Vulnerability Reports JP
2020
- 2020/08/03 JVN#25422698:[Critical]
- SKYSEA Client View vulnerable to privilege escalation
- 2020/07/31 JVN#73169744:
- Multiple vulnerabilities in multiple PHP Factory products
- 2020/07/31 JVN#84959128:
- FANUC i Series CNC vulnerable to denial-of-service (DoS)
- 2020/07/29 JVN#40400577:
- TOYOTA MOTOR's Global TechStream vulnerable to buffer overflow
- 2020/07/28 JVN#48194211:
- Multiple vulnerabilities in KonaWiki2 and KonaWiki3
- 2020/07/28 JVN#62161191:
- JavaFX WebEngine does not properly restrict Java method execution
- 2020/07/22 JVN#05502028:
- WordPress Plugin "Social Sharing Plugin" vulnerable to cross-site request forgery
- 2020/07/09 JVN#55657988:
- SHIRASAGI vulnerable to open redirect
- 2020/07/08 JVN#93167107:
- Android App "Mercari" (Japan version) vulnerable to arbitrary method execution of Java object
- 2020/06/29 JVN#55497111:
- Multiple vulnerabilities in Cybozu Garoon
- 2020/06/24 JVN#40039627:
- Chrome Extension for e-Tax Reception System vulnerable to arbitrary command execution
- 2020/06/18 JVN#77458946:
- EC-CUBE vulnerable to directory traversal
- 2020/06/11 JVN#32252648:
- Multiple vulnerabilities in Zenphoto
- 2020/06/09 JVN#67447798:
- Multiple SONY Wireless Headphones allow improper Bluetooth pairing
- 2020/06/05 JVN#40208370:
- XACK DNS vulnerable to denial-of-service (DoS)
- 2020/05/29 JVN#78745667:
- Multiples security updates for multiple Cybozu products
- 2020/05/25 JVN#59552136:
- Cybozu Desktop for Windows vulenerable to arbitrary code execution
- 2020/05/19 JVN#20248858:
- WordPress Plugin "Paid Memberships Pro" vulnerable to SQL injection
- 2020/05/19 JVN#96646182:
- Panasonic Video Insight VMS vulnerable to arbitrary code execution
- 2020/05/13 JVN#41035278:
- BookStack vulnerable to cross-site scripting
- 2020/05/13 JVN#28806943:
- Multiple vulnerabilities in Movable Type
- 2020/05/11 JVN#61849442:
- PALLET CONTROL vulnerable to arbitrary code execution
- 2020/04/28 JVN#47668991:
- Sales Force Assistant vulnerable to cross-site scripting
- 2020/04/27 JVN#35649781:
- Multiple vulnerabilities in Cybozu Garoon
- 2020/04/23 JVN#93064451:
- Multiple SHARP Android devices vulnerable to information disclosure
- 2020/04/20 JVN#13467854:
- Toshiba Electronic Devices & Storage software registers unquoted service paths
- 2020/04/08 JVN#89224521:
- Multiple vulnerabilities in EasyBlocks IPv6
- 2020/04/07 JVN#56890693:
- Joomla! plugin "AcyMailing" vulnerable to arbitrary file uploads
- 2020/03/31 JVN#38732359:
- Multiple Yamaha network devices vulnerable to denial-of-service (DoS)
- 2020/03/24 JVN#88277644:[Unreachable]
- Keijiban Tsumiki vulenrable to OS command injection
- 2020/03/24 JVN#27951364:[Unreachable]
- WL-Enq (WEB Enquete) vulnerable to OS command injection
- 2020/03/24 JVN#88033799:[Unreachable]
- WL-Enq (WEB Enquete) vulnerable to cross-site scripting
- 2020/03/24 JVN#58176087:[Unreachable]
- Cute News vulnerable to PHP code execution
- 2020/03/24 JVN#29095127:[Unreachable]
- CuteNews vulnerable to cross-site scripting
- 2020/03/24 JVN#63834780:[Unreachable]
- Shihonkanri Plus GOOUT vulnerable to OS command injection
- 2020/03/24 JVN#32415420:[Unreachable]
- Multiple vulnerabiliteis in Shihonkanri Plus GOOUT
- 2020/03/24 JVN#77634892:[Unreachable]
- mailform vulnerable to PHP code execution
- 2020/03/24 JVN#85942151:[Unreachable]
- mailform vulnerable to cross-site scripting
- 2020/03/03 JVN#19666251:
- Multiple vulnerabilities in OpenBlocks IoT VX2
- 2020/03/02 JVN#73472345:
- GRANDIT vulnerable to session management
- 2020/02/25 JVN#15697526:
- Privilege escalation vulnerability in multiple RICOH printer drivers
- 2020/02/25 JVN#52962201:
- Multiple vulnerabilities in RICOH printers
