Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198481 1.2 注意 アップル - Apple iOS の Siri におけるロック状態を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-0645 2012-03-13 15:04 2012-03-8 Show GitHub Exploit DB Packet Storm
198482 6.9 警告 アップル - Apple iOS のパスコードロック機能におけるパスコード要求を回避される脆弱性 CWE-362
競合状態
CVE-2012-0644 2012-03-13 14:58 2012-03-8 Show GitHub Exploit DB Packet Storm
198483 5 警告 アップル - Apple iOS の CFNetwork における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2012-0641 2012-03-13 14:23 2012-03-8 Show GitHub Exploit DB Packet Storm
198484 4 警告 Redmine - Redmine におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-0327 2012-03-13 12:02 2012-03-13 Show GitHub Exploit DB Packet Storm
198485 2.6 注意 Tetsuya Aoyama - twicca におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-0326 2012-03-13 12:02 2012-03-13 Show GitHub Exploit DB Packet Storm
198486 7.6 危険 アップル - Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2012-0634 2012-03-13 10:14 2012-03-8 Show GitHub Exploit DB Packet Storm
198487 7.5 危険 アップル - 複数の Apple 製品で使用される libresolv における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2011-3453 2012-03-12 14:14 2012-02-2 Show GitHub Exploit DB Packet Storm
198488 7.6 危険 アップル - Apple Safari における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2011-3845 2012-03-9 15:48 2012-03-8 Show GitHub Exploit DB Packet Storm
198489 4.3 警告 アップル - Apple Safari におけるアドレスバーを偽造される脆弱性 CWE-20
不適切な入力確認
CVE-2011-3844 2012-03-9 15:43 2012-03-8 Show GitHub Exploit DB Packet Storm
198490 5 警告 シマンテック - Symantec pcAnywhere 製品の awhost32 サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2012-0292 2012-03-9 15:06 2012-03-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259061 - xyzscripts newsletter_manager Multiple cross-site request forgery (CSRF) vulnerabilities in the Newsletter Manager plugin 1.0.2 and earlier for WordPress allow remote attackers to hijack the authentication of administrators for r… CWE-352
 Origin Validation Error
CVE-2012-6629 2014-01-18 03:51 2014-01-17 Show GitHub Exploit DB Packet Storm
259062 - xyzscripts newsletter_manager Multiple cross-site scripting (XSS) vulnerabilities in the Newsletter Manager plugin before 1.0.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) xyz_em_campNa… CWE-79
Cross-site Scripting
CVE-2012-6628 2014-01-18 03:50 2014-01-17 Show GitHub Exploit DB Packet Storm
259063 - xyzscripts newsletter_manager Cross-site scripting (XSS) vulnerability in admin/test_mail.php in the Newsletter Manager plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the… CWE-79
Cross-site Scripting
CVE-2012-6627 2014-01-18 03:35 2014-01-17 Show GitHub Exploit DB Packet Storm
259064 - cisco webex_meetings_server The web portal in the Enterprise License Manager component in Cisco WebEx Meetings Server allows remote authenticated users to discover the cleartext administrative password by reading HTML source co… CWE-255
Credentials Management
CVE-2013-6687 2014-01-18 00:12 2014-01-17 Show GitHub Exploit DB Packet Storm
259065 - wireshark wireshark epan/dissectors/packet-bssgp.c in the BSSGP dissector in Wireshark 1.10.x before 1.10.4 incorrectly relies on a global variable, which allows remote attackers to cause a denial of service (applicatio… CWE-20
 Improper Input Validation 
CVE-2013-7113 2014-01-17 14:20 2013-12-20 Show GitHub Exploit DB Packet Storm
259066 - symantec web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
Multiple cross-site scripting (XSS) vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allow remote attackers to inject arbitrary web script or HTML vi… CWE-79
Cross-site Scripting
CVE-2013-4670 2014-01-17 14:17 2013-08-1 Show GitHub Exploit DB Packet Storm
259067 - symantec web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
Cross-site request forgery (CSRF) vulnerability in the management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allows remote authenticated users to hijack the authentication of un… CWE-352
 Origin Validation Error
CVE-2013-4671 2014-01-17 14:17 2013-08-1 Show GitHub Exploit DB Packet Storm
259068 - symantec web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 has an incorrect sudoers file, which allows local users to bypass intended access restrictions via a command. CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-4672 2014-01-17 14:17 2013-08-1 Show GitHub Exploit DB Packet Storm
259069 - symantec web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allows remote attackers to execute arbitrary commands by injecting a command into an application script. CWE-78
OS Command 
CVE-2013-1616 2014-01-17 14:13 2013-08-1 Show GitHub Exploit DB Packet Storm
259070 - symantec web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allow remote authenticated administrators to execute arbitrary SQL commands v… CWE-89
SQL Injection
CVE-2013-1617 2014-01-17 14:13 2013-08-1 Show GitHub Exploit DB Packet Storm