Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188581 4.3 警告 FFmpeg - FFmpeg の libavcodec/ws-snd1.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0848 2012-08-22 14:39 2012-08-20 Show GitHub Exploit DB Packet Storm
188582 4.3 警告 FFmpeg - FFmpeg の libavfilter/avfilter.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0847 2012-08-22 14:35 2012-08-20 Show GitHub Exploit DB Packet Storm
188583 6.8 警告 FFmpeg - FFmpeg の libavcodec の vorbis.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0859 2012-08-22 14:29 2012-08-20 Show GitHub Exploit DB Packet Storm
188584 6.8 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec の shorten.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0858 2012-08-22 14:28 2012-03-15 Show GitHub Exploit DB Packet Storm
188585 6.8 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec の atrac3.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0853 2012-08-22 14:28 2012-03-15 Show GitHub Exploit DB Packet Storm
188586 6.8 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec の adpcm.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0852 2012-08-22 14:27 2012-06-9 Show GitHub Exploit DB Packet Storm
188587 6.8 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec の h264_ps.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0851 2012-08-22 14:04 2012-06-9 Show GitHub Exploit DB Packet Storm
188588 6.8 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec の kmvc.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3952 2012-08-22 14:02 2012-01-27 Show GitHub Exploit DB Packet Storm
188589 6.8 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec 内の dpcm.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3951 2012-08-22 13:52 2012-01-27 Show GitHub Exploit DB Packet Storm
188590 6.8 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec 内の mjpegbdec.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3947 2012-08-22 12:33 2012-01-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 5:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
61 - - - Nextcloud Server is a self hosted personal cloud system. The OAuth2 client secrets were stored in a recoverable way, so that an attacker that got access to a backup of the database and the Nextcloud … New CWE-922
 Insecure Storage of Sensitive Information 		CVE-2024-52519 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
62 - - - Nextcloud Server is a self hosted personal cloud system. After an attacker got access to the session of a user or administrator, the attacker would be able to create, change or delete external storag… New CWE-287
Improper Authentication 		CVE-2024-52518 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
63 - - - Nextcloud Server is a self hosted personal cloud system. After storing "Global credentials" on the server, the API returns them and adds them into the frontend again, allowing to read them in plain t… New CWE-200
Information Exposure 		CVE-2024-52517 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
64 - - - Nextcloud Server is a self hosted personal cloud system. When a server is configured to only allow sharing with users that are in ones own groups, after a user was removed from a group, previously sh… New CWE-269
 Improper Privilege Management 		CVE-2024-52516 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
65 - - - Nextcloud Server is a self hosted personal cloud system. After an admin enables the default-disabled SVG preview provider, a malicious user could upload a manipulated SVG file referencing paths. If t… New CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2024-52515 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
66 - - - emlog pro <=2.3.18 is vulnerable to Cross Site Scripting (XSS), which allows attackers to write malicious JavaScript code in published articles. New - CVE-2024-50655 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
67 - - - lilishop <=4.2.4 is vulnerable to Incorrect Access Control, which can allow attackers to obtain coupons beyond the quantity limit by capturing and sending the data packets for coupon collection in hi… New - CVE-2024-50654 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
68 - - - CRMEB <=5.4.0 is vulnerable to Incorrect Access Control. Users can bypass the front-end restriction of only being able to claim coupons once by capturing packets and sending a large number of data pa… New - CVE-2024-50653 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
69 - - - Gogs <=0.13.0 is vulnerable to Directory Traversal via the editFilePost function of internal/route/repo/editor.go. New - CVE-2024-44625 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
70 8.2 HIGH
Network 		- - IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit … New CWE-611
XXE 		CVE-2024-39726 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm