告 Electric Sheep Fencing - pfSense におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4412 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
194620 4.3 警告 alberto pittoni - AlGuest におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4407 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 10, 2024, 8:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
21 6.4 MEDIUM
Network 		- - The Mynx Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 0.27.8 due to insufficient input sanitization and ou… New - CVE-2024-9656 2024-10-12 15:15 2024-10-12 Show GitHub Exploit DB Packet Storm
22 4.3 MEDIUM
Network 		- - The Read more By Adam plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the deleteRm() function in all versions up to, and including, 1.1.8. This ma… New CWE-862
 Missing Authorization 		CVE-2024-9187 2024-10-12 15:15 2024-10-12 Show GitHub Exploit DB Packet Storm
23 4.4 MEDIUM
Network 		- - The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form color parameters in all versions up to, and including, 2… New CWE-79
Cross-site Scripting 		CVE-2024-7489 2024-10-12 15:15 2024-10-12 Show GitHub Exploit DB Packet Storm
24 6.5 MEDIUM
Network 		- - The Bridge Core plugin for WordPress is vulnerable to unauthorized modification of data or loss of data due to a missing capability check on the 'import_action' and 'install_plugin_per_demo' function… New CWE-862
 Missing Authorization 		CVE-2024-9860 2024-10-12 12:15 2024-10-12 Show GitHub Exploit DB Packet Storm
25 8.8 HIGH
Network 		- - The Bot for Telegram on WooCommerce plugin for WordPress is vulnerable to sensitive information disclosure due to missing authorization checks on the 'stm_wpcfto_get_settings' AJAX action in all vers… New CWE-200
Information Exposure 		CVE-2024-9821 2024-10-12 12:15 2024-10-12 Show GitHub Exploit DB Packet Storm
26 6.1 MEDIUM
Network 		- - The Easy PayPal Gift Certificate plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.3. This is due to missing or incorrect nonce validation on the … New CWE-352
 Origin Validation Error 		CVE-2024-9592 2024-10-12 12:15 2024-10-12 Show GitHub Exploit DB Packet Storm
27 8.8 HIGH
Network 		cbc nr4h_firmware
nr8h_firmware
nr16h_firmware
dr-16f42a_firmware
dr-16f45at_firmware
dr-8f42a_firmware
dr-8f45at_firmware
dr-4fx1_firmware
dr-16h_firmware
dr-8h_firmware
dr… 		Hidden functionality vulnerability in the CBC products allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter its settings. As for the affected products/vers… Update NVD-CWE-Other
CVE-2023-40158 2024-10-12 07:35 2023-08-23 Show GitHub Exploit DB Packet Storm
28 - - - An issue was discovered in the centreon-bi-server component in Centreon BI Server 24.04.x before 24.04.3, 23.10.x before 23.10.8, 23.04.x before 23.04.11, and 22.10.x before 22.10.11. SQL injection c… New - CVE-2024-45754 2024-10-12 07:15 2024-10-12 Show GitHub Exploit DB Packet Storm
29 - - - Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operating_mode.cgi via the ap_mode parameter with ap_24g_manual set to 1 a… New - CVE-2024-35522 2024-10-12 07:15 2024-10-12 Show GitHub Exploit DB Packet Storm
30 - - - Netgear XR1000 v1.0.0.64 is vulnerable to command injection in usb_remote_smb_conf.cgi via the share_name parameter. New - CVE-2024-35517 2024-10-12 07:15 2024-10-12 Show GitHub Exploit DB Packet Storm