Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 4, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200861 7.8 危険 ヒューレット・パッカード - 複数の HP プリンタ製品で使用される File System External Access 設定の PJL Access 値 のデフォルト設定における任意のファイルを読まれる脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4107 2012-03-27 18:42 2010-11-15 Show GitHub Exploit DB Packet Storm
200862 6.8 警告 ヒューレット・パッカード - HP Insight Control におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-4106 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
200863 6.4 警告 ヒューレット・パッカード - HP Insight Orchestration におけるアクセス制限を回避する脆弱性 CWE-noinfo
情報不足 		CVE-2010-4105 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
200864 5 警告 ヒューレット・パッカード - HP Insight Orchestration における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4104 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
200865 5 警告 ヒューレット・パッカード - HP Insight Managed System Setup Wizard における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4103 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
200866 5 警告 ヒューレット・パッカード - HP Insight Recovery における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4102 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
200867 4.3 警告 ヒューレット・パッカード - HP Insight Recovery におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4101 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
200868 5 警告 ヒューレット・パッカード - HP Insight Control Performance Management における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4100 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
200869 6.8 警告 nitrosecurity - NitroSecurity NitroView ESM の ess.pm における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4099 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
200870 5 警告 monotone - monotone におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4098 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 4, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
111 - - - Missing Authorization vulnerability in supsystic.com Data Tables Generator by Supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Data Tables Generato… New CWE-862
 Missing Authorization 		CVE-2024-56253 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
112 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeLooks Enter Addons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.9. New CWE-79
Cross-site Scripting 		CVE-2024-56252 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
113 - - - Cross-Site Request Forgery (CSRF) vulnerability in Event Espresso Event Espresso 4 Decaf allows Cross Site Request Forgery.This issue affects Event Espresso 4 Decaf: from n/a through 5.0.28.decaf. New CWE-352
 Origin Validation Error 		CVE-2024-56251 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
114 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in GregRoss Just Writing Statistics allows SQL Injection.This issue affects Just Writing Statistics:… New CWE-89
SQL Injection 		CVE-2024-56250 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
115 - - - Unrestricted Upload of File with Dangerous Type vulnerability in Webdeclic WPMasterToolKit allows Upload a Web Shell to a Web Server.This issue affects WPMasterToolKit: from n/a through 1.13.1. New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-56249 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
116 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Webdeclic WPMasterToolKit allows Path Traversal.This issue affects WPMasterToolKit: from n/a through 1.… New CWE-22
Path Traversal 		CVE-2024-56248 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
117 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AF themes WP Post Author allows SQL Injection.This issue affects WP Post Author: from n/a through… New CWE-89
SQL Injection 		CVE-2024-56247 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
118 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH Nexter Blocks allows DOM-Based XSS.This issue affects Nexter Blocks: from n/a through 4.… New CWE-79
Cross-site Scripting 		CVE-2024-56246 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
119 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leap13 Premium Blocks – Gutenberg Blocks for WordPress allows Stored XSS.This issue affects Premi… New CWE-79
Cross-site Scripting 		CVE-2024-56245 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
120 - - - Missing Authorization vulnerability in WP Royal Ashe Extra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ashe Extra: from n/a through 1.2.92. New CWE-862
 Missing Authorization 		CVE-2024-56244 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm