Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 31, 2024, 10:01 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
189161 7.5 危険 adbnewssender - ADbNewsSender の maillinglist/setup/step1.php.inc におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-2444 2012-06-26 16:10 2009-07-13 Show GitHub Exploit DB Packet Storm
189162 4.3 警告 esoftpro - Online Guestbook Pro の ogp_show.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-2441 2012-06-26 16:10 2009-07-13 Show GitHub Exploit DB Packet Storm
189163 4.3 警告 csphere - ClanSphere の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-2438 2012-06-26 16:10 2009-07-13 Show GitHub Exploit DB Packet Storm
189164 4.3 警告 clone2009 - Ebay Clone の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-2424 2012-06-26 16:10 2009-07-10 Show GitHub Exploit DB Packet Storm
189165 7.5 危険 ebayclonescript - Ebay Clone の category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-2423 2012-06-26 16:10 2009-07-10 Show GitHub Exploit DB Packet Storm
189166 5 警告 アップル - Apple Safari の CFCharacterSetInitInlineBuffer メソッドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2009-2421 2012-06-26 16:10 2009-07-9 Show GitHub Exploit DB Packet Storm
189167 5.8 警告 アップル - Apple Safari におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2009-2420 2012-06-26 16:10 2009-07-9 Show GitHub Exploit DB Packet Storm
189168 4.3 警告 アップル - Apple Safari の servePendingRequests 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-2419 2012-06-26 16:10 2009-07-9 Show GitHub Exploit DB Packet Storm
189169 7.5 危険 fedorahosted.org - sssd の local_handler_callback 関数におけるアクセス権を取得される脆弱性 CWE-287
不適切な認証
CVE-2009-2410 2012-06-26 16:10 2009-07-30 Show GitHub Exploit DB Packet Storm
189170 7.5 危険 fijiwebdesign
Joomla!
- Joomla! 用 PHP コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-2400 2012-06-26 16:10 2009-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 31, 2024, 6:02 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
41 7.8 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: fix a double free in ma35_pinctrl_dt_node_to_map_func() 'new_map' is allocated using devm_* which takes care of… New CWE-415
 Double Free
CVE-2024-50071 2024-10-31 02:02 2024-10-29 Show GitHub Exploit DB Packet Storm
42 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: stm32: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned val… New CWE-476
 NULL Pointer Dereference
CVE-2024-50070 2024-10-31 01:59 2024-10-29 Show GitHub Exploit DB Packet Storm
43 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: apple: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned val… New CWE-476
 NULL Pointer Dereference
CVE-2024-50069 2024-10-31 01:58 2024-10-29 Show GitHub Exploit DB Packet Storm
44 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/damon/tests/sysfs-kunit.h: fix memory leak in damon_sysfs_test_add_targets() The sysfs_target->regions allocated in damon_sysf… New CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2024-50068 2024-10-31 01:57 2024-10-29 Show GitHub Exploit DB Packet Storm
45 9.8 CRITICAL
Network
codezips sales_management_system A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /addcustcom.php. The manipu… Update CWE-89
SQL Injection
CVE-2024-10369 2024-10-31 01:50 2024-10-25 Show GitHub Exploit DB Packet Storm
46 9.8 CRITICAL
Network
codezips sales_management_system A vulnerability was found in Codezips Sales Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /addstock.php. The manipulation of the argument prod… Update CWE-89
SQL Injection
CVE-2024-10368 2024-10-31 01:46 2024-10-25 Show GitHub Exploit DB Packet Storm
47 9.8 CRITICAL
Network
codezips sales_management_system A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /addcustind.php. The manipulation of… Update CWE-89
SQL Injection
CVE-2024-10370 2024-10-31 01:38 2024-10-25 Show GitHub Exploit DB Packet Storm
48 6.1 MEDIUM
Network
heateor sassy_social_share The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'urls' parameter called via the 'heateor_sss_sharing_count' AJAX action in versions up to, and incl… Update CWE-79
Cross-site Scripting
CVE-2022-4971 2024-10-31 01:37 2024-10-16 Show GitHub Exploit DB Packet Storm
49 - - - In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doGRETunnel function. New - CVE-2024-51298 2024-10-31 01:35 2024-10-30 Show GitHub Exploit DB Packet Storm
50 - - - DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doCertificate function. New - CVE-2024-51257 2024-10-31 01:35 2024-10-30 Show GitHub Exploit DB Packet Storm