Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 11, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194861	4.3	警告	レッドハット	-	Red Hat JBoss Enterprise Application Platform の JMX Console におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3878	2012-03-27 18:42	2010-12-1	Show	GitHub Exploit DB Packet Storm

194862	4.3	警告	Mahara	-	Mahara の blocktype/groupviews/theme/raw/groupviews.tpl におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3871	2012-03-27 18:42	2010-11-9	Show	GitHub Exploit DB Packet Storm

194863	4	警告	レッドハット	-	RHCS および Dogtag Certificate System における任意の認証番号を生成される脆弱性	CWE-310 暗号の問題	CVE-2010-3869	2012-03-27 18:42	2010-11-8	Show	GitHub Exploit DB Packet Storm

194864	5.8	警告	レッドハット	-	RHCS および Dogtag Certificate System における PIN を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-3868	2012-03-27 18:42	2010-11-8	Show	GitHub Exploit DB Packet Storm

194865	2.6	注意	レッドハット	-	Red Hat JBoss Enterprise Application Platform および JBoss Enterprise Web Platform の Boss Remoting におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3862	2012-03-27 18:42	2010-12-8	Show	GitHub Exploit DB Packet Storm

194866	6.4	警告	レッドハット	-	Red Hat Conga の Luciにおける repoze.who 認証をバイパスすることが容易になる脆弱性	CWE-287 不適切な認証	CVE-2010-3852	2012-03-27 18:42	2010-11-2	Show	GitHub Exploit DB Packet Storm

194867	4.9	警告	Linux	-	Linux kernel の ec_dev_ioctl 関数におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3850	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

194868	4.7	警告	Linux	-	Linux kernel の econet_sendmsg におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 CWE-399	CVE-2010-3849	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

194869	6.9	警告	Linux	-	Linux kernel の econet_sendmsg 関数におけるスタックベースのバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3848	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

194870	5.8	警告	Haxx	-	curl における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3842	2012-03-27 18:42	2010-10-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 10, 2024, 8:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191	9.8	CRITICAL Network	dlink	dir-860l_firmware	In D-Link DIR-860L v2.03, there is a buffer overflow vulnerability due to the lack of length verification for the SID field in gena.cgi. Attackers who successfully exploit this vulnerability can caus… Update	CWE-120 Classic Buffer Overflow	CVE-2024-42812	2024-10-11 05:18	2024-08-20	Show	GitHub Exploit DB Packet Storm

192	-		-	-	A vulnerability was found in SourceCodester Record Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file sort2_user.php. The manipu… New	CWE-79 Cross-site Scripting	CVE-2024-9810	2024-10-11 05:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

193	-		-	-	A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is the function delete_product of the file /classes/Master.php?f=… New	CWE-89 SQL Injection	CVE-2024-9809	2024-10-11 05:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

194	-		-	-	A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=products/view_product. The manipulati… New	CWE-89 SQL Injection	CVE-2024-9808	2024-10-11 05:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

195	4.9	MEDIUM Network	litellm	litellm	A blind SQL injection vulnerability exists in the berriai/litellm application, specifically within the '/team/update' process. The vulnerability arises due to the improper handling of the 'user_id' p… Update	CWE-89 SQL Injection	CVE-2024-4890	2024-10-11 05:11	2024-06-7	Show	GitHub Exploit DB Packet Storm

196	7.5	HIGH Network	codehaus-plexus redhat	plexus-utils integration_camel_k	A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with … Update	CWE-22 Path Traversal	CVE-2022-4244	2024-10-11 05:04	2023-09-26	Show	GitHub Exploit DB Packet Storm

197	4.3	MEDIUM Network	codehaus-plexus redhat	plexus-utils integration_camel_k	A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command str… Update	CWE-611 XXE	CVE-2022-4245	2024-10-11 05:02	2023-09-26	Show	GitHub Exploit DB Packet Storm

198	7.5	HIGH Network	thekelleys	dnsmasq	dnsmasq 2.9 is vulnerable to Integer Overflow via forward_query. Update	CWE-190 Integer Overflow or Wraparound	CVE-2023-49441	2024-10-11 05:00	2024-06-7	Show	GitHub Exploit DB Packet Storm

199	9.8	CRITICAL Network	codehaus-plexus debian	plexus-utils debian_linux	Plexus-utils before 3.0.16 is vulnerable to command injection because it does not correctly process the contents of double quoted strings. Update	CWE-78 OS Command	CVE-2017-1000487	2024-10-11 04:55	2018-01-4	Show	GitHub Exploit DB Packet Storm

200	-		-	-	A vulnerability was found in Craig Rodway Classroombookings 2.8.7 and classified as problematic. This issue affects some unknown processing of the file /sessions of the component Session Page. The ma… New	-	CVE-2024-9807	2024-10-11 04:15	2024-10-11	Show	GitHub Exploit DB Packet Storm