Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 7, 2024, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203271	4	警告	オラクル	-	Oracle Database の Logical Standby コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1996	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

203272	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

203273	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

203274	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

203275	9	危険	オラクル	-	Oracle Database の Oracle OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3415	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

203276	10	危険	オラクル	-	Oracle Database の Listener コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0071	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

203277	5	警告	Pidgin Adium レッドハット	-	Pidgin および Adium の MSN プロトコルプラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0013	2010-02-10 13:39	2010-01-8	Show	GitHub Exploit DB Packet Storm

203278	10	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat の U3D 実装における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-3959	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

203279	10	危険	アドビシステムズ	-	Adobe Reader および Acrobat のダウンロードマネージャーにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-3958	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

203280	5	警告	アドビシステムズ	-	Adobe Reader および Acrobat におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-3957	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 7, 2024, 4:18 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
331	-		-	-	In Hazelcast Platform through 5.3.4, a security issue exists within the SQL mapping for the CSV File Source connector. This issue arises from inadequate permission checking, which could enable unauth… Update	-	CVE-2023-45860	2024-11-7 02:35	2024-02-16	Show	GitHub Exploit DB Packet Storm

332	5.5	MEDIUM Local	google	android	In visitUris of Notification.java, there is a possible way to leak image data across user boundaries due to a confused deputy. This could lead to local information disclosure with no additional execu… Update	NVD-CWE-Other	CVE-2023-21239	2024-11-7 02:35	2023-07-13	Show	GitHub Exploit DB Packet Storm

333	5.5	MEDIUM Local	google	android	In visitUris of RemoteViews.java, there is a possible leak of images between users due to a confused deputy. This could lead to local information disclosure with no additional execution privileges ne… Update	NVD-CWE-Other	CVE-2023-21238	2024-11-7 02:35	2023-07-13	Show	GitHub Exploit DB Packet Storm

334	5.5	MEDIUM Local	google	android	In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. This could lead to local escalatio… Update	NVD-CWE-noinfo	CVE-2023-20942	2024-11-7 02:35	2023-07-13	Show	GitHub Exploit DB Packet Storm

335	9.8	CRITICAL Network	google	android	In getPendingIntentLaunchFlags of ActivityOptions.java, there is a possible elevation of privilege due to a confused deputy with no additional execution privileges needed. User interaction is not nee… Update	NVD-CWE-Other	CVE-2023-20918	2024-11-7 02:35	2023-07-13	Show	GitHub Exploit DB Packet Storm

336	9.8	CRITICAL Network	codezips	isp_management_system	A vulnerability was found in Codezips ISP Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file pay.php. The manipulation of the argument … Update	CWE-89 SQL Injection	CVE-2024-10751	2024-11-7 02:34	2024-11-4	Show	GitHub Exploit DB Packet Storm

337	4.8	MEDIUM Network	podsfoundation	pods	The Pods WordPress plugin before 3.2.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even w… New	CWE-79 Cross-site Scripting	CVE-2024-9883	2024-11-7 02:32	2024-11-5	Show	GitHub Exploit DB Packet Storm

338	8.8	HIGH Network	esafenet	cdg	A vulnerability has been found in ESAFENET CDG 5 and classified as critical. This vulnerability affects the function getOneFileDirectory of the file /com/esafenet/servlet/fileManagement/FileDirectory… Update	CWE-89 SQL Injection	CVE-2024-10502	2024-11-7 02:20	2024-10-30	Show	GitHub Exploit DB Packet Storm

339	8.8	HIGH Network	esafenet	cdg	A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function findById of the file /com/esafenet/servlet/document/ExamCDGDocService.java. The manipulation … Update	CWE-89 SQL Injection	CVE-2024-10501	2024-11-7 02:20	2024-10-30	Show	GitHub Exploit DB Packet Storm

340	4.3	MEDIUM Network	octolize	woocommerce_ups_shipping	The WooCommerce UPS Shipping – Live Rates and Access Points plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_oauth_data function… Update	CWE-862 Missing Authorization	CVE-2024-9109	2024-11-7 02:18	2024-10-25	Show	GitHub Exploit DB Packet Storm