Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
199351 4 警告 IBM - IBM AIX 上の invscout.rte における任意のファイルを削除される脆弱性 CWE-59
リンク解釈の問題
CVE-2011-1384 2012-01-6 15:24 2011-12-2 Show GitHub Exploit DB Packet Storm
199352 4.3 警告 IBM - IBM Web Experience Factory におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5048 2012-01-6 15:23 2012-01-3 Show GitHub Exploit DB Packet Storm
199353 4.3 警告 Electric Sheep Fencing - pfSense におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5047 2012-01-6 15:22 2012-01-3 Show GitHub Exploit DB Packet Storm
199354 7.5 危険 Electric Sheep Fencing - pfSense における証明書を作成される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4197 2012-01-6 15:21 2011-12-20 Show GitHub Exploit DB Packet Storm
199355 4.3 警告 Splunk - Splunk の Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4778 2012-01-5 16:29 2011-12-12 Show GitHub Exploit DB Packet Storm
199356 9.3 危険 Splunk - Splunk における任意のファイルを読まれる脆弱性 CWE-287
不適切な認証
CVE-2011-4644 2012-01-5 16:28 2012-01-3 Show GitHub Exploit DB Packet Storm
199357 4 警告 Splunk - Splunk におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-4643 2012-01-5 16:27 2011-12-12 Show GitHub Exploit DB Packet Storm
199358 4.6 警告 Splunk - Splunk の Splunk Web 内にある mappy.py における任意のコードを実行される脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-4642 2012-01-5 16:27 2011-12-12 Show GitHub Exploit DB Packet Storm
199359 6.8 警告 Mozilla Foundation - Bugzilla の attachment.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-3669 2012-01-5 16:26 2011-11-20 Show GitHub Exploit DB Packet Storm
199360 6.8 警告 Mozilla Foundation - Bugzilla の post_bug.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-3668 2012-01-5 16:26 2011-11-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261551 - opera opera_browser Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via vectors involving an unspecified sequence of loading of documents and… CWE-79
Cross-site Scripting
CVE-2012-6463 2013-01-3 03:15 2013-01-2 Show GitHub Exploit DB Packet Storm
261552 - belkin n900_wireless_router The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits of the LAN/WLAN MAC address, which makes it easier for remote attackers to obtain access to a Wi-Fi… CWE-310
Cryptographic Issues
CVE-2012-6371 2013-01-3 01:05 2013-01-1 Show GitHub Exploit DB Packet Storm
261553 - opera opera_browser Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, and possibly trigger downloading and execution of arbitrary programs, via a crafted web site. NVD-CWE-Other
CVE-2012-6460 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261554 - opera opera_browser The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by caus… CWE-20
 Improper Input Validation 
CVE-2012-6461 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261555 - opera opera_browser Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specification, which allows remote attackers to bypass intended page-content restrictions via a crafted request. CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-6462 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261556 - opera opera_browser Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript code that overrides methods of unspecified native … CWE-79
Cross-site Scripting
CVE-2012-6464 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261557 - opera opera_browser Opera before 12.12 allows remote attackers to spoof the address field via a high rate of HTTP requests. NVD-CWE-Other
CVE-2012-6471 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261558 - opera opera_browser Opera before 12.12 on UNIX uses weak permissions for the profile directory, which allows local users to obtain sensitive information by reading a (1) cache file, (2) password file, or (3) configurati… CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-6472 2013-01-2 20:46 2013-01-2 Show GitHub Exploit DB Packet Storm
261559 - samsung samsungdive The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows the activation of remote tracking, which might allow physically proximate attackers to defeat a pr… CWE-200
Information Exposure
CVE-2012-6337 2013-01-1 00:22 2012-12-31 Show GitHub Exploit DB Packet Storm
261560 - avg avg_antivirus The Anti-theft service in AVG AntiVirus for Android allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer." NVD-CWE-noinfo
CVE-2012-6335 2013-01-1 00:14 2012-12-31 Show GitHub Exploit DB Packet Storm