- 2020/02/19 JVN#25766797:
- Multiple OS command injection vulnerabilities in Aterm WF1200C, Aterm WG1200CR, and Aterm WG2600HS
- 2020/02/19 JVN#49410695:
- Multiple vulnerabilities in Aterm WG2600HS
- 2020/02/18 JVN#89259622:
- WordPress Plugin "Easy Property Listings" vulnerable to cross-site request forgery
- 2020/02/14 JVN#35496038:
- ilbo App vulnerable to authentication bypass
- 2020/02/14 JVN#02921757:
- Multiple Trend Micro products vulnerable to denial-of-service (DoS)
- 2020/02/10 JVN#34535327:
- HtmlUnit vulenerable to arbitrary code execution
- 2020/02/06 JVN#94435544:
- Movable Type vulnerable to cross-site scripting
- 2020/02/05 JVN#52486659:
- Ghostscript access restriction bypass vulnerability
- 2020/01/31 JVN#00014057:
- AWMS Mobile App vulnerable to improper server certificate verification
- 2020/01/28 JVN#28845872:
- Android App "MyPallete" vulnerable to improper server certificate verification
- 2020/01/21 JVN#66435380:
- Multiple Fuji Xerox mobile applications fails to verify SSL server certificates
- 2020/01/17 JVN#37183636:
- Trend Micro Password Manager vulnerable to information disclosure
- 2020/01/17 JVN#49593434:
- Trend Micro Password Manager vulnerable to information disclosure
- 2020/01/10 JVN#07375820:
- Junos OS vulnerable to directory traversal
- 2020/01/10 JVN#21753370:
- Junos OS vulnerable to cross-site scripting
- 2020/01/08 JVN#97325754:
- F-RevoCRM vulnerable to cross-site scripting
2019
- 2019/12/20 JVN#10377257:
- Multiple vulnerabilities in a-blog cms
- 2019/12/19 JVN#01236065:
- Android App "NTV News24" fails to verify SSL server certificates
- 2019/12/17 JVN#79854355:
- Multiple vulnerabilities in Cybozu Office
- 2019/12/12 JVN#26847507:
- Multiple vulnerabilities in "Custom Body Class"
- 2019/12/12 JVN#57070811:
- Athenz vulnerable to open redirect
- 2019/12/10 JVN#63047298:
- Kinza vulnerable to cross-site scripting
- 2019/12/02 JVN#49068796:
- Multiple MOTEX products vulnerable to privilege escalation
- 2019/11/26 JVN#19386781:
- STAMP Workbench installer may insecurely load Dynamic Link Libraries
- 2019/11/26 JVN#26838191:
- WordPress Plugin "WP Spell Check" vulnerable to cross-site request forgery
- 2019/11/13 JVN#65280626:
- Movable Type vulnerable to open redirect
- 2019/11/07 JVN#41566067:
- Rakuma App vulnerable to authentication information disclosure
- 2019/10/28 JVN#45633549:
- Library Information Management System LIMEDIO vulnerable to open redirect
- 2019/10/23 JVN#34634458:
- PowerCMS vulnerable to open redirect
- 2019/10/15 JVN#74530672:
- NetCommons3 vulnerable to cross-site scripting
- 2019/10/11 JVN#14776551:
- Multiple vulnerabilities in WordPress Plugin "wpDataTables Lite"
- 2019/10/07 JVN#59436681:
- Multiple vulnerabilities in EC-CUBE module "REMISE Payment module (2.11, 2.12 and 2.13)"
- 2019/10/07 JVN#95875796:
- Multiple OS command injection vulnerabilities in DBA-1510P
- 2019/09/19 JVN#97845465:
- Multiple integer overflow vulnerabilities in LINE(Android)
- 2019/09/13 JVN#11708203:
- Multiple buffer overflow vulnerabilities in multiple Ricoh printers and Multifunction Printers (MFPs)
- 2019/09/12 JVN#39383894:
- apng-drawable vulnerable to integer overflow
- 2019/09/10 JVN#74699196:
- SHIRASAGI vulnerable to open redirect
- 2019/09/02 JVN#93833849:
- Panasonic Video Insight VMS vulnerable to SQL injection
- 2019/08/26 JVN#71877187:
- Cybozu Garoon vulnerable to SQL injection
- 2019/08/23 JVN#17127920:
- Smart TV Box fails to restrict access permissions
- 2019/08/15 JVN#07679150:
- ApeosWare Management Suite and ApeosWare Management Suite 2 contain open redirect vulnerability
- 2019/08/07 JVN#29343839:
- EC-CUBE plugin "Amazon Pay Plugin 2.12,2.13" vulnerable to cross-site scripting