Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188441 4.3 警告 Sourcefabric - Newscoop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1935 2012-08-29 15:54 2012-04-5 Show GitHub Exploit DB Packet Storm
188442 7.5 危険 Sourcefabric - Newscoop の admin/country/edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1934 2012-08-29 15:53 2012-04-5 Show GitHub Exploit DB Packet Storm
188443 6.8 警告 Sourcefabric - Newscoop における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1933 2012-08-29 15:52 2012-04-5 Show GitHub Exploit DB Packet Storm
188444 4.4 警告 Google - Tunnelblick における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4677 2012-08-29 11:53 2012-08-26 Show GitHub Exploit DB Packet Storm
188445 1.2 注意 Google - Tunnelblick の errorExitIfAttackViaString 関数における任意のファイルを削除される脆弱性 CWE-59
リンク解釈の問題 		CVE-2012-4676 2012-08-29 11:51 2012-08-26 Show GitHub Exploit DB Packet Storm
188446 1.2 注意 Google - Tunnelblick における予期せぬプロセスを停止される脆弱性 CWE-362
競合状態 		CVE-2012-3487 2012-08-29 11:50 2012-08-26 Show GitHub Exploit DB Packet Storm
188447 6.9 警告 Google - Tunnelblick における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3486 2012-08-29 11:49 2012-08-26 Show GitHub Exploit DB Packet Storm
188448 7.2 危険 Google - Tunnelblick における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3485 2012-08-29 11:48 2012-08-26 Show GitHub Exploit DB Packet Storm
188449 7.2 危険 Google - Tunnelblick におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3484 2012-08-29 11:47 2012-08-26 Show GitHub Exploit DB Packet Storm
188450 6.2 警告 Google - Tunnelblick の runScript 関数における権限を取得される脆弱性 CWE-362
競合状態 		CVE-2012-3483 2012-08-29 11:35 2012-08-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 12:17 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
91 - - - GLPI is a free asset and IT management software package. Starting in 9.2.0 and prior to 11.0.0, it is possible to download a document from the API without appropriate rights. Upgrade to 10.0.16. New CWE-285
Improper Authorization 		CVE-2024-38370 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
92 - - - A vulnerability, which was classified as critical, was found in SourceCodester Student Record Management System 1.0. Affected is an unknown function of the file StudentRecordManagementSystem.cpp of t… New CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2024-11261 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
93 - - - In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings bypass due to a missing permission check. This could lead to local escalation of privilege allowing u… New - CVE-2017-13314 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
94 - - - In ElementaryStreamQueue::dequeueAccessUnitMPEG4Video of ESQueue.cpp, there is a possible infinite loop leading to resource exhaustion due to an incorrect bounds check. This could lead to remote deni… New - CVE-2017-13313 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
95 - - - In createFromParcel of MediaCas.java, there is a possible parcel read/write mismatch due to improper input validation. This could lead to local escalation of privilege where an app can start an activ… New - CVE-2017-13312 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
96 - - - In the read() function of ProcessStats.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can star… New - CVE-2017-13311 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
97 - - - In createFromParcel of ViewPager.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can start an a… New - CVE-2017-13310 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
98 - - - In readEncryptedData of ConscryptEngine.java, there is a possible plaintext leak due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges… New - CVE-2017-13309 2024-11-16 06:35 2024-11-16 Show GitHub Exploit DB Packet Storm
99 - - - An invalid memory access when handling the ProtocolIE_ID field of S1Setup Request messages in Athonet vEPC MME v11.4.0 allows attackers to cause a Denial of Service (DoS) to the cellular network by r… New - CVE-2024-24459 2024-11-16 06:35 2024-11-16 Show GitHub Exploit DB Packet Storm
100 - - - An invalid memory access when handling the ENB Configuration Transfer messages containing invalid PLMN Identities in Athonet vEPC MME v11.4.0 allows attackers to cause a Denial of Service (DoS) to th… New - CVE-2024-24458 2024-11-16 06:35 2024-11-16 Show GitHub Exploit DB Packet Storm