Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Dec. 29, 2024, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198881	4.9	警告	Linux	-	Linux Kernel の ptrace_setxregs 関数における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2707	2012-05-28 16:24	2012-05-24	Show	GitHub Exploit DB Packet Storm

198882	4.9	警告	Linux	-	Linux Kernel の x86_assign_hw_event 関数におけるサービス運用妨害 (パニック) の脆弱性	CWE-189 数値処理の問題	CVE-2011-2521	2012-05-28 16:16	2012-05-24	Show	GitHub Exploit DB Packet Storm

198883	4.9	警告	Linux	-	Linux Kernel の tomoyo_mount_acl 関数におけるサービス運用妨害 (OOPS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2518	2012-05-28 15:43	2012-05-24	Show	GitHub Exploit DB Packet Storm

198884	7.5	危険	Google	-	Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-3115	2012-05-25 16:32	2012-05-23	Show	GitHub Exploit DB Packet Storm

198885	7.5	危険	Google	-	Google Chrome の PDF 機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3114	2012-05-25 16:26	2012-05-23	Show	GitHub Exploit DB Packet Storm

198886	7.5	危険	Google	-	Google Chrome の PDF 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-3113	2012-05-25 16:26	2012-05-23	Show	GitHub Exploit DB Packet Storm

198887	5	警告	Google	-	Google Chrome の PDF 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3112	2012-05-25 16:23	2012-05-23	Show	GitHub Exploit DB Packet Storm

198888	5	警告	Google	-	Google Chrome で使用される Google V8 におけるサービス運用妨害 (不正な読み取り操作) の脆弱性	CWE-119 バッファエラー	CVE-2011-3111	2012-05-25 16:21	2012-05-23	Show	GitHub Exploit DB Packet Storm

198889	7.5	危険	Google	-	Linux 上で動作する Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-3110	2012-05-25 16:21	2012-05-23	Show	GitHub Exploit DB Packet Storm

198890	7.5	危険	Google	-	Linux 上で動作する Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-3109	2012-05-25 16:20	2012-05-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Dec. 29, 2024, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
491	-		-	-	Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker can cause a stack overflow by entering large data into URL parameters, which will …	-	CVE-2024-41882	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

492	6.4	MEDIUM Network	-	-	The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wp_cart_button' and 'wp_cart_display_product' shortcodes in all versions up to, …	CWE-79 Cross-site Scripting	CVE-2024-12622	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

493	8.8	HIGH Network	-	-	The Custom Login Page Styler – Login Protected Private Site , Change wp-admin login url , WordPress login logo , Temporary admin login access , Rename login , Login customizer, Hide wp-login – Limit …	CWE-862 Missing Authorization	CVE-2024-12594	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

494	6.1	MEDIUM Network	-	-	The Export Customers Data plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 't' parameter in all versions up to, and including, 1.2.3 due to insufficient input sanitization…	CWE-79 Cross-site Scripting	CVE-2024-12405	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

495	4.3	MEDIUM Network	-	-	The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wcdn_remove_shoplogo' AJAX action …	CWE-862 Missing Authorization	CVE-2024-12210	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

496	6.1	MEDIUM Network	-	-	The Bitcoin Lightning Publisher for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versi…	CWE-79 Cross-site Scripting	CVE-2024-12100	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

497	-		-	-	The Exhibit to WP Gallery WordPress plugin through 0.0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be use…	-	CVE-2024-12096	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

498	5.3	MEDIUM Network	-	-	The Advanced Google reCAPTCHA plugin for WordPress is vulnerable to IP unblocking in all versions up to, and including, 1.25. This is due to the plugin not utilizing a strong unique key when generati…	CWE-340 Generation of Predictable Numbers or Identifiers	CVE-2024-12034	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

499	6.4	MEDIUM Network	-	-	The NinjaTeam Chat for Telegram plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'njtele_button shortcode in all versions up to, and including, 1.0 due to insufficie…	CWE-79 Cross-site Scripting	CVE-2024-11885	2024-12-24 15:15	2024-12-24	Show	GitHub Exploit DB Packet Storm

500	6.1	MEDIUM Network	-	-	The WP-Appbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 4.5.3 due to insufficient input sanitization and outp…	CWE-79 Cross-site Scripting	CVE-2024-12710	2024-12-24 14:15	2024-12-24	Show	GitHub Exploit DB Packet Storm