Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 9, 2025, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203271	4.3	警告	Mozilla Foundation SafeNet, Inc 7-Technologies	-	複数の SafeNet 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3339	2011-12-21 14:21	2011-12-12	Show	GitHub Exploit DB Packet Storm

203272	6.8	警告	奈良先端科学技術大学院大学	-	茶筌 (ChaSen) におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4000	2011-12-20 18:12	2011-11-8	Show	GitHub Exploit DB Packet Storm

203273	8.3	危険	富士通日本電気日立	-	Preboot Execution Environment (PXE) SDK を使用した製品における複数の脆弱性	CWE-119 CWE-22	CVE-2009-0270	2011-12-20 17:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

203274	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4856	2011-12-20 14:41	2011-12-16	Show	GitHub Exploit DB Packet Storm

203275	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4855	2011-12-20 14:40	2011-12-16	Show	GitHub Exploit DB Packet Storm

203276	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4854	2011-12-20 14:40	2011-12-16	Show	GitHub Exploit DB Packet Storm

203277	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4853	2011-12-20 14:38	2011-12-16	Show	GitHub Exploit DB Packet Storm

203278	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4852	2011-12-20 14:38	2011-12-16	Show	GitHub Exploit DB Packet Storm

203279	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における認証を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4851	2011-12-20 14:13	2011-12-16	Show	GitHub Exploit DB Packet Storm

203280	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4850	2011-12-20 14:12	2011-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2251	4.4	MEDIUM Local	-	-	IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 stores user credentials in configuration files which can be read by a local privileged user.	CWE-260 Password in Configuration File	CVE-2024-49817	2024-12-18 03:15	2024-12-18	Show	GitHub Exploit DB Packet Storm

2252	4.9	MEDIUM Network	-	-	IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 stores potentially sensitive information in log files that could be read by a local privileged user.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-49816	2024-12-18 03:15	2024-12-18	Show	GitHub Exploit DB Packet Storm

2253	-		-	-	An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory. An attacker having access via a read-only account can possibly change certain configuration parameters by…	-	CVE-2024-42194	2024-12-18 03:15	2024-12-18	Show	GitHub Exploit DB Packet Storm

2254	-		-	-	iptraf-ng 1.2.1 has a stack-based buffer overflow.	-	CVE-2024-52949	2024-12-18 03:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

2255	-		-	-	Online Nurse Hiring System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the component /admin/add-nurse.php via the gender and emailid parameters.	-	CVE-2024-55104	2024-12-18 03:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

2256	-		-	-	Online Nurse Hiring System v1.0 was discovered to contain a SQL injection vulnerability in the component /admin/profile.php via the fullname parameter.	-	CVE-2024-55103	2024-12-18 03:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

2257	-		-	-	A Stored Cross-Site Scripting (XSS) vulnerability exists in authenticated SVG file upload and viewing functionality in UJCMS 9.6.3. The vulnerability arises from insufficient sanitization of embedded…	-	CVE-2024-55451	2024-12-18 02:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

2258	-		-	-	Intrexx Portal Server before 12.0.2 allows XSS via a user-defined portlet.	-	CVE-2024-55554	2024-12-18 02:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

2259	-		-	-	A cross-site scripting (XSS) vulnerability in Sunbird DCIM dcTrack v9.1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in some admin screens.	-	CVE-2024-37776	2024-12-18 02:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

2260	-		-	-	A stored cross-site scripting (XSS) vulnerability in the component /admin/profile.php of Online Nurse Hiring System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a craf…	-	CVE-2024-55100	2024-12-18 02:15	2024-12-17	Show	GitHub Exploit DB Packet Storm