Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 22, 2024, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197971 4.3 警告 IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2748 2011-11-7 15:14 2009-10-24 Show GitHub Exploit DB Packet Storm
197972 7.2 危険 Google - Google App Engine Python SDK の sandbox 環境におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4213 2011-11-7 09:51 2011-10-30 Show GitHub Exploit DB Packet Storm
197973 7.2 危険 Google - Google App Engine Python SDK の sandbox 環境におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4212 2011-11-7 09:50 2011-10-30 Show GitHub Exploit DB Packet Storm
197974 7.2 危険 Google - Google App Engine Python SDK の sandbox 環境におけるアクセス制限を回避される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4211 2011-11-7 09:49 2011-10-30 Show GitHub Exploit DB Packet Storm
197975 6.8 警告 Google - Google App Engine Python SDK の SDK Console におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-1364 2011-11-7 09:48 2011-10-30 Show GitHub Exploit DB Packet Storm
197976 5 警告 IBM - IBM WebSphere Application Server (WAS) における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2747 2011-11-7 09:46 2009-10-24 Show GitHub Exploit DB Packet Storm
197977 5 警告 IBM - IBM Lotus Sametime における構成設定の情報を読まれる脆弱性 CWE-16
環境設定 		CVE-2011-1370 2011-11-7 09:46 2011-10-29 Show GitHub Exploit DB Packet Storm
197978 5 警告 IBM - IBM WebSphere Application Server におけるファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-1368 2011-11-7 09:45 2011-10-29 Show GitHub Exploit DB Packet Storm
197979 4.3 警告 IBM - IBM WebSphere MQ におけるサービス運用妨害 (ディスク消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0780 2011-11-7 09:44 2011-10-29 Show GitHub Exploit DB Packet Storm
197980 9.3 危険 シスコシステムズ - Cisco WebEx Recording Format (WRF) player の ATAS32 の処理機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4004 2011-11-4 15:14 2011-10-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 22, 2024, 8:17 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1 - - - A post-authentication SQL Injection vulnerability within the filters parameter of the extensions/agents_modules_csv functionality. This issue affects Pandora FMS: from 700 through <777.3. New - CVE-2024-9987 2024-10-22 18:15 2024-10-22 Show GitHub Exploit DB Packet Storm
2 - - - A post-authentication arbitrary file read vulnerability within the server plugins section in plugin edition feature. This issue affects Pandora FMS: from 700 through <777.3. New - CVE-2024-35308 2024-10-22 18:15 2024-10-22 Show GitHub Exploit DB Packet Storm
3 5.5 MEDIUM
Network 		- - The Category and Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_category_image' parameter in versions up to, and including, 1.0.0 due to insufficient input… New - CVE-2024-9591 2024-10-22 17:15 2024-10-22 Show GitHub Exploit DB Packet Storm
4 5.5 MEDIUM
Network 		- - The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image meta field value in the 'wpaft_add_meta_textinput' function in versions up to, an… New CWE-79
Cross-site Scripting 		CVE-2024-9590 2024-10-22 17:15 2024-10-22 Show GitHub Exploit DB Packet Storm
5 5.5 MEDIUM
Network 		- - The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'new_meta_name' parameter in the 'wpaft_option_page' function in versions up to, and in… New CWE-79
Cross-site Scripting 		CVE-2024-9589 2024-10-22 17:15 2024-10-22 Show GitHub Exploit DB Packet Storm
6 5.4 MEDIUM
Network 		- - The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on… New CWE-352
 Origin Validation Error 		CVE-2024-9588 2024-10-22 17:15 2024-10-22 Show GitHub Exploit DB Packet Storm
7 - - - The News Kit Elementor Addons plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.1 via the render function in includes/widgets/canvas-menu/… New CWE-200
Information Exposure 		CVE-2024-9541 2024-10-22 17:15 2024-10-22 Show GitHub Exploit DB Packet Storm
8 - - - In the Linux kernel, the following vulnerability has been resolved: nfc: nci: fix possible NULL pointer dereference in send_acknowledge() Handle memory allocation failure from nci_skb_alloc() (call… New - CVE-2023-52919 2024-10-22 17:15 2024-10-22 Show GitHub Exploit DB Packet Storm
9 - - - In the Linux kernel, the following vulnerability has been resolved: media: pci: cx23885: check cx23885_vdev_init() return cx23885_vdev_init() can return a NULL pointer, but that pointer is used in … New - CVE-2023-52918 2024-10-22 17:15 2024-10-22 Show GitHub Exploit DB Packet Storm
10 8.6 HIGH
Network 		- - The TeploBot - Telegram Bot for WP plugin for WordPress is vulnerable to sensitive information disclosure due to missing authorization checks on the 'service_process' function in all versions up to, … New CWE-200
Information Exposure 		CVE-2024-9627 2024-10-22 16:15 2024-10-22 Show GitHub Exploit DB Packet Storm