You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
|
Update Date":Oct. 4, 2024, 6 p.m.
No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
---|---|---|---|---|---|---|---|---|---|---|---|
191171 | 4.3 | 警告 | golden book | - | golden book におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2006-6882 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191172 | 6.8 | 警告 | endonesia | - | eNdonesia の friend.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-6874 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191173 | 7.5 | 危険 | endonesia | - | eNdonesia の mod.php における SQL インジェクションの脆弱性 | - | CVE-2006-6873 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191174 | 5 | 警告 | endonesia | - | eNdonesia の mod.php におけるディレクトリトラバーサルの脆弱性 | - | CVE-2006-6872 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191175 | 6.8 | 警告 | endonesia | - | eNdonesia におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-6871 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191176 | 5 | 警告 | Avahi | - | Avahi の avahi-core/dns.c の consume_labels 関数におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2006-6870 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191177 | 10 | 危険 | enigma2 | - | Enigma2 Coppermine Bridge における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-6864 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191178 | 4.3 | 警告 | Docebo | - | Docebo LMS の modules/credits/credits.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-6857 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191179 | 5 | 警告 | aidex | - | AIDeX Mini-WebServer におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2006-6855 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
191180 | 7.5 | 危険 | de marchi daniele | - | De Marchi Daniele QuickCam VC Linux デバイスドライバにおける任意のコードを実行される脆弱性 | - | CVE-2006-6854 | 2012-06-26 15:38 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
Update Date:Oct. 4, 2024, 8:12 p.m.
No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
---|---|---|---|---|---|---|---|---|---|---|---|
801 | 4.4 |
MEDIUM
Local |
codesys | oscat_basic_library | Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service. |
CWE-125
Out-of-bounds Read |
CVE-2024-6876 | 2024-10-1 16:15 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |
802 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP … |
NVD-CWE-noinfo
|
CVE-2024-43393 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
803 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP … |
NVD-CWE-noinfo
|
CVE-2024-43392 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
804 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SR… |
NVD-CWE-noinfo
|
CVE-2024-43391 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
805 | 7.3 |
HIGH
Local |
beckhoff |
twincat\/bsd mdp_package |
The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in the context of user “roo… |
NVD-CWE-Other
|
CVE-2024-41176 | 2024-10-1 16:15 | 2024-08-27 | Show | GitHub Exploit DB Packet Storm |
806 | 6.5 |
MEDIUM
Network |
phoenixcontact |
axc_f_1152_firmware axc_f_2152_firmware axc_f_3152_firmware bpc_9102s_firmware epc_1502_firmware epc_1522_firmware plcnext_engineer rfc_4072r_firmware rfc_4072s_firmware |
A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connecte… |
CWE-494
Download of Code Without Integrity Check |
CVE-2023-46144 | 2024-10-1 16:15 | 2023-12-14 | Show | GitHub Exploit DB Packet Storm |
807 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS. |
NVD-CWE-noinfo
|
CVE-2024-43390 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
808 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS. |
NVD-CWE-noinfo
|
CVE-2024-43389 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
809 | 0.0 |
NONE
Physics |
- | - | This CVE has been rejected. | - | CVE-2024-8421 | 2024-10-1 15:15 | 2024-10-1 | Show | GitHub Exploit DB Packet Storm |
810 | - | - | - | The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain product versions, an authenticated user may cause a server crash while modifying `userPassword` using malf… | - | CVE-2024-8445 | 2024-10-1 15:15 | 2024-09-6 | Show | GitHub Exploit DB Packet Storm |