Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 14, 2024, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
188871 5.5 警告 Moodle - Moodle の backup/moodle2/restore_stepslib.php における ID 番号を上書きされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4589 2012-07-23 15:26 2011-12-6 Show GitHub Exploit DB Packet Storm
188872 5 警告 Moodle - Moodle の MNet 内の mnet/lib.php における IP アドレスの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4588 2012-07-23 15:23 2011-12-6 Show GitHub Exploit DB Packet Storm
188873 6.8 警告 Moodle - Moodle の lib/moodlelib.php におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-4587 2012-07-23 15:11 2011-12-6 Show GitHub Exploit DB Packet Storm
188874 5 警告 Moodle - Moodle の Calendar サブシステムにおける CRLF インジェクションの脆弱性 CWE-Other
その他
CVE-2011-4586 2012-07-23 14:59 2011-12-6 Show GitHub Exploit DB Packet Storm
188875 5 警告 Moodle - Moodle の login/change_password.php における資格情報を取得される脆弱性 CWE-16
環境設定
CVE-2011-4585 2012-07-23 14:49 2011-12-6 Show GitHub Exploit DB Packet Storm
188876 4 警告 Moodle - Moodle の MNET 認証機能における他のユーザーアカウントになりすまされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4584 2012-07-23 14:47 2011-12-6 Show GitHub Exploit DB Packet Storm
188877 6.5 警告 Moodle - Moodle における脆弱性 CWE-noinfo
情報不足
CVE-2011-4583 2012-07-23 14:46 2011-12-6 Show GitHub Exploit DB Packet Storm
188878 4.9 警告 Moodle - Moodle のカレンダー設定ページにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認
CVE-2011-4582 2012-07-23 14:39 2011-12-6 Show GitHub Exploit DB Packet Storm
188879 4 警告 Moodle - Moodle の mod/wiki/pagelib.php における wiki 作成者のユーザ名を知られる脆弱性 CWE-200
情報漏えい
CVE-2011-4581 2012-07-23 14:31 2011-12-6 Show GitHub Exploit DB Packet Storm
188880 6.8 警告 Phillip Lougher - Squashfs の unsquashfs の unsquashfs.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2012-4025 2012-07-23 13:45 2012-07-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 15, 2024, 6:05 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291 - - - The login form of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.283.4) at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsern… New - CVE-2024-45876 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
292 - - - The create user function in baltic-it TOPqw Webportal 1.35.287.1 (fixed in version1.35.291), in /Apps/TOPqw/BenutzerManagement.aspx/SaveNewUser, is vulnerable to SQL injection. The JSON object userna… New - CVE-2024-45875 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
293 - - - Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access. New - CVE-2024-41167 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
294 - - - Use after free in the UEFI firmware of some Intel(R) Server M20NTP BIOS may allow a privileged user to potentially enable escalation of privilege via local access. New CWE-416
 Use After Free
CVE-2024-40885 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
295 - - - Improper input validation in firmware for some Intel(R) Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access. New CWE-20
 Improper Input Validation 
CVE-2024-39811 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
296 - - - Improper neutralization of special elements used in SQL command in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable escalation of pri… New CWE-1336
 Improper Neutralization of Special Elements Used in a Template Engine
CVE-2024-39766 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
297 - - - Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access. New CWE-284
Improper Access Control
CVE-2024-39609 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
298 - - - Improper neutralization of special elements used in an SQL command ('SQL Injection') in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially ena… New CWE-89
SQL Injection
CVE-2024-39368 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
299 - - - Improper access control in UEFI firmware in some Intel(R) Server M20NTP Family may allow a privileged user to potentially enable information disclosure via local access. New CWE-284
Improper Access Control
CVE-2024-39285 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
300 - - - Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege v… New CWE-427
 Uncontrolled Search Path Element
CVE-2024-38668 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm