Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 9, 2024, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198291 5.8 警告 4homepages - 4images の admin/index.php におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認
CVE-2012-1023 2012-02-10 11:10 2012-02-8 Show GitHub Exploit DB Packet Storm
198292 7.5 危険 4homepages - 4images の admin/categories.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-1022 2012-02-10 11:08 2012-02-8 Show GitHub Exploit DB Packet Storm
198293 4.3 警告 4homepages - 4images の admin/categories.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1021 2012-02-10 10:35 2012-02-8 Show GitHub Exploit DB Packet Storm
198294 4.3 警告 Overseas - NexorONE Online Banking の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1020 2012-02-10 10:29 2012-02-8 Show GitHub Exploit DB Packet Storm
198295 4.3 警告 XWiki - XWiki Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1019 2012-02-10 10:16 2012-02-8 Show GitHub Exploit DB Packet Storm
198296 4.3 警告 D-Mack Media - Joomla! 用 D-Mack Media Currency Converter モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1018 2012-02-10 10:15 2012-02-8 Show GitHub Exploit DB Packet Storm
198297 7.5 危険 Secure Ideas - Basic Analysis and Security Engine の base_qry_main.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-1017 2012-02-10 10:14 2012-02-8 Show GitHub Exploit DB Packet Storm
198298 4.3 警告 ]project-open[ - Project Open にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1027 2012-02-9 18:34 2012-02-6 Show GitHub Exploit DB Packet Storm
198299 4.3 警告 Sphinx Software - Sphinx Software Mobile Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1005 2012-02-9 16:52 2012-02-7 Show GitHub Exploit DB Packet Storm
198300 7.5 危険 Hudong - HDWiki の attachement.php における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2011-5077 2012-02-9 16:01 2012-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 9, 2024, 6:05 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
931 - - - In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions Reported by syzbot: HEAD commit: 90c911ad Merge tag 'fixe… Update - CVE-2021-47126 2024-11-7 02:35 2024-03-16 Show GitHub Exploit DB Packet Storm
932 - - - HackMD CodiMD <2.5.2 is vulnerable to Denial of Service. Update - CVE-2024-22778 2024-11-7 02:35 2024-02-22 Show GitHub Exploit DB Packet Storm
933 - - - In Hazelcast Platform through 5.3.4, a security issue exists within the SQL mapping for the CSV File Source connector. This issue arises from inadequate permission checking, which could enable unauth… Update - CVE-2023-45860 2024-11-7 02:35 2024-02-16 Show GitHub Exploit DB Packet Storm
934 5.5 MEDIUM
Local
google android In visitUris of Notification.java, there is a possible way to leak image data across user boundaries due to a confused deputy. This could lead to local information disclosure with no additional execu… Update NVD-CWE-Other
CVE-2023-21239 2024-11-7 02:35 2023-07-13 Show GitHub Exploit DB Packet Storm
935 5.5 MEDIUM
Local
google android In visitUris of RemoteViews.java, there is a possible leak of images between users due to a confused deputy. This could lead to local information disclosure with no additional execution privileges ne… Update NVD-CWE-Other
CVE-2023-21238 2024-11-7 02:35 2023-07-13 Show GitHub Exploit DB Packet Storm
936 5.5 MEDIUM
Local
google android In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. This could lead to local escalatio… Update NVD-CWE-noinfo
CVE-2023-20942 2024-11-7 02:35 2023-07-13 Show GitHub Exploit DB Packet Storm
937 9.8 CRITICAL
Network
google android In getPendingIntentLaunchFlags of ActivityOptions.java, there is a possible elevation of privilege due to a confused deputy with no additional execution privileges needed. User interaction is not nee… Update NVD-CWE-Other
CVE-2023-20918 2024-11-7 02:35 2023-07-13 Show GitHub Exploit DB Packet Storm
938 9.8 CRITICAL
Network
codezips isp_management_system A vulnerability was found in Codezips ISP Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file pay.php. The manipulation of the argument … Update CWE-89
SQL Injection
CVE-2024-10751 2024-11-7 02:34 2024-11-4 Show GitHub Exploit DB Packet Storm
939 4.8 MEDIUM
Network
podsfoundation pods The Pods WordPress plugin before 3.2.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even w… Update CWE-79
Cross-site Scripting
CVE-2024-9883 2024-11-7 02:32 2024-11-5 Show GitHub Exploit DB Packet Storm
940 8.8 HIGH
Network
esafenet cdg A vulnerability has been found in ESAFENET CDG 5 and classified as critical. This vulnerability affects the function getOneFileDirectory of the file /com/esafenet/servlet/fileManagement/FileDirectory… Update CWE-89
SQL Injection
CVE-2024-10502 2024-11-7 02:20 2024-10-30 Show GitHub Exploit DB Packet Storm