Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 18, 2024, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188321	4.3	警告	EGroupware	-	EGroupware Enterprise Line および EGroupware Community Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4950	2012-09-5 11:35	2011-08-4	Show	GitHub Exploit DB Packet Storm

188322	7.5	危険	EGroupware	-	EGroupware Enterprise Line および EGroupware Community Edition における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4949	2012-09-5 11:34	2011-08-4	Show	GitHub Exploit DB Packet Storm

188323	5	警告	EGroupware	-	EGroupware Enterprise Line および EGroupware Community Edition におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4948	2012-09-5 11:34	2011-08-4	Show	GitHub Exploit DB Packet Storm

188324	6.8	警告	e107.org	-	e107 の e107_admin/users_extended.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4947	2012-09-5 11:33	2011-05-28	Show	GitHub Exploit DB Packet Storm

188325	6.8	警告	e107.org	-	e107 の e107_admin/users_extended.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4946	2012-09-5 11:26	2011-05-28	Show	GitHub Exploit DB Packet Storm

188326	4.3	警告	SpamTitan Technologies	-	SpamTitan におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5150	2012-09-5 11:25	2012-08-31	Show	GitHub Exploit DB Packet Storm

188327	4.3	警告	SpamTitan Technologies	-	SpamTitan におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5149	2012-09-5 11:25	2012-08-31	Show	GitHub Exploit DB Packet Storm

188328	6.8	警告	Wasen	-	Joomla! 用 Simple File Upload モジュールにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-5148	2012-09-5 11:23	2012-01-2	Show	GitHub Exploit DB Packet Storm

188329	5	警告	FreeWebshop	-	FreeWebshop の tinymce プラグインにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-5147	2012-09-5 11:19	2012-08-31	Show	GitHub Exploit DB Packet Storm

188330	2.6	注意	Inguma	-	Debian 用 Bokken における任意のファイルを上書される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-5146	2012-09-5 11:17	2012-01-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 18, 2024, 12:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
11	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: io_uring: fix possible deadlock in io_register_iowq_max_workers() The io_register_iowq_max_workers() function calls io_put_sq_dat… Update	CWE-667 Improper Locking	CVE-2024-41080	2024-11-18 00:15	2024-07-30	Show	GitHub Exploit DB Packet Storm

12	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix possible use-after-free issue in ftrace_location() KASAN reports a bug: BUG: KASAN: use-after-free in ftrace_locat… Update	CWE-416 Use After Free	CVE-2024-38588	2024-11-18 00:15	2024-06-19	Show	GitHub Exploit DB Packet Storm

13	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure we have at least eth header len bytes syzbot triggered an uninit value[1] error in bridge device's x… Update	CWE-908 Use of Uninitialized Resource	CVE-2024-38538	2024-11-18 00:15	2024-06-19	Show	GitHub Exploit DB Packet Storm

14	-		-	-	In the Linux kernel, the following vulnerability has been resolved: spi: Fix deadlock when adding SPI controllers on SPI buses Currently we have a global spi_add_lock which we take when adding new … Update	-	CVE-2021-47469	2024-11-18 00:15	2024-05-22	Show	GitHub Exploit DB Packet Storm

15	-		-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: af_bluetooth: Fix deadlock Attemting to do sock_lock on .recvmsg may cause a deadlock as shown bellow, so instead of u… Update	-	CVE-2024-26886	2024-11-18 00:15	2024-04-17	Show	GitHub Exploit DB Packet Storm

16	-		-	-	A flaw was found in GNOME Maps, which is vulnerable to a code injection attack via its service.json configuration file. If the configuration file is malicious, it may execute arbitrary code. New	-	CVE-2023-43091	2024-11-17 22:15	2024-11-17	Show	GitHub Exploit DB Packet Storm

17	7.7	HIGH Network	-	-	A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods goin… New	CWE-20 Improper Input Validation	CVE-2024-0793	2024-11-17 20:15	2024-11-17	Show	GitHub Exploit DB Packet Storm

18	5.5	MEDIUM Network	-	-	A flaw was found in OpenStack. When a user tries to delete a non-existing access rule in it's scope, it deletes other existing access rules which are not associated with any application credentials. New	-	CVE-2023-6110	2024-11-17 20:15	2024-11-17	Show	GitHub Exploit DB Packet Storm

19	7.4	HIGH Network	-	-	A flaw was found in Undertow, which incorrectly parses cookies with certain value-delimiting characters in incoming requests. This issue could allow an attacker to construct a cookie value to exfiltr… New	CWE-444 HTTP Request Smuggling	CVE-2023-4639	2024-11-17 20:15	2024-11-17	Show	GitHub Exploit DB Packet Storm

20	5.9	MEDIUM Network	-	-	A script injection vulnerability was found in the Debezium database connector, where it does not properly sanitize some parameters. This flaw allows an attacker to send a malicious request to inject … New	CWE-233 Improper Handling of Parameters	CVE-2023-1419	2024-11-17 20:15	2024-11-17	Show	GitHub Exploit DB Packet Storm