Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 14, 2024, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188661 7.5 危険 Bitcoin Project - wxBitcoin および bitcoind における他のユーザが所有するビットコインを使われる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5141 2012-08-9 11:17 2010-07-28 Show GitHub Exploit DB Packet Storm
188662 5 警告 Bitcoin Project - wxBitcoin および bitcoind におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-5140 2012-08-9 10:54 2010-09-29 Show GitHub Exploit DB Packet Storm
188663 7.5 危険 Bitcoin Project - wxBitcoin および bitcoind における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-5139 2012-08-9 10:47 2010-08-15 Show GitHub Exploit DB Packet Storm
188664 5 警告 Bitcoin Project - wxBitcoin および bitcoind におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-5138 2012-08-9 10:21 2010-07-29 Show GitHub Exploit DB Packet Storm
188665 5 警告 Bitcoin Project - wxBitcoin および bitcoind におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-5137 2012-08-9 10:18 2010-07-28 Show GitHub Exploit DB Packet Storm
188666 4.3 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2012-4146 2012-08-8 16:40 2012-08-2 Show GitHub Exploit DB Packet Storm
188667 10 危険 Opera Software ASA - Opera における脆弱性 CWE-noinfo
情報不足 		CVE-2012-4145 2012-08-8 16:38 2012-08-2 Show GitHub Exploit DB Packet Storm
188668 4.3 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティング保護メカニズムを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4144 2012-08-8 16:33 2012-08-2 Show GitHub Exploit DB Packet Storm
188669 6.8 警告 Opera Software ASA - Opera における任意のファイルをダウンロードおよび実行させられる脆弱性 CWE-94
コード・インジェクション 		CVE-2012-4143 2012-08-8 16:32 2012-08-2 Show GitHub Exploit DB Packet Storm
188670 4.3 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4142 2012-08-8 16:03 2012-08-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 15, 2024, 6:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
61 - - - SQL injection vulnerability in the module "Products Alert" (productsalert) before 1.7.4 from Smart Modules for PrestaShop allows attackers to obtain sensitive information and cause other impacts via … Update - CVE-2024-36683 2024-11-15 02:35 2024-06-25 Show GitHub Exploit DB Packet Storm
62 - - - The Business Card WordPress plugin through 1.0.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions such as deleting cards via CSRF… Update - CVE-2024-4532 2024-11-15 02:35 2024-05-27 Show GitHub Exploit DB Packet Storm
63 - - - In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower (DCT) connections is disabled by default. Update - CVE-2024-28161 2024-11-15 02:35 2024-03-7 Show GitHub Exploit DB Packet Storm
64 6.2 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_payload: sanitize offset and length before calling skb_checksum() If access to offset + length is larger than the … Update NVD-CWE-noinfo
CVE-2024-50251 2024-11-15 02:31 2024-11-9 Show GitHub Exploit DB Packet Storm
65 8.8 HIGH
Network 		blrt blrt_wp_embed Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Blrt Blrt WP Embed allows SQL Injection.This issue affects Blrt WP Embed: from n/a through 1.6.9. Update CWE-89
SQL Injection 		CVE-2024-51606 2024-11-15 02:17 2024-11-10 Show GitHub Exploit DB Packet Storm
66 5.4 MEDIUM
Network 		sap commerce_backoffice SAP Commerce Backoffice does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause limited impact… Update CWE-79
Cross-site Scripting 		CVE-2024-45278 2024-11-15 02:17 2024-10-8 Show GitHub Exploit DB Packet Storm
67 - - - A memory corruption vulnerability exists in the affected products when parsing DFT files. Local threat actors can exploit this issue to disclose information and to execute arbitrary code. To exploit… New - CVE-2024-6068 2024-11-15 02:15 2024-11-15 Show GitHub Exploit DB Packet Storm
68 - - - A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitra… New - CVE-2024-50836 2024-11-15 02:15 2024-11-15 Show GitHub Exploit DB Packet Storm
69 - - - A SQL Injection vulnerability was found in /admin/edit_student.php in KASHIPARA E-learning Management System Project 1.0 via the cys, un, ln, fn, and id parameters. New - CVE-2024-50835 2024-11-15 02:15 2024-11-15 Show GitHub Exploit DB Packet Storm
70 - - - A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0 via the firstname and lastname parameters. New - CVE-2024-50834 2024-11-15 02:15 2024-11-15 Show GitHub Exploit DB Packet Storm