Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 20, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208841	5.8	警告	サイボウズ	-	複数のサイボウズ製品におけるアクセス制限に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2029	2010-04-20 12:01	2010-04-20	Show	GitHub Exploit DB Packet Storm

208842	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の Tabular Data Control ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0805	2010-04-19 19:20	2010-03-30	Show	GitHub Exploit DB Packet Storm

208843	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0491	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

208844	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer における同一生成元ポリシーを回避される脆弱性	CWE-200 情報漏えい	CVE-2010-0494	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

208845	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の mstime.dll における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0492	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

208846	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0490	2010-04-19 19:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

208847	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0807	2010-04-19 19:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

208848	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-362 競合状態	CVE-2010-0489	2010-04-19 19:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

208849	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0267	2010-04-19 19:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

208850	10	危険	アップル	-	Apple Mac OS X の xar におけるパッケージ署名の検証処理に関する脆弱性	CWE-DesignError	CVE-2010-0055	2010-04-16 16:59	2010-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3061	6.3	MEDIUM Network	-	-	The The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.8.22. This is due to the…	CWE-94 Code Injection	CVE-2024-12238	2024-12-29 15:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

3062	-		-	-	A vulnerability was found in PHPGurukul Small CRM 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/quote-details.php. The manipulation of the argument id …	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-13000	2024-12-29 12:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

3063	-		-	-	A vulnerability has been found in PHPGurukul Small CRM 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/edit-user.php. The manipulation of the argument id le…	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-12999	2024-12-29 11:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

3064	-		-	-	A vulnerability, which was classified as problematic, was found in code-projects Online Car Rental System 1.0. This affects an unknown part of the file /index.php of the component GET Parameter Handl…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2024-12998	2024-12-29 07:15	2024-12-29	Show	GitHub Exploit DB Packet Storm

3065	-		-	-	An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18. A Directory Traversal and Local File Inclusion vulnerability in the logsSys.do page allows remote att…	-	CVE-2024-54452	2024-12-29 04:15	2024-12-28	Show	GitHub Exploit DB Packet Storm

3066	-		-	-	A cross-site scripting (XSS) vulnerability in the graphicCustomization.do page in Kurmi Provisioning Suite before 7.9.0.38, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15 allows remote attack…	-	CVE-2024-54451	2024-12-29 04:15	2024-12-28	Show	GitHub Exploit DB Packet Storm

3067	-		-	-	An issue was discovered in Kurmi Provisioning Suite 7.9.0.33. If an X-Forwarded-For header is received during authentication, the Kurmi application will record the (possibly forged) IP address mentio…	-	CVE-2024-54450	2024-12-29 04:15	2024-12-28	Show	GitHub Exploit DB Packet Storm

3068	-		-	-	A race condition vulnerability in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f allows attackers to bypass inventory restrictions by simultaneously submitting purchase requests fro…	-	CVE-2024-53476	2024-12-29 04:15	2024-12-28	Show	GitHub Exploit DB Packet Storm

3069	-		-	-	An improper access control vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f, allowing users to submit reviews without verifying if they have purchased the prod…	-	CVE-2024-50945	2024-12-29 04:15	2024-12-28	Show	GitHub Exploit DB Packet Storm

3070	-		-	-	Integer overflow vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f in the shopping cart functionality. The issue lies in the quantity parameter in the CartContr…	-	CVE-2024-50944	2024-12-29 04:15	2024-12-28	Show	GitHub Exploit DB Packet Storm