Vulnerability Reports JP
2020
- 2020/05/29 JVN#78745667:
- Multiples security updates for multiple Cybozu products
- 2020/05/25 JVN#59552136:
- Cybozu Desktop for Windows vulenerable to arbitrary code execution
- 2020/05/19 JVN#20248858:
- WordPress Plugin "Paid Memberships Pro" vulnerable to SQL injection
- 2020/05/19 JVN#96646182:
- Panasonic Video Insight VMS vulnerable to arbitrary code execution
- 2020/05/13 JVN#41035278:
- BookStack vulnerable to cross-site scripting
- 2020/05/13 JVN#28806943:
- Multiple vulnerabilities in Movable Type
- 2020/05/11 JVN#61849442:
- PALLET CONTROL vulnerable to arbitrary code execution
- 2020/04/28 JVN#47668991:
- Sales Force Assistant vulnerable to cross-site scripting
- 2020/04/27 JVN#35649781:
- Multiple vulnerabilities in Cybozu Garoon
- 2020/04/23 JVN#93064451:
- Multiple SHARP Android devices vulnerable to information disclosure
- 2020/04/20 JVN#13467854:
- Toshiba Electronic Devices & Storage software registers unquoted service paths
- 2020/04/08 JVN#89224521:
- Multiple vulnerabilities in EasyBlocks IPv6
- 2020/04/07 JVN#56890693:
- Joomla! plugin "AcyMailing" vulnerable to arbitrary file uploads
- 2020/03/31 JVN#38732359:
- Multiple Yamaha network devices vulnerable to denial-of-service (DoS)
- 2020/03/24 JVN#88277644:[Unreachable]
- Keijiban Tsumiki vulenrable to OS command injection
- 2020/03/24 JVN#27951364:[Unreachable]
- WL-Enq (WEB Enquete) vulnerable to OS command injection
- 2020/03/24 JVN#88033799:[Unreachable]
- WL-Enq (WEB Enquete) vulnerable to cross-site scripting
- 2020/03/24 JVN#58176087:[Unreachable]
- Cute News vulnerable to PHP code execution
- 2020/03/24 JVN#29095127:[Unreachable]
- CuteNews vulnerable to cross-site scripting
- 2020/03/24 JVN#63834780:[Unreachable]
- Shihonkanri Plus GOOUT vulnerable to OS command injection
- 2020/03/24 JVN#32415420:[Unreachable]
- Multiple vulnerabiliteis in Shihonkanri Plus GOOUT
- 2020/03/24 JVN#77634892:[Unreachable]
- mailform vulnerable to PHP code execution
- 2020/03/24 JVN#85942151:[Unreachable]
- mailform vulnerable to cross-site scripting
- 2020/03/03 JVN#19666251:
- Multiple vulnerabilities in OpenBlocks IoT VX2
- 2020/03/02 JVN#73472345:
- GRANDIT vulnerable to session management
- 2020/02/25 JVN#15697526:
- Privilege escalation vulnerability in multiple RICOH printer drivers
- 2020/02/25 JVN#52962201:
- Multiple vulnerabilities in RICOH printers
- 2020/02/19 JVN#25766797:
- Multiple OS command injection vulnerabilities in Aterm WF1200C, Aterm WG1200CR, and Aterm WG2600HS
- 2020/02/19 JVN#49410695:
- Multiple vulnerabilities in Aterm WG2600HS
- 2020/02/18 JVN#89259622:
- WordPress Plugin "Easy Property Listings" vulnerable to cross-site request forgery
- 2020/02/14 JVN#35496038:
- ilbo App vulnerable to authentication bypass
- 2020/02/14 JVN#02921757:
- Multiple Trend Micro products vulnerable to denial-of-service (DoS)
- 2020/02/10 JVN#34535327:
- HtmlUnit vulenerable to arbitrary code execution
- 2020/02/06 JVN#94435544:
- Movable Type vulnerable to cross-site scripting
- 2020/02/05 JVN#52486659:
- Ghostscript access restriction bypass vulnerability
- 2020/01/31 JVN#00014057:
- AWMS Mobile App vulnerable to improper server certificate verification
- 2020/01/28 JVN#28845872:
- Android App "MyPallete" vulnerable to improper server certificate verification
- 2020/01/21 JVN#66435380:
- Multiple Fuji Xerox mobile applications fails to verify SSL server certificates
- 2020/01/17 JVN#37183636:
- Trend Micro Password Manager vulnerable to information disclosure
- 2020/01/17 JVN#49593434:
- Trend Micro Password Manager vulnerable to information disclosure
- 2020/01/10 JVN#07375820:
- Junos OS vulnerable to directory traversal
- 2020/01/10 JVN#21753370:
- Junos OS vulnerable to cross-site scripting
- 2020/01/08 JVN#97325754:
- F-RevoCRM vulnerable to cross-site scripting
2019
- 2019/12/20 JVN#10377257:
- Multiple vulnerabilities in a-blog cms
- 2019/12/19 JVN#01236065:
- Android App "NTV News24" fails to verify SSL server certificates
- 2019/12/17 JVN#79854355:
- Multiple vulnerabilities in Cybozu Office
