Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 15, 2024, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188581	4.3	警告	FFmpeg	-	FFmpeg の libavcodec/ws-snd1.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0848	2012-08-22 14:39	2012-08-20	Show	GitHub Exploit DB Packet Storm

188582	4.3	警告	FFmpeg	-	FFmpeg の libavfilter/avfilter.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0847	2012-08-22 14:35	2012-08-20	Show	GitHub Exploit DB Packet Storm

188583	6.8	警告	FFmpeg	-	FFmpeg の libavcodec の vorbis.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-0859	2012-08-22 14:29	2012-08-20	Show	GitHub Exploit DB Packet Storm

188584	6.8	警告	FFmpeg Libav	-	FFmpeg および Libav の libavcodec の shorten.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0858	2012-08-22 14:28	2012-03-15	Show	GitHub Exploit DB Packet Storm

188585	6.8	警告	FFmpeg Libav	-	FFmpeg および Libav の libavcodec の atrac3.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0853	2012-08-22 14:28	2012-03-15	Show	GitHub Exploit DB Packet Storm

188586	6.8	警告	FFmpeg Libav	-	FFmpeg および Libav の libavcodec の adpcm.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-0852	2012-08-22 14:27	2012-06-9	Show	GitHub Exploit DB Packet Storm

188587	6.8	警告	FFmpeg Libav	-	FFmpeg および Libav の libavcodec の h264_ps.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-0851	2012-08-22 14:04	2012-06-9	Show	GitHub Exploit DB Packet Storm

188588	6.8	警告	FFmpeg Libav	-	FFmpeg および Libav の libavcodec の kmvc.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3952	2012-08-22 14:02	2012-01-27	Show	GitHub Exploit DB Packet Storm

188589	6.8	警告	FFmpeg Libav	-	FFmpeg および Libav の libavcodec 内の dpcm.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-3951	2012-08-22 13:52	2012-01-27	Show	GitHub Exploit DB Packet Storm

188590	6.8	警告	FFmpeg Libav	-	FFmpeg および Libav の libavcodec 内の mjpegbdec.c におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3947	2012-08-22 12:33	2012-01-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 16, 2024, 5:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
101	7.8	HIGH Local	samsung	android	Improper access control in ActivityManager prior to SMR Oct-2024 Release 1 in select Android 12, 13 and SMR Sep-2024 Release 1 in select Android 14 allows local attackers to execute privileged behavi… Update	NVD-CWE-noinfo	CVE-2024-34662	2024-11-16 01:34	2024-10-8	Show	GitHub Exploit DB Packet Storm

102	5.4	MEDIUM Network	seothemes	display_terms_shortcode	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SEO Themes Display Terms Shortcode allows Stored XSS.This issue affects Display Terms Shor… Update	CWE-79 Cross-site Scripting	CVE-2024-51610	2024-11-16 01:32	2024-11-10	Show	GitHub Exploit DB Packet Storm

103	5.4	MEDIUM Network	genoo	genoo	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Genoo, LLC Genoo allows DOM-Based XSS.This issue affects Genoo: from n/a through 6.0.10. Update	CWE-79 Cross-site Scripting	CVE-2024-51605	2024-11-16 01:31	2024-11-10	Show	GitHub Exploit DB Packet Storm

104	6.1	MEDIUM Network	alist_project	alist	AList is a file list program that supports multiple storages. AList contains a reflected cross-site scripting vulnerability in helper.go. The endpoint /i/:link_name takes in a user-provided value and… Update	CWE-79 Cross-site Scripting	CVE-2024-47067	2024-11-16 01:28	2024-10-1	Show	GitHub Exploit DB Packet Storm

105	5.4	MEDIUM Network	mirceatm	nmr_strava_activities	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mircea N. NMR Strava activities allows DOM-Based XSS.This issue affects NMR Strava activit… Update	CWE-79 Cross-site Scripting	CVE-2024-51603	2024-11-16 01:24	2024-11-10	Show	GitHub Exploit DB Packet Storm

106	5.4	MEDIUM Network	jumpstartcreatives	media_modal	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Carlo Andro Mabugay Media Modal allows DOM-Based XSS.This issue affects Media Modal: from … Update	CWE-79 Cross-site Scripting	CVE-2024-51604	2024-11-16 01:19	2024-11-10	Show	GitHub Exploit DB Packet Storm

107	5.4	MEDIUM Network	cyberchimps	responsive_addons_for_elementor	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Cyberchimps Responsive Addons for Elementor allows DOM-Based XSS.This issue affects Respon… Update	CWE-79 Cross-site Scripting	CVE-2024-52358	2024-11-16 01:17	2024-11-11	Show	GitHub Exploit DB Packet Storm

108	8.8	HIGH Network	microsoft	sql_server_2016 sql_server_2017 sql_server_2019	SQL Server Native Client Remote Code Execution Vulnerability Update	NVD-CWE-noinfo	CVE-2024-49012	2024-11-16 01:16	2024-11-13	Show	GitHub Exploit DB Packet Storm

109	8.8	HIGH Network	microsoft	sql_server_2016 sql_server_2017 sql_server_2019	SQL Server Native Client Remote Code Execution Vulnerability Update	NVD-CWE-noinfo	CVE-2024-49011	2024-11-16 01:16	2024-11-13	Show	GitHub Exploit DB Packet Storm

110	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-2414. Reason: This candidate is a reservation duplicate of CVE-2023-2414. Notes: All CVE users should reference CV… New	-	CVE-2024-7865	2024-11-16 01:15	2024-11-16	Show	GitHub Exploit DB Packet Storm