Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 7, 2024, 12:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196831 7.8 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (メモリ消費およびデバイスリロード、またはプロセス障害) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2072 2011-11-8 10:27 2011-09-28 Show GitHub Exploit DB Packet Storm
196832 7.8 危険 シスコシステムズ - Cisco IOS および IOS XE におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0945 2011-11-8 10:21 2011-09-28 Show GitHub Exploit DB Packet Storm
196833 7.8 危険 シスコシステムズ - Cisco IOS におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0944 2011-11-8 10:20 2011-09-28 Show GitHub Exploit DB Packet Storm
196834 7.8 危険 シスコシステムズ - Cisco IOS および IOS XE におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-0939 2011-11-8 10:18 2011-09-28 Show GitHub Exploit DB Packet Storm
196835 7.8 危険 シスコシステムズ - Cisco IOS および IOS XE におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-3282 2011-11-7 16:39 2011-09-28 Show GitHub Exploit DB Packet Storm
196836 7.8 危険 シスコシステムズ - Cisco IOS における運用サービス妨害 (デバイスのリロードまたはハング) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-3281 2011-11-7 16:39 2011-09-28 Show GitHub Exploit DB Packet Storm
196837 7.8 危険 シスコシステムズ - Cisco IOS の NAT 実装におけるサービス運用妨害 (メモリ消費またはデバイスのリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3280 2011-11-7 16:38 2011-09-28 Show GitHub Exploit DB Packet Storm
196838 7.8 危険 シスコシステムズ - Cisco IOS の provider-edge MPLS NAT 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3279 2011-11-7 16:38 2011-09-28 Show GitHub Exploit DB Packet Storm
196839 7.8 危険 シスコシステムズ - Cisco IOS および IOS XE の NAT 実装におけるサービス運用妨害 (デバイスのリロード) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-3278 2011-11-7 16:37 2011-09-28 Show GitHub Exploit DB Packet Storm
196840 7.8 危険 シスコシステムズ - Cisco IOS の NAT 実装におけるサービス運用妨害 (デバイスのリロード) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-3277 2011-11-7 16:37 2011-09-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 7, 2024, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
991 6.1 MEDIUM
Network 		outtheboxthemes beam_me_up_scotty The Beam me up Scotty – Back to Top Button plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions… CWE-79
Cross-site Scripting 		CVE-2024-8741 2024-10-3 01:37 2024-09-25 Show GitHub Exploit DB Packet Storm
992 8.8 HIGH
Network 		dineshkarki use_any_font Cross-Site Request Forgery (CSRF) vulnerability in Dnesscarkey Use Any Font allows Cross Site Request Forgery.This issue affects Use Any Font: from n/a through 6.3.08. CWE-352
 Origin Validation Error 		CVE-2024-47305 2024-10-3 01:35 2024-09-26 Show GitHub Exploit DB Packet Storm
993 8.8 HIGH
Network 		ansible-semaphore ansible_semaphore An issue in ansible semaphore v.2.8.90 allows a remote attacker to execute arbitrary code via a crafted payload to the extra variables parameter. NVD-CWE-noinfo
CVE-2023-39059 2024-10-3 01:35 2023-08-29 Show GitHub Exploit DB Packet Storm
994 8.8 HIGH
Network 		ferrislucas promptr A remote command execution (RCE) vulnerability in promptr v6.0.7 allows attackers to execute arbitrary commands via a crafted URL. CWE-94
Code Injection 		CVE-2024-46489 2024-10-3 01:24 2024-09-26 Show GitHub Exploit DB Packet Storm
995 6.1 MEDIUM
Network 		pierros kodex_posts_likes The Kodex Posts likes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including… CWE-79
Cross-site Scripting 		CVE-2024-8713 2024-10-3 01:22 2024-09-25 Show GitHub Exploit DB Packet Storm
996 9.8 CRITICAL
Network 		artbees jupiter_x_core The Jupiter X Core plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.7.5. This is due to improper authentication via the Social Login widget. This ma… CWE-306
Missing Authentication for Critical Function 		CVE-2024-7781 2024-10-3 01:21 2024-09-26 Show GitHub Exploit DB Packet Storm
997 5.5 MEDIUM
Local 		asg017 sqlite-vec sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow via the npy_token_next function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. CWE-787
 Out-of-bounds Write 		CVE-2024-46488 2024-10-3 01:21 2024-09-26 Show GitHub Exploit DB Packet Storm
998 9.8 CRITICAL
Network 		jianbo rest_api_to_miniprogram The REST API TO MiniProgram plugin for WordPress is vulnerable to privilege escalation via account takeovr in all versions up to, and including, 4.7.1 via the updateUserInfo() due to missing validati… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-8485 2024-10-3 01:19 2024-09-25 Show GitHub Exploit DB Packet Storm
999 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-5480 2024-10-3 01:15 2024-06-7 Show GitHub Exploit DB Packet Storm
1000 - - - The Image Uploader module in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and Liferay DXP 7.4 before update 16, 7.3 before update 4, 7.2 before fix pack 19, and older unsupp… - CVE-2024-26265 2024-10-3 01:15 2024-02-20 Show GitHub Exploit DB Packet Storm