Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 3, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195601 9.3 危険 RenRen - RenRen Talk における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2012-0915 2012-01-27 11:07 2012-01-24 Show GitHub Exploit DB Packet Storm
195602 4.3 警告 Horde - Horde Groupware Webmail Edition におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0909 2012-01-27 11:05 2012-01-24 Show GitHub Exploit DB Packet Storm
195603 4.3 警告 SimpleSAMLphp - SimpleSAMLphp の logout.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0908 2012-01-27 11:04 2012-01-24 Show GitHub Exploit DB Packet Storm
195604 4.3 警告 Horde - Horde IMP および Horde Groupware Webmail Edition におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0791 2012-01-27 11:04 2012-01-24 Show GitHub Exploit DB Packet Storm
195605 4.3 警告 OETIKER - Smokeping の smokeping_cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0790 2012-01-27 11:03 2012-01-24 Show GitHub Exploit DB Packet Storm
195606 4.3 警告 MailEnable - MailEnable の ForgottenPassword.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0389 2012-01-27 11:01 2012-01-24 Show GitHub Exploit DB Packet Storm
195607 7.5 危険 Batavi - Batavi の ajax.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0069 2012-01-27 10:55 2012-01-24 Show GitHub Exploit DB Packet Storm
195608 10 危険 日立 - 日立の複数の COBOL2002 製品における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-0918 2012-01-26 16:54 2012-01-20 Show GitHub Exploit DB Packet Storm
195609 4.3 警告 日立 - Hitachi IT Operations Director におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0919 2012-01-26 16:53 2012-01-10 Show GitHub Exploit DB Packet Storm
195610 4.3 警告 日立 - Hitachi IT Operations Analyzer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0917 2012-01-26 16:49 2012-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 3, 2024, 8:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
591 4.3 MEDIUM
Network 		- - The Soumettre.fr plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the soumettre_disconnect_gateway function in all versions up to, and incl… New CWE-862
 Missing Authorization 		CVE-2024-8675 2024-10-1 17:15 2024-10-1 Show GitHub Exploit DB Packet Storm
592 6.5 MEDIUM
Network 		- - The KB Support – WordPress Help Desk and Knowledge Base plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the 'kbs_ajax_load_fron… New CWE-862
 Missing Authorization 		CVE-2024-8632 2024-10-1 17:15 2024-10-1 Show GitHub Exploit DB Packet Storm
593 8.1 HIGH
Network 		- - The KB Support – WordPress Help Desk and Knowledge Base plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on several functions in all … New CWE-862
 Missing Authorization 		CVE-2024-8548 2024-10-1 17:15 2024-10-1 Show GitHub Exploit DB Packet Storm
594 7.2 HIGH
Network 		- - The 123.chat - Video Chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.3.1 due to insufficient input sanitization and output escaping. Thi… New CWE-79
Cross-site Scripting 		CVE-2024-7869 2024-10-1 17:15 2024-10-1 Show GitHub Exploit DB Packet Storm
595 8.8 HIGH
Network 		- - The UltraPress theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.2.1 via deserialization of untrusted input. This makes it possible for authenticated a… New CWE-502
 Deserialization of Untrusted Data 		CVE-2024-7434 2024-10-1 17:15 2024-10-1 Show GitHub Exploit DB Packet Storm
596 8.8 HIGH
Network 		- - The Empowerment theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.2 via deserialization of untrusted input. This makes it possible for authenticated … New CWE-502
 Deserialization of Untrusted Data 		CVE-2024-7433 2024-10-1 17:15 2024-10-1 Show GitHub Exploit DB Packet Storm
597 8.8 HIGH
Network 		- - The Unseen Blog theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.0 via deserialization of untrusted input. This makes it possible for authenticated … New CWE-502
 Deserialization of Untrusted Data 		CVE-2024-7432 2024-10-1 17:15 2024-10-1 Show GitHub Exploit DB Packet Storm
598 6.4 MEDIUM
Network 		- - The Slider Revolution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.7.18 due to insufficient input sanitization and ou… New CWE-79
Cross-site Scripting 		CVE-2024-8107 2024-10-1 16:15 2024-10-1 Show GitHub Exploit DB Packet Storm
599 4.4 MEDIUM
Local 		codesys oscat_basic_library Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service. Update CWE-125
Out-of-bounds Read 		CVE-2024-6876 2024-10-1 16:15 2024-09-11 Show GitHub Exploit DB Packet Storm
600 7.3 HIGH
Local 		beckhoff twincat\/bsd
mdp_package 		The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in the context of user “roo… Update NVD-CWE-Other
CVE-2024-41176 2024-10-1 16:15 2024-08-27 Show GitHub Exploit DB Packet Storm