Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 15, 2024, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189311 7.5 危険 2daybiz - 2daybiz Job Site Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2610 2012-06-26 16:19 2010-07-2 Show GitHub Exploit DB Packet Storm
189312 7.5 危険 2daybiz - 2daybiz Job Search Engine Script の show_search_result.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2609 2012-06-26 16:19 2010-07-2 Show GitHub Exploit DB Packet Storm
189313 4.3 警告 The Cacti Group - Red Hat HPC Solution などの製品で使用される Cacti におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2545 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
189314 4.3 警告 The Cacti Group - Red Hat HPC Solution などの製品で使用される Cacti の utilities.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2544 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
189315 4.3 警告 The Cacti Group - Cacti の include/top_graph_header.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2543 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
189316 4.3 警告 adjam - rekonq におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2536 2012-06-26 16:19 2010-08-2 Show GitHub Exploit DB Packet Storm
189317 7.5 危険 2daybiz - 2daybiz MLM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2516 2012-06-26 16:19 2010-06-29 Show GitHub Exploit DB Packet Storm
189318 6.8 警告 dacian strain
Joomla!		 - Joomla! 用の JFaq コンポーネントの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2515 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
189319 4.3 警告 dacian strain
Joomla!		 - Joomla! 用の JFaq コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2514 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
189320 7.5 危険 2daybiz - 2daybiz Matrimonial Script の customprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2512 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 15, 2024, 6:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291 - - - The login form of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.283.4) at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsern… New - CVE-2024-45876 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
292 - - - The create user function in baltic-it TOPqw Webportal 1.35.287.1 (fixed in version1.35.291), in /Apps/TOPqw/BenutzerManagement.aspx/SaveNewUser, is vulnerable to SQL injection. The JSON object userna… New - CVE-2024-45875 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
293 - - - Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access. New - CVE-2024-41167 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
294 - - - Use after free in the UEFI firmware of some Intel(R) Server M20NTP BIOS may allow a privileged user to potentially enable escalation of privilege via local access. New CWE-416
 Use After Free 		CVE-2024-40885 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
295 - - - Improper input validation in firmware for some Intel(R) Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access. New CWE-20
 Improper Input Validation  		CVE-2024-39811 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
296 - - - Improper neutralization of special elements used in SQL command in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable escalation of pri… New CWE-1336
 Improper Neutralization of Special Elements Used in a Template Engine 		CVE-2024-39766 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
297 - - - Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access. New CWE-284
Improper Access Control 		CVE-2024-39609 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
298 - - - Improper neutralization of special elements used in an SQL command ('SQL Injection') in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially ena… New CWE-89
SQL Injection 		CVE-2024-39368 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
299 - - - Improper access control in UEFI firmware in some Intel(R) Server M20NTP Family may allow a privileged user to potentially enable information disclosure via local access. New CWE-284
Improper Access Control 		CVE-2024-39285 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm
300 - - - Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege v… New CWE-427
 Uncontrolled Search Path Element 		CVE-2024-38668 2024-11-14 06:15 2024-11-14 Show GitHub Exploit DB Packet Storm