Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 15, 2024, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196251 6.8 警告 Opera Software ASA - Opera における任意のファイルをダウンロードおよび実行させられる脆弱性 CWE-DesignError
CVE-2012-1925 2012-03-29 15:48 2012-03-28 Show GitHub Exploit DB Packet Storm
196252 6.8 警告 Opera Software ASA - Opera における任意のファイルをダウンロードおよび実行させられる脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1924 2012-03-29 15:47 2012-03-28 Show GitHub Exploit DB Packet Storm
196253 5 警告 PrivaWall - PrivaWall Antivirus のスキャナエンジンにおけるマルウェアの検出を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1907 2012-03-29 15:43 2012-03-28 Show GitHub Exploit DB Packet Storm
196254 6.4 警告 MaraDNS - MaraDNS における無効なドメイン名の継続的な名前解決を可能にされる脆弱性 CWE-DesignError
CVE-2012-1570 2012-03-29 15:25 2012-03-17 Show GitHub Exploit DB Packet Storm
196255 5.8 警告 ヒューレット・パッカード - HP-UX の WBEM 実装におけるアクセス権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-0126 2012-03-29 14:32 2012-03-27 Show GitHub Exploit DB Packet Storm
196256 3.3 注意 ヒューレット・パッカード - HP-UX の WBEM 実装におけるアクセス権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-0125 2012-03-29 14:32 2012-03-27 Show GitHub Exploit DB Packet Storm
196257 3.6 注意 富士通 - 富士通 Interstage List Works における拒否型アクセス権の設定が有効にならない脆弱性 CWE-264
認可・権限・アクセス制御 		- 2012-03-29 14:09 2012-03-26 Show GitHub Exploit DB Packet Storm
196258 4.3 警告 アドビシステムズ
日立		 - Adobe RoboHelp および RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2133 2012-03-28 10:30 2011-08-9 Show GitHub Exploit DB Packet Storm
196259 4.3 警告 アドビシステムズ
日立		 - Adobe RoboHelp および RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0613 2012-03-28 10:22 2011-05-12 Show GitHub Exploit DB Packet Storm
196260 5 警告 Zikula Foundation - Zikula における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-3826 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 5:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2271 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: tracing/probes: Fix MAX_TRACE_ARGS limit handling When creating a trace_probe we would set nr_args prior to truncating the argume… CWE-476
 NULL Pointer Dereference 		CVE-2024-50132 2024-11-8 06:32 2024-11-6 Show GitHub Exploit DB Packet Storm
2272 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stack_top() for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do. If … CWE-476
 NULL Pointer Dereference 		CVE-2024-50133 2024-11-8 06:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2273 4.8 MEDIUM
Network 		kevonadonis wp_abstracts Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kevon Adonis WP Abstracts allows Stored XSS.This issue affects WP Abstracts: from n/a thro… CWE-79
Cross-site Scripting 		CVE-2024-50411 2024-11-8 06:09 2024-10-29 Show GitHub Exploit DB Packet Storm
2274 6.1 MEDIUM
Network 		rafasashi todo_custom_field Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Rafasashi Todo Custom Field allows Reflected XSS.This issue affects Todo Custom Field: fro… CWE-79
Cross-site Scripting 		CVE-2024-49642 2024-11-8 05:59 2024-10-29 Show GitHub Exploit DB Packet Storm
2275 5.4 MEDIUM
Network 		basticom framework The Basticom Framework plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.5.0 due to insufficient input sanitization and ou… CWE-79
Cross-site Scripting 		CVE-2024-9443 2024-11-8 05:56 2024-11-5 Show GitHub Exploit DB Packet Storm
2276 6.5 MEDIUM
Network 		liferay liferay_portal
digital_experience_platform 		The Document and Media widget In Liferay Portal 7.2.0 through 7.3.6, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 13, and older unsupported versions,… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-25143 2024-11-8 05:55 2024-02-8 Show GitHub Exploit DB Packet Storm
2277 5.9 MEDIUM
Network 		wolfssl wolfssl wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Attack, new variation of a timing Bleichenbacher style attack, when built with the following options to configure: --enable-all CFL… CWE-203
 Information Exposure Through Discrepancy 		CVE-2023-6935 2024-11-8 05:41 2024-02-10 Show GitHub Exploit DB Packet Storm
2278 - - - An issue in Linux Server Heimdall v.2.6.1 allows a remote attacker to execute arbitrary code via a crafted script to the Add new application. - CVE-2024-51358 2024-11-8 05:35 2024-11-6 Show GitHub Exploit DB Packet Storm
2279 4.3 MEDIUM
Network 		shaon post_from_frontend The Post From Frontend WordPress plugin through 1.0.0 does not have CSRF check when deleting posts, which could allow attackers to make logged in admin perform such action via a CSRF attack CWE-352
 Origin Validation Error 		CVE-2024-9689 2024-11-8 05:35 2024-11-5 Show GitHub Exploit DB Packet Storm
2280 - - - util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalanced comment string. - CVE-2024-47855 2024-11-8 05:35 2024-10-4 Show GitHub Exploit DB Packet Storm