Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198891 2.1 注意 Apache Software Foundation - Apache JServ における JDBC パスワードまたはその他の重要な情報を見つけられる脆弱性 CWE-16
環境設定
CVE-2000-1247 2012-02-9 10:58 2011-10-5 Show GitHub Exploit DB Packet Storm
198892 4.3 警告 Apache Software Foundation - Apache Struts におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1007 2012-02-8 16:35 2012-02-7 Show GitHub Exploit DB Packet Storm
198893 4.3 警告 Apache Software Foundation - Apache Struts におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1006 2012-02-8 16:34 2012-02-7 Show GitHub Exploit DB Packet Storm
198894 10 危険 シマンテック - Symantec pcAnywhere 製品におけるクライアントへアクセスされる脆弱性 CWE-noinfo
情報不足
CVE-2012-0290 2012-02-8 16:33 2012-01-24 Show GitHub Exploit DB Packet Storm
198895 7.1 危険 IBM - IBM AIX の TCP 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2012-0194 2012-02-8 16:28 2012-02-3 Show GitHub Exploit DB Packet Storm
198896 10 危険 Broadwin - Advantech/BroadWin WebAccess の webvrpcs.exe における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2011-4041 2012-02-8 16:27 2012-02-6 Show GitHub Exploit DB Packet Storm
198897 5 警告 Opera Software ASA - Opera における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2012-1003 2012-02-8 16:18 2012-02-7 Show GitHub Exploit DB Packet Storm
198898 4 警告 DELL EMC (旧 EMC Corporation) - EMC Documentum xPlore におけるオブジェクトの存在を特定される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-0396 2012-02-8 16:15 2012-02-6 Show GitHub Exploit DB Packet Storm
198899 8.5 危険 シーメンス - 複数の Siemens 製品の HMI Web サーバにおける任意のメモリロケーションからデータを読まれる脆弱性 CWE-20
不適切な入力確認
CVE-2011-4879 2012-02-8 11:12 2012-01-24 Show GitHub Exploit DB Packet Storm
198900 7.8 危険 シーメンス - 複数の Siemens 製品の HMI Web サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-4878 2012-02-8 11:11 2012-01-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2571 4.9 MEDIUM
Network
bowo code_explorer The Code Explorer plugin for WordPress is vulnerable to arbitrary external file reading in all versions up to, and including, 1.4.5. This is due to the fact that the plugin does not restrict accessin… NVD-CWE-Other
CVE-2023-5816 2024-11-7 08:07 2024-10-30 Show GitHub Exploit DB Packet Storm
2572 5.4 MEDIUM
Network
joshlobe ultimate_tinymce The Ultimate TinyMCE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'field' shortcode in all versions up to, and including, 5.7 due to insufficient input sanitization and o… CWE-79
Cross-site Scripting
CVE-2024-8627 2024-11-7 08:06 2024-10-30 Show GitHub Exploit DB Packet Storm
2573 5.5 MEDIUM
Network
ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A privileged user could exploit this vulnerability to expose sens… CWE-611
XXE
CVE-2024-45086 2024-11-7 08:04 2024-11-5 Show GitHub Exploit DB Packet Storm
2574 5.3 MEDIUM
Network
oracle installed_base Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: User Interface). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability a… NVD-CWE-noinfo
CVE-2024-21258 2024-11-7 07:56 2024-10-16 Show GitHub Exploit DB Packet Storm
2575 5.4 MEDIUM
Network
oracle peoplesoft_enterprise_cost_center_common_application_objects Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle PeopleSoft (component: Activity Guide Composer). The supported version that is affected is 9.2. Easily exp… NVD-CWE-noinfo
CVE-2024-21264 2024-11-7 07:56 2024-10-16 Show GitHub Exploit DB Packet Storm
2576 3.0 LOW
Adjacent
oracle hyperion_bi\+ Vulnerability in the Oracle Hyperion BI+ product of Oracle Hyperion (component: UI and Visualization). The supported version that is affected is 11.2.18.0.000. Easily exploitable vulnerability allo… NVD-CWE-noinfo
CVE-2024-21257 2024-11-7 07:55 2024-10-16 Show GitHub Exploit DB Packet Storm
2577 8.1 HIGH
Network
oracle process_manufacturing_product_development Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E-Business Suite (component: Quality Manager Specification). Supported versions that are affected are 12.2.13-… NVD-CWE-noinfo
CVE-2024-21250 2024-11-7 07:54 2024-10-16 Show GitHub Exploit DB Packet Storm
2578 4.3 MEDIUM
Network
oracle peoplesoft_enterprise_fin_expenses Vulnerability in the PeopleSoft Enterprise FIN Expenses product of Oracle PeopleSoft (component: Expenses). The supported version that is affected is 9.2. Easily exploitable vulnerability allows lo… NVD-CWE-noinfo
CVE-2024-21249 2024-11-7 07:53 2024-10-16 Show GitHub Exploit DB Packet Storm
2579 8.0 HIGH
Network
romadebrian web-sekolah A vulnerability classified as critical was found in romadebrian WEB-Sekolah 1.0. Affected by this vulnerability is an unknown functionality of the file /Proses_Kirim.php of the component Mail Handler… CWE-89
SQL Injection
CVE-2024-10841 2024-11-7 07:50 2024-11-5 Show GitHub Exploit DB Packet Storm
2580 4.8 MEDIUM
Network
romadebrian web-sekolah A vulnerability classified as problematic has been found in romadebrian WEB-Sekolah 1.0. Affected is an unknown function of the file /Admin/akun_edit.php of the component Backend. The manipulation of… CWE-79
Cross-site Scripting
CVE-2024-10840 2024-11-7 07:49 2024-11-5 Show GitHub Exploit DB Packet Storm