Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 7, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203021	4.3	警告	PukiWiki Plus!	-	PukiWiki Plus! におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3990	2011-12-22 12:03	2011-12-22	Show	GitHub Exploit DB Packet Storm

203022	4.3	警告	Apache Software Foundation	-	Apache Struts におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1772	2011-12-22 12:01	2011-12-22	Show	GitHub Exploit DB Packet Storm

203023	6.8	警告	BlackBerry	-	RIM BlackBerry Device Software の Blackberry Browser における任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-3477	2011-12-22 11:59	2009-09-28	Show	GitHub Exploit DB Packet Storm

203024	4.3	警告	BlackBerry IBM	-	BlackBerry Desktop Manager 用の RIM Lotus Notes コネクタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-3038	2011-12-22 11:58	2009-09-1	Show	GitHub Exploit DB Packet Storm

203025	9.3	危険	BlackBerry	-	RIM BlackBerry Enterprise Server および BlackBerry Professional Software におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-2646	2011-12-22 11:55	2009-04-16	Show	GitHub Exploit DB Packet Storm

203026	9.3	危険	BlackBerry	-	RIM BlackBerry Enterprise Server および BlackBerry Professional Software におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-2643	2011-12-22 11:54	2009-05-26	Show	GitHub Exploit DB Packet Storm

203027	7.1	危険	BlackBerry	-	RIM BlackBerry 8800 における運用妨害 (メモリ消費およびブラウザクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2575	2011-12-22 11:53	2009-07-22	Show	GitHub Exploit DB Packet Storm

203028	9.3	危険	BlackBerry	-	複数の RIM BlackBerry 製品の PDF distiller における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0219	2011-12-22 11:51	2009-01-12	Show	GitHub Exploit DB Packet Storm

203029	9.3	危険	BlackBerry	-	複数の RIM BlackBerry 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0176	2011-12-22 11:50	2009-01-12	Show	GitHub Exploit DB Packet Storm

203030	4.3	警告	Serck Control Control Microsystems	-	Control Microsystems ClearSCADA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3144	2011-12-22 11:49	2011-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 7, 2025, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2231	-		-	-	Laravel Pulse is a real-time application performance monitoring tool and dashboard for Laravel applications. A vulnerability has been discovered in Laravel Pulse prior to version 1.3.1 that could all…	CWE-94 Code Injection	CVE-2024-55661	2024-12-14 01:15	2024-12-14	Show	GitHub Exploit DB Packet Storm

2232	-		-	-	Combodo iTop is an open source and web-based IT service management platform. Prior to versions 2.7.11, 3.1.2, and 3.2.0., iTop has a cross-site scripting vulnerability that can lead to cross-site req…	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2024-54139	2024-12-14 01:15	2024-12-14	Show	GitHub Exploit DB Packet Storm

2233	-		-	-	An authenticated attacker with the user/role "Poweruser" can perform an SQL injection by accessing the /class/template_io.php file and supplying malicious GET parameters. The "templates" parameter is…	-	CVE-2024-50584	2024-12-14 01:15	2024-12-12	Show	GitHub Exploit DB Packet Storm

2234	-		-	-	The application uses several hard-coded credentials to encrypt config files during backup, to decrypt the new firmware during an update and some passwords allow a direct connection to the database se…	-	CVE-2024-28146	2024-12-14 01:15	2024-12-12	Show	GitHub Exploit DB Packet Storm

2235	-		-	-	The password change function at /cgi/admin.cgi does not require the current/old password, which makes the application vulnerable to account takeover. An attacker can use this to forcefully set a new …	-	CVE-2024-28143	2024-12-14 01:15	2024-12-12	Show	GitHub Exploit DB Packet Storm

2236	5.4	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable …	CWE-79 Cross-site Scripting	CVE-2024-52841	2024-12-14 01:14	2024-12-11	Show	GitHub Exploit DB Packet Storm

2237	5.4	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable …	CWE-79 Cross-site Scripting	CVE-2024-52836	2024-12-14 01:14	2024-12-11	Show	GitHub Exploit DB Packet Storm

2238	5.4	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable …	CWE-79 Cross-site Scripting	CVE-2024-52835	2024-12-14 01:13	2024-12-11	Show	GitHub Exploit DB Packet Storm

2239	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in Tom Landis Fancy Roller Scroller allows Stored XSS.This issue affects Fancy Roller Scroller: from n/a through 1.4.0.	CWE-352 Origin Validation Error	CVE-2024-54351	2024-12-14 00:15	2024-12-14	Show	GitHub Exploit DB Packet Storm

2240	-		-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mashiurz.com Plain Post allows Stored XSS.This issue affects Plain Post: from n/a through 1.0.3.	CWE-79 Cross-site Scripting	CVE-2024-54349	2024-12-14 00:15	2024-12-14	Show	GitHub Exploit DB Packet Storm