Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 10, 2024, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194981 8.5 危険 シスコシステムズ - 複数の Cisco UVC System 製品における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3037 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
194982 10 危険 シスコシステムズ - Cisco CiscoWorks Common Service の Web サーバの認証機能における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3036 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
194983 5 警告 シスコシステムズ - Cisco WLC における ACL を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3034 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
194984 9 危険 シスコシステムズ - Cisco WLC におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3033 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
194985 4.3 警告 RSAセキュリティ - RSA Access Manager Server における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3018 2012-03-27 18:42 2010-09-9 Show GitHub Exploit DB Packet Storm
194986 5.7 警告 RSAセキュリティ - RSA Access Manager Agent における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3017 2012-03-27 18:42 2010-09-9 Show GitHub Exploit DB Packet Storm
194987 4.3 警告 ヒューレット・パッカード - HP SMH におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3012 2012-03-27 18:42 2010-09-15 Show GitHub Exploit DB Packet Storm
194988 5 警告 ヒューレット・パッカード - HP SMH における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3011 2012-03-27 18:42 2010-09-15 Show GitHub Exploit DB Packet Storm
194989 4.3 警告 ヒューレット・パッカード - HP 3Com OfficeConnect Gigabit VPN Firewall 3CREVF100-73 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3010 2012-03-27 18:42 2010-09-15 Show GitHub Exploit DB Packet Storm
194990 9 危険 ヒューレット・パッカード - HP SMH における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3009 2012-03-27 18:42 2010-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 10, 2024, 5:55 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
51 7.3 HIGH
Network 		essentialplugin album_and_image_gallery_plus_lightbox The The Album and Image Gallery plus Lightbox plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0. This is due to the software allowing users… Update NVD-CWE-noinfo
CVE-2024-4194 2024-10-10 00:36 2024-06-6 Show GitHub Exploit DB Packet Storm
52 - - - PublicCMS V4.0.202406.d was discovered to contain a cross-site scripting (XSS) vulnerability via a crafted script to the Category Managment feature New - CVE-2024-46410 2024-10-10 00:35 2024-10-9 Show GitHub Exploit DB Packet Storm
53 - - - An issue in the getcolor function in utils.py of xhtml2pdf v0.2.13 allows attackers to cause a Regular expression Denial of Service (ReDOS) via supplying a crafted string. New - CVE-2024-25885 2024-10-10 00:35 2024-10-9 Show GitHub Exploit DB Packet Storm
54 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: userfaultfd: don't BUG_ON() if khugepaged yanks our page table Since khugepaged was changed to allow retracting page tables in fi… Update NVD-CWE-noinfo
CVE-2024-46838 2024-10-10 00:35 2024-09-27 Show GitHub Exploit DB Packet Storm
55 7.5 HIGH
Network 		jqlang jq decToString in decNumber/decNumber.c in jq 88f01a7 has a one-byte out-of-bounds write via the " []-1.2e-1111111111" input. NOTE: this is not the same as CVE-2023-50246. The CVE-2023-50246 71c2ab5 ref… Update CWE-787
 Out-of-bounds Write 		CVE-2023-49355 2024-10-10 00:35 2023-12-11 Show GitHub Exploit DB Packet Storm
56 7.5 HIGH
Network 		google android In ProtocolNetAcBarringInfo::ProtocolNetAcBarringInfo() of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosu… Update CWE-125
Out-of-bounds Read 		CVE-2023-48398 2024-10-10 00:35 2023-12-9 Show GitHub Exploit DB Packet Storm
57 6.1 MEDIUM
Network 		dedecms dedecms DedeCMS v5.7.111 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the imgstick parameter at selectimages.php. Update CWE-79
Cross-site Scripting 		CVE-2023-49492 2024-10-10 00:35 2023-12-8 Show GitHub Exploit DB Packet Storm
58 7.5 HIGH
Network 		dallmann-consulting open_charge_point_protocol An issue was discovered in Dalmann OCPP.Core through 1.2.0 for OCPP (Open Charge Point Protocol) for electric vehicles. The server processes mishandle StartTransaction messages containing additional,… Update CWE-20
 Improper Input Validation  		CVE-2023-49958 2024-10-10 00:35 2023-12-7 Show GitHub Exploit DB Packet Storm
59 8.8 HIGH
Network 		phpjabbers appointment_scheduler Appointment Scheduler 3.0 is vulnerable to CSV Injection via a Language > Labels > Export action. Update CWE-74
Injection 		CVE-2023-48841 2024-10-10 00:35 2023-12-7 Show GitHub Exploit DB Packet Storm
60 6.5 MEDIUM
Network 		docker machine Docker Machine through 0.16.2 allows an attacker, who has control of a worker node, to provide crafted version data, which might potentially trick an administrator into performing an unsafe action (v… Update NVD-CWE-Other
CVE-2023-40453 2024-10-10 00:35 2023-11-7 Show GitHub Exploit DB Packet Storm