Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Dec. 30, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201751	4	警告	シックス・アパート株式会社	-	Movable Type のデフォルト設定におけるディレクトリトラバーサル攻撃の脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1497	2012-03-6 15:22	2012-03-3	Show	GitHub Exploit DB Packet Storm

201752	4.3	警告	シックス・アパート株式会社	-	Movable Type の cgi-bin/mt/mt-wizard.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1262	2012-03-6 15:20	2012-03-3	Show	GitHub Exploit DB Packet Storm

201753	4.3	警告	IBM	-	複数の IBM 製品の Gantt applet viewer におけるクロスサイトスクリプティングの脆弱性	-	CVE-2012-0715	2012-03-6 14:44	2012-03-2	Show	GitHub Exploit DB Packet Storm

201754	7.8	危険	IBM	-	IBM AIX および VIOS におけるサービス運用妨害 (システムクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1385	2012-03-6 14:42	2012-02-24	Show	GitHub Exploit DB Packet Storm

201755	7.5	危険	Novell	-	Novell GroupWise のクライアントにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4189	2012-03-6 14:42	2012-02-23	Show	GitHub Exploit DB Packet Storm

201756	9.3	危険	IBM	-	IBM Personal Communications の pcsws.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0201	2012-03-5 15:26	2011-02-20	Show	GitHub Exploit DB Packet Storm

201757	7.5	危険	アップル	-	Apple Safari で使用される WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-3443	2012-03-5 15:26	2012-03-2	Show	GitHub Exploit DB Packet Storm

201758	4.3	警告	ES APP Group	-	ES ファイルエクスプローラーにおけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0322	2012-03-5 12:02	2012-03-5	Show	GitHub Exploit DB Packet Storm

201759	4.3	警告	Ulysses	-	WordPress 用 Black-LetterHead テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3865	2012-03-5 11:09	2011-09-28	Show	GitHub Exploit DB Packet Storm

201760	4.3	警告	Soma Design	-	WordPress 用 Erudite テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3864	2012-03-5 11:08	2011-09-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Dec. 31, 2024, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
91	-		-	-	GNU GRUB (aka GRUB2) through 2.12 does not use a constant-time algorithm for grub_crypto_memcmp and thus allows side-channel attacks. New	-	CVE-2024-56738	2024-12-29 16:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

92	-		-	-	GNU GRUB (aka GRUB2) through 2.12 has a heap-based buffer overflow in fs/hfs.c via crafted sblock data in an HFS filesystem. New	-	CVE-2024-56737	2024-12-29 16:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

93	-		-	-	A vulnerability classified as critical has been found in PHPGurukul Complaint Management System 1.0. This affects an unknown part of the file /admin/category.php. The manipulation of the argument sta… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-13004	2024-12-29 16:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

94	-		-	-	The Crypt::Random::Source package before 0.13 for Perl has a fallback to the built-in rand() function, which is not a secure source of random bits. New	-	CVE-2018-25107	2024-12-29 16:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

95	6.3	MEDIUM Network	-	-	The The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.8.22. This is due to the… New	CWE-94 Code Injection	CVE-2024-12238	2024-12-29 15:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

96	-		-	-	A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /update_ed.php. The man… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-13003	2024-12-29 13:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

97	-		-	-	A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /order_process.php… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-13002	2024-12-29 13:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

98	-		-	-	A vulnerability was found in PHPGurukul Small CRM 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument email leads t… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-13001	2024-12-29 12:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

99	-		-	-	A vulnerability was found in PHPGurukul Small CRM 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/quote-details.php. The manipulation of the argument id … New	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-13000	2024-12-29 12:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

100	-		-	-	A vulnerability has been found in PHPGurukul Small CRM 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/edit-user.php. The manipulation of the argument id le… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-12999	2024-12-29 11:15	2024-12-29	Show	GitHub Exploit DB Packet Storm