Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
195921 6.4 警告 アップル - Apple Mac OS X の libsecurity における暗号保護メカニズムを破られる脆弱性 CWE-310
暗号の問題
CVE-2012-0655 2012-05-14 15:10 2012-05-11 Show GitHub Exploit DB Packet Storm
195922 6.8 警告 アップル - Apple Mac OS X の libsecurity における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2012-0654 2012-05-14 14:51 2012-05-11 Show GitHub Exploit DB Packet Storm
195923 5 警告 アップル - Apple Mac OS X のディレクトリサービスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2012-0651 2012-05-14 14:40 2012-05-11 Show GitHub Exploit DB Packet Storm
195924 6.9 警告 アップル - Apple Mac OS X の Bluetooth における権限を取得される脆弱性 CWE-362
競合状態
CVE-2012-0649 2012-05-14 14:38 2012-05-11 Show GitHub Exploit DB Packet Storm
195925 7.5 危険 アップル
Google
- WebKit における同一生成元ポリシーを回避される脆弱性 CWE-20
不適切な入力確認
CVE-2011-3056 2012-05-11 15:40 2012-03-21 Show GitHub Exploit DB Packet Storm
195926 10 危険 アップル
Google
- WebKit の拡張サブシステムにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-3046 2012-05-11 15:37 2012-03-8 Show GitHub Exploit DB Packet Storm
195927 9 危険 ヒューレット・パッカード - HP Performance Insight for Networks における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-2009 2012-05-10 18:57 2012-05-7 Show GitHub Exploit DB Packet Storm
195928 4.3 警告 ヒューレット・パッカード - HP Performance Insight for Networks におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2008 2012-05-10 18:56 2012-05-7 Show GitHub Exploit DB Packet Storm
195929 7.5 危険 ヒューレット・パッカード - HP Performance Insight for Networks における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-2007 2012-05-10 18:55 2012-05-7 Show GitHub Exploit DB Packet Storm
195930 9.3 危険 XnSoft - XnViewer における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2012-0685 2012-05-10 18:21 2012-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2331 9.1 CRITICAL
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wsa8815_firmware
wsa8810_firmware
wcn7881_firmware
wcn7880_firmware
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. NVD-CWE-noinfo
CVE-2024-38408 2024-11-9 00:07 2024-11-4 Show GitHub Exploit DB Packet Storm
2332 6.1 MEDIUM
Network
flycart discount_rules_for_woocommerce The Discount Rules for WooCommerce – Create Smart WooCommerce Coupons & Discounts, Bulk Discount, BOGO Coupons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of a… CWE-79
Cross-site Scripting
CVE-2024-8541 2024-11-9 00:07 2024-10-16 Show GitHub Exploit DB Packet Storm
2333 8.8 HIGH
Network
ibm watson_studio_local IBM Watson Studio Local 1.2.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. CWE-352
 Origin Validation Error
CVE-2024-49340 2024-11-9 00:06 2024-10-16 Show GitHub Exploit DB Packet Storm
2334 4.6 MEDIUM
Network
apache nifi Apache NiFi 1.10.0 through 1.27.0 and 2.0.0-M1 through 2.0.0-M3 support a description field for Parameters in a Parameter Context configuration that is vulnerable to cross-site scripting. An authenti… CWE-79
Cross-site Scripting
CVE-2024-45477 2024-11-9 00:03 2024-10-29 Show GitHub Exploit DB Packet Storm
2335 7.2 HIGH
Network
davidlingren media_library_assistant Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in David Lingren Media Library Assistant allows Command Injection.This issue affects Media Lib… CWE-78
OS Command 
CVE-2024-51661 2024-11-9 00:02 2024-11-4 Show GitHub Exploit DB Packet Storm
2336 4.6 MEDIUM
Network
mattermost mattermost_server Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1, 9.5.x <= 9.5.9 fail to sanitize user inputs in the frontend that are used for redirection which allows for a one-click client-side path travers… CWE-352
 Origin Validation Error
CVE-2024-46872 2024-11-9 00:00 2024-10-29 Show GitHub Exploit DB Packet Storm
2337 6.1 MEDIUM
Network
latex2html latex2html Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Van Abel LaTeX2HTML allows Reflected XSS.This issue affects LaTeX2HTML: from n/a through 2… CWE-79
Cross-site Scripting
CVE-2024-49673 2024-11-8 23:57 2024-10-29 Show GitHub Exploit DB Packet Storm
2338 6.1 MEDIUM
Network
samglover client_power_tools Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sam Glover Client Power Tools Portal allows Reflected XSS.This issue affects Client Power … CWE-79
Cross-site Scripting
CVE-2024-49670 2024-11-8 23:57 2024-10-29 Show GitHub Exploit DB Packet Storm
2339 5.4 MEDIUM
Network
affiliatexblocks affiliatex Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AffiliateX allows Stored XSS.This issue affects AffiliateX: from n/a through 1.2.9. CWE-79
Cross-site Scripting
CVE-2024-49692 2024-11-8 23:55 2024-10-29 Show GitHub Exploit DB Packet Storm
2340 5.4 MEDIUM
Network
brainstormforce astra_widgets Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Brainstorm Force Astra Widgets allows Stored XSS.This issue affects Astra Widgets: from n/… CWE-79
Cross-site Scripting
CVE-2024-50439 2024-11-8 23:53 2024-10-29 Show GitHub Exploit DB Packet Storm