- 2019/12/12 JVN#26847507:
- Multiple vulnerabilities in "Custom Body Class"
- 2019/12/12 JVN#57070811:
- Athenz vulnerable to open redirect
- 2019/12/10 JVN#63047298:
- Kinza vulnerable to cross-site scripting
- 2019/12/02 JVN#49068796:
- Multiple MOTEX products vulnerable to privilege escalation
- 2019/11/26 JVN#19386781:
- STAMP Workbench installer may insecurely load Dynamic Link Libraries
- 2019/11/26 JVN#26838191:
- WordPress Plugin "WP Spell Check" vulnerable to cross-site request forgery
- 2019/11/13 JVN#65280626:
- Movable Type vulnerable to open redirect
- 2019/11/07 JVN#41566067:
- Rakuma App vulnerable to authentication information disclosure
- 2019/10/28 JVN#45633549:
- Library Information Management System LIMEDIO vulnerable to open redirect
- 2019/10/23 JVN#34634458:
- PowerCMS vulnerable to open redirect
- 2019/10/15 JVN#74530672:
- NetCommons3 vulnerable to cross-site scripting
- 2019/10/11 JVN#14776551:
- Multiple vulnerabilities in WordPress Plugin "wpDataTables Lite"
- 2019/10/07 JVN#59436681:
- Multiple vulnerabilities in EC-CUBE module "REMISE Payment module (2.11, 2.12 and 2.13)"
- 2019/10/07 JVN#95875796:
- Multiple OS command injection vulnerabilities in DBA-1510P
- 2019/09/19 JVN#97845465:
- Multiple integer overflow vulnerabilities in LINE(Android)
- 2019/09/13 JVN#11708203:
- Multiple buffer overflow vulnerabilities in multiple Ricoh printers and Multifunction Printers (MFPs)
- 2019/09/12 JVN#39383894:
- apng-drawable vulnerable to integer overflow
- 2019/09/10 JVN#74699196:
- SHIRASAGI vulnerable to open redirect
- 2019/09/02 JVN#93833849:
- Panasonic Video Insight VMS vulnerable to SQL injection
- 2019/08/26 JVN#71877187:
- Cybozu Garoon vulnerable to SQL injection
- 2019/08/23 JVN#17127920:
- Smart TV Box fails to restrict access permissions
- 2019/08/15 JVN#07679150:
- ApeosWare Management Suite and ApeosWare Management Suite 2 contain open redirect vulnerability
- 2019/08/07 JVN#29343839:
- EC-CUBE plugin "Amazon Pay Plugin 2.12,2.13" vulnerable to cross-site scripting
- 2019/07/31 JVN#94889214:
- Central Dogma vulnerable to cross-site scripting
- 2019/07/18 JVN#92510087:
- WordPress Plugin "Category Specific RSS feed Subscription" vulnerable to cross-site request forgery
- 2019/07/16 JVN#48981892:
- WordPress Plugin "WordPress Ultra Simple Paypal Shopping Cart" vulnerable to cross-site request forgery
- 2019/07/16 JVN#62618482:
- Multiple vulnerabilities in Cybozu Garoon
- 2019/07/10 JVN#75617741:
- Intel Dual Band Wireless-AC 8260 vulnerable to denial-of-service (DoS)
- 2019/07/05 JVN#37230341:
- Multiple vulnerabilities in Access analysis CGI An-Analyzer
- 2019/07/01 JVN#28218613:
- The management console of iDoors Reader vulnerable to authentication bypass
- 2019/06/27 JVN#43172719:
- Multiple vulnerabilities in Hikari Denwa router/Home GateWay
- 2019/06/24 JVN#29933378:
- WordPress Plugin "Custom CSS Pro" vulnerable to cross-site request forgery
- 2019/06/24 JVN#49575131:
- WordPress Plugin ”HTML5 Maps” vulnerable to cross-site request forgery
- 2019/06/21 JVN#13555032:
- Multiple vulnerabilities in VAIO Update
- 2019/06/19 JVN#88804335:
- WordPress Plugin "Personalized WooCommerce Cart Page” vulnerable to cross-site request forgery
- 2019/06/17 JVN#31406910:
- WordPress Plugin "Related YouTube Videos" vulnerable to cross-site request forgery
- 2019/06/13 JVN#89046645:
- A map plugin for Minecraft server "Dynmap" fails to restrict access permissions
- 2019/06/12 JVN#80925867:
- WordPress Plugin "Contest Gallery” vulnerable to cross-site request forgery
- 2019/06/10 JVN#96988995:
- Multiple vulnerabilities in WordPress Plugin "Online Lesson Booking"
- 2019/06/10 JVN#95685939:
- Multiple vulnerabilities in WordPress Plugin "Attendance Manager"
- 2019/06/07 JVN#84876282:
- Multiple vulnerabilities in GROWI
- 2019/06/07 JVN#29188908:
- Joruri CMS 2017 vulnerable to cross-site scripting
- 2019/06/07 JVN#58052567:
- Multiple vulnerabilities in Joruri Mail
- 2019/05/31 JVN#88962935:
- Multiple vulnerabilities in WordPress Plugin "Zoho SalesIQ"