information-technology promotion agency, japan (ipa)

Security ProductsJPoss-project

Cumulative CVEs

Monthly snapshots

#104

Peak rank

Trend history

Full timeline

Top products

installer of casl ii simulator(self-extract format)1 source code security studying tool icodechecker1

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting information-technology promotion agency, japan (ipa).

CVE-2019-6019Untrusted search path vulnerability in STAMP Workbench installer all versions allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.7.8Dec 26, 2019
CVE-2017-2220Untrusted search path vulnerability in Installer of CASL II simulator (self-extract format) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.7.8Jul 7, 2017
CVE-2017-2194Cross-site scripting vulnerability in Source code security studying tool iCodeChecker allows an attacker to inject arbitrary web script or HTML via unspecified vectors.6.1Jul 7, 2017
CVE-2017-2182Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors, a different vulnerability than CVE-2017-2...8.8Jun 9, 2017
CVE-2017-2181Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors, a different vulnerability than CVE-2017-2...8.8Jun 9, 2017
CVE-2017-2180Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors.4.3Jun 9, 2017
CVE-2017-2179Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allows remote code execution via unspecified vectors, a different vulnerability than CVE-2017-2181 and CVE-2017...8.8Jun 9, 2017
CVE-2017-2175Untrusted search path vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.7.8May 22, 2017
CVE-2017-2174Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.6.1May 22, 2017
CVE-2017-2173Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.5.4May 22, 2017
CVE-2017-2128Security guide for website operators allows remote attackers to execute arbitrary OS commands via specially crafted saved data.8.8Apr 28, 2017
CVE-2017-2102Cross-site request forgery (CSRF) vulnerability in Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to hijack the authentication of admi...8.8Apr 28, 2017
CVE-2017-2101Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to bypass authentication to perform arbitrary operations via unspecified vectors.7.3Apr 28, 2017
CVE-2017-2100Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.1 and earlier allows remote attackers to conduct DNS rebinding attacks via unspecified vectors.6.3Apr 28, 2017
CVE-2017-2099Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote code execution via unspecified vectors.6.3Apr 28, 2017