Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 15, 2024, 6:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198671 4.3 警告 Broadwin
アドバンテック株式会社
- Advantech/BroadWin WebAccess の bwview.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4522 2012-02-23 10:48 2012-02-21 Show GitHub Exploit DB Packet Storm
198672 7.5 危険 Broadwin
アドバンテック株式会社
- Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-4521 2012-02-23 10:40 2012-02-21 Show GitHub Exploit DB Packet Storm
198673 7.5 危険 アドバンテック株式会社 - 複数の Advantech OPC Server 製品の OPC Server ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-1914 2012-02-23 10:38 2012-02-21 Show GitHub Exploit DB Packet Storm
198674 10 危険 Novell - Windows 上で稼働する Novell iPrint Client におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-4187 2012-02-23 10:02 2012-02-9 Show GitHub Exploit DB Packet Storm
198675 9.3 危険 Novell - Windows 上で稼働する Novell iPrint Client におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-4186 2012-02-23 10:01 2012-02-9 Show GitHub Exploit DB Packet Storm
198676 10 危険 Novell - Windows 上で稼働する Novell iPrint Client における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-4185 2012-02-23 10:01 2012-02-9 Show GitHub Exploit DB Packet Storm
198677 6 警告 Pluck CMS - pluck の admin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-1227 2012-02-22 16:26 2012-02-21 Show GitHub Exploit DB Packet Storm
198678 6.8 警告 Antonio de Vincentiis - GAzie の modules/config/admin_utente.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-1220 2012-02-22 16:24 2012-02-21 Show GitHub Exploit DB Packet Storm
198679 4.3 警告 freelancerKit - freelancerKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1219 2012-02-22 16:18 2012-02-21 Show GitHub Exploit DB Packet Storm
198680 7.5 危険 freelancerKit - freelancerKit における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-1218 2012-02-22 16:15 2012-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 15, 2024, 4:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1031 6.4 MEDIUM
Network
- - The Social Proof (Testimonial) Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's spslider-block shortcode in all versions up to, and including, 2.2.4 due to in… New CWE-79
Cross-site Scripting
CVE-2024-8985 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1032 6.1 MEDIUM
Network
- - The AJAX Login and Registration modal popup + inline form plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL … New CWE-79
Cross-site Scripting
CVE-2024-8874 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1033 - - - Argument injection in Ivanti Connect Secure before version 22.7R2.1 and 9.1R18.7 and Ivanti Policy Secure before version 22.7R1.1 allows a remote authenticated attacker with admin privileges to achie… New - CVE-2024-39712 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1034 - - - Argument injection in Ivanti Connect Secure before version 22.7R2.1 and 9.1R18.7 and Ivanti Policy Secure before version 22.7R1.1 allows a remote authenticated attacker with admin privileges to achie… New - CVE-2024-39711 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1035 - - - Argument injection in Ivanti Connect Secure before version 22.7R2 and 9.1R18.7 and Ivanti Policy Secure before version 22.7R1.1 allows a remote authenticated attacker with admin privileges to achieve… New - CVE-2024-39710 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1036 - - - Incorrect file permissions in Ivanti Connect Secure before version 22.6R2 and Ivanti Policy Secure before version 22.6R1 allow a local authenticated attacker to escalate their privileges. New - CVE-2024-39709 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1037 - - - Argument injection in Ivanti Connect Secure before version 22.7R2.2 and 9.1R18.9 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker with admin privileges to achie… New - CVE-2024-38656 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1038 - - - Argument injection in Ivanti Connect Secure before version 22.7R2.1 and Ivanti Policy Secure before version 22.7R1.1 allows a remote authenticated attacker with admin privileges to achieve remote cod… New - CVE-2024-38655 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1039 - - - Improper bounds checking in Ivanti Secure Access Client before version 22.7R3 allows a local authenticated attacker with admin privileges to cause a denial of service. New - CVE-2024-38654 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1040 - - - An out-of-bounds write in IPsec of Ivanti Connect Secure before version 22.7R2.1 allows a remote unauthenticated attacker to cause a denial of service. New - CVE-2024-38649 2024-11-13 11:15 2024-11-13 Show GitHub Exploit DB Packet Storm