Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 15, 2024, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194681	7.5	危険	dustincowell	-	Free Simple Software の download モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4298	2012-03-27 18:42	2010-11-26	Show	GitHub Exploit DB Packet Storm

194682	7.5	危険	Artica ST	-	Pandora FMS における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4283	2012-03-27 18:42	2010-12-2	Show	GitHub Exploit DB Packet Storm

194683	7.5	危険	Artica ST	-	Pandora FMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4282	2012-03-27 18:42	2010-12-2	Show	GitHub Exploit DB Packet Storm

194684	7.5	危険	Artica ST	-	Pandora FMS の safe_url_extraclean 関数における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4281	2012-03-27 18:42	2010-12-2	Show	GitHub Exploit DB Packet Storm

194685	7.5	危険	Artica ST	-	Pandora FMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4280	2012-03-27 18:42	2010-12-2	Show	GitHub Exploit DB Packet Storm

194686	10	危険	Artica ST	-	Pandora FMS のディフォルト設定における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-4279	2012-03-27 18:42	2010-12-2	Show	GitHub Exploit DB Packet Storm

194687	7.5	危険	accimoveis	-	DescargarVista ACC Imoveis における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4273	2012-03-27 18:42	2010-11-16	Show	GitHub Exploit DB Packet Storm

194688	7.5	危険	pulseinfotech Joomla!	-	Joomla! 用の Pulse Infotech Sponsor Wall コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4272	2012-03-27 18:42	2010-11-16	Show	GitHub Exploit DB Packet Storm

194689	7.5	危険	ImpressCMS	-	ImpressCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4271	2012-03-27 18:42	2010-11-16	Show	GitHub Exploit DB Packet Storm

194690	5	警告	Netshine Software	-	nBill (com_netinvoice) コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4270	2012-03-27 18:42	2010-11-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 10, 2024, 8:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
181	7.5	HIGH Network	apache	inlong	Exposure of Resource to Wrong Sphere Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.6.0. Attackers can change the immutable name and…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2023-31103	2024-10-12 06:35	2023-05-23	Show	GitHub Exploit DB Packet Storm

182	9.8	CRITICAL Network	apache	inlong	Weak Password Requirements vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.6.0. When users change their password to a simple passwor…	CWE-521 Weak Password Requirements	CVE-2023-31098	2024-10-12 06:35	2023-05-23	Show	GitHub Exploit DB Packet Storm

183	7.5	HIGH Network	apache	inlong	Incorrect Permission Assignment for Critical Resource Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.2.0 through 1.6.0. The attacker can delete oth…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2023-31453	2024-10-12 06:35	2023-05-22	Show	GitHub Exploit DB Packet Storm

184	7.5	HIGH Network	apache	inlong	Exposure of Resource to Wrong Sphere Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.6.0. Attackers can change the immutable name and …	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2023-31206	2024-10-12 06:35	2023-05-22	Show	GitHub Exploit DB Packet Storm

185	7.5	HIGH Network	apache	inlong	Deserialization of Untrusted Data Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.6.0. Attackers would bypass the 'autoDeserialize' op…	CWE-502 Deserialization of Untrusted Data	CVE-2023-31058	2024-10-12 06:35	2023-05-22	Show	GitHub Exploit DB Packet Storm

186	9.8	CRITICAL Network	apache	sling_commons_json	Improper input validation in the Apache Sling Commons JSON bundle allows an attacker to trigger unexpected errors by supplying specially-crafted input. The org.apache.sling.commons.json bundle has b…	CWE-20 Improper Input Validation	CVE-2022-47937	2024-10-12 06:35	2023-05-15	Show	GitHub Exploit DB Packet Storm

187	7.2	HIGH Network	apache	openmeetings	An attacker who has gained access to an admin account can perform RCE via null-byte injection Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.0.0 before 7.1.0	CWE-20 Improper Input Validation	CVE-2023-29246	2024-10-12 06:35	2023-05-12	Show	GitHub Exploit DB Packet Storm

188	8.1	HIGH Network	apache	openmeetings	An attacker that has gained access to certain private information can use this to act as other user. Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 3.1.3 before …	CWE-287 Improper Authentication	CVE-2023-29032	2024-10-12 06:35	2023-05-12	Show	GitHub Exploit DB Packet Storm

189	5.3	MEDIUM Network	apache	openmeetings	Attacker can access arbitrary recording/room Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.0.0 before 7.1.0	CWE-697 Incorrect Comparison	CVE-2023-28936	2024-10-12 06:35	2023-05-12	Show	GitHub Exploit DB Packet Storm

190	9.8	CRITICAL Network	apache	airflow	Privilege Context Switching Error vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: before 2.6.0.	NVD-CWE-noinfo	CVE-2023-25754	2024-10-12 06:35	2023-05-8	Show	GitHub Exploit DB Packet Storm