Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 28, 2024, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
197981	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager におけるサービス運用妨害 (プロセス障害) の脆弱性	CWE-noinfo 情報不足	CVE-2011-1606	2011-12-1 10:38	2011-04-27	Show	GitHub Exploit DB Packet Storm

197982	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager におけるサービス運用妨害 (プロセス障害) の脆弱性	CWE-noinfo 情報不足	CVE-2011-1605	2011-12-1 10:36	2011-04-27	Show	GitHub Exploit DB Packet Storm

197983	7.1	危険	シスコシステムズ	-	Cisco Unified Communications Manager におけるメモリリークの脆弱性	CWE-399 リソース管理の問題	CVE-2011-1604	2011-12-1 10:35	2011-04-27	Show	GitHub Exploit DB Packet Storm

197984	4.3	警告	John Godley	-	WordPress 用 Redirection プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4562	2011-11-30 16:50	2011-11-28	Show	GitHub Exploit DB Packet Storm

197985	4.3	警告	codefuture	-	CF Image Hosting Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4572	2011-11-30 16:38	2011-11-29	Show	GitHub Exploit DB Packet Storm

197986	7.5	危険	EA Improved	-	Estate Agent コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4571	2011-11-30 16:37	2011-11-29	Show	GitHub Exploit DB Packet Storm

197987	7.5	危険	Takeaweb	-	Time Returns コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4570	2011-11-30 16:37	2011-11-29	Show	GitHub Exploit DB Packet Storm

197988	7.5	危険	tommykent1210	-	MyBB Forum 用 Userbar プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4569	2011-11-30 16:36	2011-11-29	Show	GitHub Exploit DB Packet Storm

197989	4.3	警告	WordPress.org	-	WordPress 用 Flowplayer プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4568	2011-11-30 16:35	2011-11-29	Show	GitHub Exploit DB Packet Storm

197990	4.3	警告	Zen Cart	-	Zen Cart におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4567	2011-11-30 16:34	2011-11-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 28, 2024, 12:12 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
461	-	-	-	In mm_GetMobileIdIndexForNsUpdate of mm_GmmPduCodec.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional ex…	-	CVE-2024-47012	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

462	-	-	-	there is a possible Null Pointer Dereference (modem crash) due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interacti…	-	CVE-2024-44101	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

463	-	-	-	There is a possible Local bypass of user interaction due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction…	-	CVE-2024-44099	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

464	-	-	-	A vulnerability was found in ESAFENET CDG 5. It has been rated as critical. This issue affects the function actionPassDecryptApplication1 of the file /com/esafenet/servlet/client/DecryptApplicationSe…	CWE-89 SQL Injection	CVE-2024-10377	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

465	-	-	-	A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects the function actionPassOrNotAutoSign of the file /com/esafenet/servlet/service/processsign/Au…	CWE-89 SQL Injection	CVE-2024-10376	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

466	-	-	-	A vulnerability was found in code-projects Hospital Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/add-doctor.php. The manipulatio…	CWE-89 SQL Injection	CVE-2024-10350	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

467	-	-	-	Pterodactyl is a free, open-source game server management panel. When a user disables two-factor authentication via the Panel, a `DELETE` request with their current password in a query parameter will…	CWE-313 Cleartext Storage in a File or on Disk	CVE-2024-49762	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

468	-	-	-	OpenRefine is a free, open source tool for working with messy data. The load-language command expects a `lang` parameter from which it constructs the path of the localization file to load, of the for…	CWE-22 Path Traversal	CVE-2024-49760	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

469	-	-	-	The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Prior to version 3.12.3, when the loggin…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-49750	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

470	-	-	-	ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. In version 1.2.4 and all prior versions, the API endpoint `http://<Zima_Server_IP:PORT>/v2_1/file` in Zi…	CWE-552 Files or Directories Accessible to External Parties	CVE-2024-49359	2024-10-25 21:56	2024-10-25	Show	GitHub Exploit DB Packet Storm