Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 8, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203131	6.8	警告	Haxx アップルサイバートラスト株式会社レッドハット	-	curl および libcurl の redirect 実装における任意のコマンドを実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-0037	2010-04-13 14:45	2009-03-3	Show	GitHub Exploit DB Packet Storm

203132	9.3	危険	ジャストシステム	-	一太郎シリーズにおける任意のコードが実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1424	2010-04-12 15:32	2010-04-12	Show	GitHub Exploit DB Packet Storm

203133	4.4	警告	ヒューレット・パッカード	-	HP HP-UX におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-1030	2010-04-12 12:19	2010-03-26	Show	GitHub Exploit DB Packet Storm

203134	10	危険	IntelliCom Innovation AB	-	IntelliCom NetBiter Config HICP におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4462	2010-04-12 12:19	2010-03-29	Show	GitHub Exploit DB Packet Storm

203135	7.5	危険	The PHP Group	-	PHP のセッション拡張子における open_basedir または safe_mode 制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1130	2010-04-12 12:19	2010-03-26	Show	GitHub Exploit DB Packet Storm

203136	4.3	警告	Zope Foundation	-	Zope におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1104	2010-04-9 16:21	2010-03-25	Show	GitHub Exploit DB Packet Storm

203137	4	警告	ヒューレット・パッカード	-	HP HP-UX の NFS/ONCplus にあるインストールプロセスにおけるファイルシステムのアクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0451	2010-04-9 16:21	2010-03-25	Show	GitHub Exploit DB Packet Storm

203138	7.5	危険	GNU Project サイバートラスト株式会社レッドハット	-	GnuTLS の gnutls_x509_crt_get_serial 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0731	2010-04-9 16:21	2010-03-25	Show	GitHub Exploit DB Packet Storm

203139	4.3	警告	シスコシステムズ	-	Cisco Router and Security Device Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0594	2010-04-8 15:03	2010-04-8	Show	GitHub Exploit DB Packet Storm

203140	4.3	警告	MODX	-	MODx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1427	2010-04-8 15:02	2010-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 8, 2024, 4:18 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2341	-		-	-	Asio C++ Library before 1.13.0 lacks a fallback error code in the case of SSL_ERROR_SYSCALL with no associated error information from the SSL library being used.	-	CVE-2019-25219	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

2342	7.5	HIGH Network	-	-	The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the "fileorganizer_ajax_handler" function in…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-7985	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

2343	-		-	-	An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper validation of redirect URLs. This could allow an attacker to redirect end-users to malicious sites under…	-	CVE-2024-25566	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

2344	-		-	-	Organization admins can delete pending invites created in an organization they are not part of.	-	CVE-2024-10452	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

2345	-		-	-	Scoold is a Q&A and a knowledge sharing platform for teams. A semicolon path injection vulnerability was found on the /api;/config endpoint. By appending a semicolon in the URL, attackers can bypass …	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2024-50334	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

2346	5.3	MEDIUM Network	cisco	firepower_threat_defense_software adaptive_security_appliance_software	A vulnerability in the login authentication functionality of the Remote Access SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software co…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2024-20493	2024-11-1 21:54	2024-10-24	Show	GitHub Exploit DB Packet Storm

2347	8.8	HIGH Network	phpgurukul	vehicle_record_system	A vulnerability, which was classified as critical, has been found in PHPGurukul Vehicle Record System 1.0. This issue affects some unknown processing of the file /admin/search-vehicle.php. The manipu…	CWE-89 SQL Injection	CVE-2024-10331	2024-11-1 21:41	2024-10-24	Show	GitHub Exploit DB Packet Storm

2348	9.8	CRITICAL Network	mitsubishielectric	fr_configurator2 mt_works2 gx_works3 mc_works64 mx_component melsoft_navigator gx_works2 got2000 got1000 ezsocket	Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 and later, GT Designer3 Version1(GOT1000) all…	CWE-470 Unsafe Reflection	CVE-2023-6943	2024-11-1 18:15	2024-01-30	Show	GitHub Exploit DB Packet Storm

2349	7.5	HIGH Network	mitsubishielectric	fr_configurator2 mt_works2 gx_works3 mc_works64 mx_component melsoft_navigator gx_works2 got2000 got1000 ezsocket	Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 and later, GT Designer3 Version1(GOT1000) all versions, GT Designer3 Version1(GOT20…	CWE-306 Missing Authentication for Critical Function	CVE-2023-6942	2024-11-1 18:15	2024-01-30	Show	GitHub Exploit DB Packet Storm

2350	-		-	-	WTCMS 1.0 is vulnerable to Incorrect Access Control in \Common\Controller\HomebaseController.class.php.	-	CVE-2024-48237	2024-11-1 17:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed