Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 2, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198681 6.4 警告 シスコシステムズ - Cisco Unified Communications Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-1610 2011-12-1 10:41 2011-04-27 Show GitHub Exploit DB Packet Storm
198682 8.5 危険 シスコシステムズ - Cisco Unified Communications Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-1609 2011-12-1 10:40 2011-04-27 Show GitHub Exploit DB Packet Storm
198683 6.5 警告 シスコシステムズ - Cisco Unified Communications Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-1607 2011-12-1 10:40 2011-04-27 Show GitHub Exploit DB Packet Storm
198684 7.8 危険 シスコシステムズ - Cisco Unified Communications Manager におけるサービス運用妨害 (プロセス障害) の脆弱性 CWE-noinfo
情報不足
CVE-2011-1606 2011-12-1 10:38 2011-04-27 Show GitHub Exploit DB Packet Storm
198685 7.8 危険 シスコシステムズ - Cisco Unified Communications Manager におけるサービス運用妨害 (プロセス障害) の脆弱性 CWE-noinfo
情報不足
CVE-2011-1605 2011-12-1 10:36 2011-04-27 Show GitHub Exploit DB Packet Storm
198686 7.1 危険 シスコシステムズ - Cisco Unified Communications Manager におけるメモリリークの脆弱性 CWE-399
リソース管理の問題
CVE-2011-1604 2011-12-1 10:35 2011-04-27 Show GitHub Exploit DB Packet Storm
198687 4.3 警告 John Godley - WordPress 用 Redirection プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4562 2011-11-30 16:50 2011-11-28 Show GitHub Exploit DB Packet Storm
198688 4.3 警告 codefuture - CF Image Hosting Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4572 2011-11-30 16:38 2011-11-29 Show GitHub Exploit DB Packet Storm
198689 7.5 危険 EA Improved - Estate Agent コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-4571 2011-11-30 16:37 2011-11-29 Show GitHub Exploit DB Packet Storm
198690 7.5 危険 Takeaweb - Time Returns コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-4570 2011-11-30 16:37 2011-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 2, 2024, 4:17 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
481 6.4 MEDIUM
Network
- - The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG File uploads in all versions up to, and… New CWE-79
Cross-site Scripting
CVE-2024-10367 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
482 10.0 CRITICAL
Network
- - IDExpert from CHANGING Information Technology does not properly validate a specific parameter in the administrator interface, allowing remote attackers with administrative privileges to inject and ex… New CWE-78
OS Command 
CVE-2024-10653 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
483 6.1 MEDIUM
Network
- - IDExpert from CHANGING Information Technology does not properly validate a parameter for a specific functionality, allowing unauthenticated remote attackers to inject JavsScript code and perform Refl… New CWE-79
Cross-site Scripting
CVE-2024-10652 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
484 4.9 MEDIUM
Network
- - IDExpert from CHANGING Information Technology does not properly validate a specific parameter in the administrator interface, allowing remote attackers with administrator privileges to exploit this v… New CWE-36
 Absolute Path Traversal
CVE-2024-10651 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
485 6.4 MEDIUM
Network
- - The Group Chat & Video Chat by AtomChat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's atomchat shortcode in all versions up to, and including, 1.1.5 due to insuff… New CWE-79
Cross-site Scripting
CVE-2024-10232 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
486 - - - A vulnerability has been found in Tongda OA 2017 up to 11.10 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /general/address/private/address/query/… New CWE-89
SQL Injection
CVE-2024-10601 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
487 - - - A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.6. Affected is an unknown function of the file pda/appcenter/submenu.php. The manipulation of the argument appi… New CWE-89
SQL Injection
CVE-2024-10600 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
488 6.4 MEDIUM
Network
- - The SIP Reviews Shortcode for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'no_of_reviews' attribute in the woocommerce_reviews shortcode in all versions up t… New CWE-89
SQL Injection
CVE-2024-6480 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
489 - - - The SIP Reviews Shortcode for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'no_of_reviews' attribute in the woocommerce_reviews shortcode in all versions up to, and includi… New CWE-89
SQL Injection
CVE-2024-6479 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
490 - - - A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7. This issue affects some unknown processing of the file /inc/package_static_resources.php. The manipu… New CWE-400
 Uncontrolled Resource Consumption
CVE-2024-10599 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm