Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Nov. 20, 2024, 6:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196031 | 4.3 | 警告 | NetWebLogic | - | WordPress 用 Login With Ajax プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2759 | 2012-05-24 13:38 | 2012-05-22 | Show | GitHub Exploit DB Packet Storm |
| 196032 | 4.3 | 警告 | Schneider Electric | - | Schneider Electric Kerweb および Kerwin におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1990 | 2012-05-24 12:32 | 2012-05-22 | Show | GitHub Exploit DB Packet Storm |
| 196033 | 7.5 | 危険 | Thomas Abeel | - | Simple PHP Agenda の engine.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-2925 | 2012-05-23 19:35 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 196034 | 7.5 | 危険 | HyperMethod IBS | - | Hypermethod eLearning Server の admin/setup.inc.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2012-2924 | 2012-05-23 19:35 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 196035 | 7.5 | 危険 | HyperMethod IBS | - | Hypermethod eLearning Server の news.php4 における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-2923 | 2012-05-23 19:34 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 196036 | 5 | 警告 | Drupal | - | Drupal の includes/bootstrap.inc 内の request_path 関数における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2012-2922 | 2012-05-23 19:33 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 196037 | 3.5 | 注意 | Geoff Davies | - | Drupal 用 Contact Forms モジュールにおけるモジュールの設定を変更される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-2340 | 2012-05-23 19:12 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 196038 | 4.3 | 警告 | Nancy Wichmann | - | Drupal 用 Glossary モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2339 | 2012-05-23 19:00 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 196039 | 2.6 | 注意 | Ishmael Sanchez | - | Drupal 用 Aberdeen テーマの aberdeen_breadcrumb 関数におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2907 | 2012-05-23 18:57 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 196040 | 5 | 警告 | mark pilgrim | - | Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2012-2921 | 2012-05-23 18:50 | 2012-05-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Nov. 20, 2024, 4:18 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 261411 | - | bluemarblegeo | global_mapper | Multiple untrusted search path vulnerabilities in Global Mapper 14.1.0 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) ibfs32.dll file in the current working directory, … |
NVD-CWE-Other
|
CVE-2013-0727 | 2013-04-26 20:41 | 2013-04-26 | Show | GitHub Exploit DB Packet Storm | |
| 261412 | - | bluemarblegeo | global_mapper | Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path' |
NVD-CWE-Other
|
CVE-2013-0727 | 2013-04-26 20:41 | 2013-04-26 | Show | GitHub Exploit DB Packet Storm | |
| 261413 | - | cisco |
nx-os nexus_7000 nexus_7000_10-slot nexus_7000_18-slot nexus_7000_9-slot mds_9000 nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_4001… |
Multiple buffer overflows in the Cisco Discovery Protocol (CDP) implementation in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.2(4) and 6.x before 6.1(1), Nexus 5000 and 5500 devices 4.x an… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-1178 | 2013-04-26 01:06 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 261414 | - | cisco |
nx-os nexus_7000 nexus_7000_10-slot nexus_7000_18-slot nexus_7000_9-slot mds_9000 |
Buffer overflow in the SNMP implementation in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.2(5) and 6.x before 6.1(1) and MDS 9000 devices 4.x and 5.x before 5.2(5) allows remote authentica… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-1180 | 2013-04-25 19:55 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 261415 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
The login page in the Web Console in the Manager component in Cisco Unified Computing System (UCS) before 1.0(2h), 1.1 before 1.1(1j), and 1.3(x) allows remote attackers to bypass LDAP authentication… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2013-1182 | 2013-04-25 19:55 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 261416 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
Buffer overflow in the Intelligent Platform Management Interface (IPMI) functionality in the Manager component in Cisco Unified Computing System (UCS) 1.0 and 1.1 before 1.1(1j) and 1.2 before 1.2(1b… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-1183 | 2013-04-25 19:55 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 261417 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
The management API in the XML API management service in the Manager component in Cisco Unified Computing System (UCS) 1.x before 1.2(1b) allows remote attackers to cause a denial of service (service … |
CWE-20
Improper Input Validation |
CVE-2013-1184 | 2013-04-25 19:55 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 261418 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
The web interface in the Manager component in Cisco Unified Computing System (UCS) 1.x and 2.x before 2.0(2m) allows remote attackers to obtain sensitive information by reading a (1) technical-suppor… |
CWE-200
Information Exposure |
CVE-2013-1185 | 2013-04-25 19:55 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 261419 | - | cybozu |
cybozu_office cybozu_dezie mailwise |
Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0, Cybozu Dezie before 8.0.7, and Cybozu Mailwise before 5.0.4 allows remote attackers to hijack the a… |
CWE-352
Origin Validation Error |
CVE-2013-2305 | 2013-04-25 19:55 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 261420 | - | lexmark | markvision | Lexmark Markvision Enterprise before 1.8 provides a diagnostic interface on TCP port 9789, which allows remote attackers to execute arbitrary code, change the configuration, or obtain sensitive fleet… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2013-3055 | 2013-04-25 13:00 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm |