Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Sept. 22, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198601	5	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2190	2010-08-17 17:36	2010-05-30	Show	GitHub Exploit DB Packet Storm

198602	6.4	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2010-2191	2010-08-17 17:35	2010-05-31	Show	GitHub Exploit DB Packet Storm

198603	5	警告	The PHP Group	-	PHP の Zend Engine における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1914	2010-08-17 17:34	2010-05-8	Show	GitHub Exploit DB Packet Storm

198604	6.4	警告	The PHP Group	-	PHP の sysvshm 拡張における任意のメモリアドレスを書かれる脆弱性	CWE-399 リソース管理の問題	CVE-2010-1861	2010-08-17 17:33	2010-05-5	Show	GitHub Exploit DB Packet Storm

198605	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0654	2010-08-16 18:57	2010-02-18	Show	GitHub Exploit DB Packet Storm

198606	7.6	危険	アップル	-	Apple Safari における window オブジェクトの処理に脆弱性	CWE-399 リソース管理の問題	CVE-2010-1939	2010-08-16 15:08	2010-05-12	Show	GitHub Exploit DB Packet Storm

198607	7.6	危険	IBM	-	IBM Lotus Domino Web Access の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0919	2010-08-16 15:05	2010-03-3	Show	GitHub Exploit DB Packet Storm

198608	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における重要な cross-origin 情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1207	2010-08-13 17:15	2010-07-20	Show	GitHub Exploit DB Packet Storm

198609	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクローム特権で任意の JavaScript コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1215	2010-08-13 17:14	2010-07-20	Show	GitHub Exploit DB Packet Storm

198610	7.8	危険	マイクロソフト	-	Microsoft Windows におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1892	2010-08-13 14:01	2010-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Sept. 23, 2024, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1861	6.3	MEDIUM Network	crocoblock	jetelements	Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13.	CWE-862 Missing Authorization	CVE-2023-48761	2024-09-16 22:27	2024-06-19	Show	GitHub Exploit DB Packet Storm

1862	9.8	CRITICAL Network	crocoblock	jetelements	Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13.	CWE-862 Missing Authorization	CVE-2023-48760	2024-09-16 22:26	2024-06-19	Show	GitHub Exploit DB Packet Storm

1863	7.5	HIGH Network	crocoblock	jetelements	Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13.	CWE-862 Missing Authorization	CVE-2023-48759	2024-09-16 22:25	2024-06-19	Show	GitHub Exploit DB Packet Storm

1864	9.8	CRITICAL Network	project_team	tmall_demo	A vulnerability, which was classified as critical, was found in Mini-Tmall up to 20240901. Affected is the function rewardMapper.select of the file tmall/admin/order/1/1. The manipulation of the argu…	CWE-89 SQL Injection	CVE-2024-8568	2024-09-16 22:22	2024-09-8	Show	GitHub Exploit DB Packet Storm

1865	9.8	CRITICAL Network	phpvibe	phpvibe	A vulnerability, which was classified as critical, was found in PHPVibe 11.0.46. Affected is an unknown function of the file /app/uploading/upload-mp3.php of the component Media Upload Page. The mani…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-6083	2024-09-16 22:21	2024-06-18	Show	GitHub Exploit DB Packet Storm

1866	4.8	MEDIUM Network	anujk305	bus_pass_management_system	phpgurukul Bus Pass Management System 1.0 is vulnerable to Cross-site scripting (XSS) in /admin/pass-bwdates-reports-details.php via fromdate and todate parameters.	CWE-79 Cross-site Scripting	CVE-2024-44798	2024-09-16 22:19	2024-09-14	Show	GitHub Exploit DB Packet Storm

1867	7.8	HIGH Local	adobe	illustrator	Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user.…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2024-41857	2024-09-16 22:18	2024-09-13	Show	GitHub Exploit DB Packet Storm

1868	5.5	MEDIUM Local	adobe	after_effects	After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to…	CWE-125 Out-of-bounds Read	CVE-2024-41867	2024-09-16 22:15	2024-09-13	Show	GitHub Exploit DB Packet Storm

1869	7.0	HIGH Local	adobe	acrobat acrobat_dc acrobat_reader acrobat_reader_dc	Acrobat Reader versions 20.005.30636, 24.002.21005, 24.001.30159, 20.005.30655, 24.002.20965, 24.002.20964, 24.001.30123, 24.003.20054 and earlier are affected by a Time-of-check Time-of-use (TOCTOU)…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2024-39420	2024-09-16 22:15	2024-08-15	Show	GitHub Exploit DB Packet Storm

1870	4.3	MEDIUM Network	adobe	commerce magento	Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged att…	NVD-CWE-noinfo	CVE-2024-39412	2024-09-16 22:15	2024-08-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed