Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
188451 5 警告 Munin - Munin の munin-cgi-graph におけるサービス運用妨害 (ディスク消費) の脆弱性 CWE-399
リソース管理の問題
CVE-2012-4678 2012-08-29 11:25 2012-04-27 Show GitHub Exploit DB Packet Storm
188452 2.1 注意 Creative Commons module Project - Drupal 用 Creative Commons モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2297 2012-08-29 11:20 2012-04-25 Show GitHub Exploit DB Packet Storm
188453 5 警告 Munin - Munin の munin-cgi-graph におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2012-2147 2012-08-29 11:17 2012-08-26 Show GitHub Exploit DB Packet Storm
188454 4.3 警告 Elixir - Elixir における重要な情報を取得される脆弱性 CWE-310
暗号の問題
CVE-2012-2146 2012-08-29 11:14 2012-08-26 Show GitHub Exploit DB Packet Storm
188455 6.8 警告 Munin - Munin の cgi-bin/munin-cgi-graph における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2012-2104 2012-08-29 10:56 2012-08-26 Show GitHub Exploit DB Packet Storm
188456 9.3 危険 Sitecom - Sitecom WLM-2501 におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-1921 2012-08-29 10:28 2012-08-26 Show GitHub Exploit DB Packet Storm
188457 4.3 警告 Elefant CMS - Elefant CMS の apps/admin/handlers/preview.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1296 2012-08-29 10:26 2012-08-26 Show GitHub Exploit DB Packet Storm
188458 6.8 警告 GNU Project - GNU Gnash の libbase/GnashImage.h における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2012-1175 2012-08-28 16:58 2012-08-26 Show GitHub Exploit DB Packet Storm
188459 4.3 警告 PluXml - PluXml におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4675 2012-08-28 16:47 2012-04-16 Show GitHub Exploit DB Packet Storm
188460 5 警告 PluXml - PluXml におけるインストールパスを取得される脆弱性性 CWE-200
情報漏えい
CVE-2012-4674 2012-08-28 16:46 2012-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
151 - - - An issue in UltiMaker Cura v.4.41 and 5.8.1 and before allows a local attacker to execute arbitrary code via Inter-process communication (IPC) mechanism between Cura application and CuraEngine proces… New - CVE-2024-51330 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
152 - - - An issue in kodbox v.1.52.04 and before allows a remote attacker to obtain sensitive information via the captcha feature in the password reset function. New - CVE-2024-51037 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
153 - - - GLPI is a free asset and IT management software package. An authenticated user can perfom a SQL injection by changing its preferences. Upgrade to 10.0.17. New CWE-89
SQL Injection
CVE-2024-45608 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
154 - - - GLPI is a free asset and IT management software package. An unauthenticated user can provide a malicious link to a GLPI technician in order to exploit a reflected XSS vulnerability. Upgrade to 10.0.1… New CWE-79
Cross-site Scripting
CVE-2024-43418 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
155 - - - GLPI is a free asset and IT management software package. An unauthenticated user can provide a malicious link to a GLPI technician in order to exploit a reflected XSS vulnerability located in the Sof… New CWE-79
Cross-site Scripting
CVE-2024-43417 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
156 - - - GLPI is a free asset and IT management software package. An authenticated user can exploit a SQL injection vulnerability from the ticket form. Upgrade to 10.0.17. New CWE-89
SQL Injection
CVE-2024-41679 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
157 - - - An uninitialized pointer dereference in OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service (DoS) via a crafted InitialContextSetupResponse message sent to the AMF. New - CVE-2024-24446 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
158 - - - A reachable assertion in the ogs_nas_emm_decode function of Open5GS v2.7.0 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet with a zero-length EMM message length. New - CVE-2024-24431 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
159 - - - Reachable assertions in the NGAP_FIND_PROTOCOLIE_BY_ID function of OpenAirInterface Magma v1.8.0 and OAI EPC Federation v1.2.0 allow attackers to cause a Denial of Service (DoS) via a crafted NGAP pa… New - CVE-2024-24426 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm
160 - - - Magma v1.8.0 and OAI EPC Federation v1.20 were discovered to contain an out-of-bounds read in the amf_as_establish_req function at /tasks/amf/amf_as.cpp. This vulnerability allows attackers to cause … New - CVE-2024-24425 2024-11-16 04:15 2024-11-16 Show GitHub Exploit DB Packet Storm