Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199421 4.3 警告 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4764 2011-12-20 12:11 2011-12-16 Show GitHub Exploit DB Packet Storm
199422 7.5 危険 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4763 2011-12-20 12:11 2011-12-16 Show GitHub Exploit DB Packet Storm
199423 10 危険 Parallels - Parallels Plesk Small Business Panel における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4762 2011-12-20 11:33 2011-12-16 Show GitHub Exploit DB Packet Storm
199424 10 危険 Parallels - Parallels Plesk Small Business Panel における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4761 2011-12-20 11:33 2011-12-16 Show GitHub Exploit DB Packet Storm
199425 5 警告 Parallels - Parallels Plesk Small Business Panel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4760 2011-12-20 11:31 2011-12-16 Show GitHub Exploit DB Packet Storm
199426 5 警告 Parallels - Parallels Plesk Small Business Panel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4759 2011-12-20 11:30 2011-12-16 Show GitHub Exploit DB Packet Storm
199427 5 警告 Parallels - Parallels Plesk Small Business Panel における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-4758 2011-12-20 11:30 2011-12-16 Show GitHub Exploit DB Packet Storm
199428 10 危険 Parallels - Parallels Plesk Small Business Panel における認証を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-4757 2011-12-20 11:29 2011-12-16 Show GitHub Exploit DB Packet Storm
199429 5 警告 Parallels - Parallels Plesk Small Business Panel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4756 2011-12-20 11:28 2011-12-16 Show GitHub Exploit DB Packet Storm
199430 10 危険 Parallels - Parallels Plesk Small Business Panel におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4755 2011-12-20 11:28 2011-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257931 - owncloud owncloud ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not properly check permissions, which allows remote authenticated users to read the names of files of other users by leveraging access to mul… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3838 2014-06-6 02:37 2014-06-4 Show GitHub Exploit DB Packet Storm
257932 - owncloud owncloud ownCloud Server before 6.0.1 does not properly check permissions, which allows remote authenticated users to access arbitrary preview pictures via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3963 2014-06-6 02:35 2014-06-4 Show GitHub Exploit DB Packet Storm
257933 - alex_kellner powermail Cross-site scripting (XSS) vulnerability in the HTML export wizard in the backend module in the powermail extension before 1.6.11 for TYPO3 allows remote attackers to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2014-3948 2014-06-6 02:33 2014-06-4 Show GitHub Exploit DB Packet Storm
257934 - jo_hasenau gridelements Cross-site scripting (XSS) vulnerability in the layout wizard in the Grid Elements (gridelements) extension before 1.5.1 and 2.0.x before 2.0.3 for TYPO3 allows remote authenticated backend users to … CWE-79
Cross-site Scripting 		CVE-2014-3949 2014-06-6 02:32 2014-06-4 Show GitHub Exploit DB Packet Storm
257935 - owncloud owncloud ownCloud Server before 4.5.7 does not properly check ownership of calendars, which allows remote authenticated users to read arbitrary calendars via the calid parameter to /apps/calendar/export.php. … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0304 2014-06-6 02:28 2014-06-6 Show GitHub Exploit DB Packet Storm
257936 - opennms opennms Multiple cross-site scripting (XSS) vulnerabilities in OpenNMS before 1.12.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2014-3960 2014-06-5 22:30 2014-06-4 Show GitHub Exploit DB Packet Storm
257937 - cogentdatahub cogent_datahub Directory traversal vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to read arbitrary files of unspecified types, or cause a web-server denial of service, via a crafted pathname. CWE-22
Path Traversal 		CVE-2014-2352 2014-06-5 21:49 2014-05-31 Show GitHub Exploit DB Packet Storm
257938 - cogentdatahub cogent_datahub Cogent DataHub before 7.3.5 does not use a salt during password hashing, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force attack. CWE-255
Credentials Management 		CVE-2014-2354 2014-06-5 21:40 2014-05-31 Show GitHub Exploit DB Packet Storm
257939 - cogentdatahub cogent_datahub Cross-site scripting (XSS) vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2014-2353 2014-06-5 21:36 2014-05-31 Show GitHub Exploit DB Packet Storm
257940 - trianglemicroworks scada_data_gateway Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows remote attackers to cause a denial of service (excessive data processing) via a crafted DNP3 packet. CWE-20
 Improper Input Validation  		CVE-2014-2342 2014-06-5 21:32 2014-05-31 Show GitHub Exploit DB Packet Storm