Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 8, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203171	8.3	危険	富士通日本電気日立	-	Preboot Execution Environment (PXE) SDK を使用した製品における複数の脆弱性	CWE-119 CWE-22	CVE-2009-0270	2011-12-20 17:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

203172	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4856	2011-12-20 14:41	2011-12-16	Show	GitHub Exploit DB Packet Storm

203173	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4855	2011-12-20 14:40	2011-12-16	Show	GitHub Exploit DB Packet Storm

203174	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4854	2011-12-20 14:40	2011-12-16	Show	GitHub Exploit DB Packet Storm

203175	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4853	2011-12-20 14:38	2011-12-16	Show	GitHub Exploit DB Packet Storm

203176	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4852	2011-12-20 14:38	2011-12-16	Show	GitHub Exploit DB Packet Storm

203177	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における認証を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4851	2011-12-20 14:13	2011-12-16	Show	GitHub Exploit DB Packet Storm

203178	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4850	2011-12-20 14:12	2011-12-16	Show	GitHub Exploit DB Packet Storm

203179	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における Cookie をキャプチャされる脆弱性	CWE-200 情報漏えい	CVE-2011-4849	2011-12-20 14:11	2011-12-16	Show	GitHub Exploit DB Packet Storm

203180	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4848	2011-12-20 14:10	2011-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 8, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1021	-	-	-	A Server-Side Request Forgery (SSRF) vulnerability exists in the POST /worker_generate_stream API endpoint of the Controller API Server in lm-sys/fastchat, as of commit e208d5677c6837d590b81cb03847c0…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-10044	2024-12-30 21:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1022	-	-	-	Infinix devices contain a pre-loaded "com.rlk.weathers" application, that exposes an unsecured content provider. An attacker can communicate with the provider and reveal the user’s location without a…	-	CVE-2024-12993	2024-12-30 20:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1023	-	-	-	Tecnick TCExam – CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	CWE-89 SQL Injection	CVE-2024-47926	2024-12-30 19:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1024	-	-	-	Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	CWE-79 Cross-site Scripting	CVE-2024-47925	2024-12-30 19:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1025	-	-	-	Boa web server – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	CWE-79 Cross-site Scripting	CVE-2024-47924	2024-12-30 19:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1026	-	-	-	Mashov – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor	CWE-200 Information Exposure	CVE-2024-47923	2024-12-30 19:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1027	-	-	-	Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor	CWE-200 Information Exposure	CVE-2024-47922	2024-12-30 19:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1028	-	-	-	Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2024-47921	2024-12-30 19:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1029	-	-	-	Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	CWE-79 Cross-site Scripting	CVE-2024-47920	2024-12-30 19:15	2024-12-30	Show	GitHub Exploit DB Packet Storm

1030	-	-	-	Tiki Wiki CMS – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	CWE-78 OS Command	CVE-2024-47919	2024-12-30 19:15	2024-12-30	Show	GitHub Exploit DB Packet Storm