Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 24, 2024, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198801 7.5 危険 ロジテック株式会社 - LAN-W300N/R シリーズにおけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-1250 2012-05-25 12:04 2012-05-25 Show GitHub Exploit DB Packet Storm
198802 4.3 警告 Roundcube.net - Roundcube Webmail において任意のスクリプトが実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1253 2012-05-25 12:03 2012-05-25 Show GitHub Exploit DB Packet Storm
198803 4.3 警告 サイベース - Sybase 製 EAServer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4340 2012-05-25 12:02 2012-05-25 Show GitHub Exploit DB Packet Storm
198804 4.3 警告 RSSOwl - RSSOwl において任意のスクリプトが実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1252 2012-05-25 12:01 2012-05-25 Show GitHub Exploit DB Packet Storm
198805 7.5 危険 SIRINI.NET - GR Board における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-5091 2012-05-25 11:53 2012-05-24 Show GitHub Exploit DB Packet Storm
198806 6.4 警告 SIRINI.NET - GR Board におけるデータを変更または削除される脆弱性 CWE-287
不適切な認証
CVE-2011-5090 2012-05-25 11:52 2012-05-24 Show GitHub Exploit DB Packet Storm
198807 5 警告 Tornado - Tornado の tornado.web.RequestHandler.set_header 関数における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認
CVE-2012-2374 2012-05-25 11:26 2012-05-23 Show GitHub Exploit DB Packet Storm
198808 6.4 警告 Gliffy - Atlassian JIRA および Atlassian Confluence 用 Gliffy プラグインにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-2928 2012-05-24 13:42 2012-05-22 Show GitHub Exploit DB Packet Storm
198809 4 警告 TM Software - Atlassian JIRA 用 TM Software Tempo プラグインにおけるサービス運用妨害 (リソース消費)の脆弱性 CWE-399
リソース管理の問題
CVE-2012-2927 2012-05-24 13:41 2012-05-22 Show GitHub Exploit DB Packet Storm
198810 4.3 警告 NetWebLogic - WordPress 用 Login With Ajax プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2759 2012-05-24 13:38 2012-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Dec. 24, 2024, 4:05 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
561 - - - A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in t… - CVE-2024-12194 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
562 - - - A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a crash, cause dat… - CVE-2024-12193 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
563 - - - A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a crash, cause data… - CVE-2024-12192 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
564 - - - A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a crash, cause dat… - CVE-2024-12191 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
565 - - - A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a Heap-based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash,… - CVE-2024-12179 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
566 - - - A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in t… - CVE-2024-12178 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
567 - - - A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a crash, cause dat… - CVE-2024-11422 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
568 - - - Default credentials are used in the above listed BD Diagnostic Solutions products. If exploited, threat actors may be able to access, modify or delete data, including sensitive information such as pr… - CVE-2024-10476 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
569 - - - A NULL pointer dereference in the plugins_call_handle_uri_clean function of D-Link DAP-1520 REVA_FIRMWARE_1.10B04_BETA02_HOTFIX allows attackers to cause a Denial of Service (DoS) via a crafted HTTP … - CVE-2024-36831 2024-12-18 01:15 2024-12-18 Show GitHub Exploit DB Packet Storm
570 - - - An HTML injection vulnerability in Sunbird DCIM dcTrack 9.1.2 allows attackers authenticated as administrators to inject arbitrary HTML code in an admin screen. - CVE-2024-37773 2024-12-18 01:15 2024-12-17 Show GitHub Exploit DB Packet Storm