Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 4, 2024, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191361 7.5 危険 Expinion.net - MultiCalendars における SQL インジェクションの脆弱性 - CVE-2006-5977 2012-06-26 15:37 2006-11-20 Show GitHub Exploit DB Packet Storm
191362 7.5 危険 drumster - BlogMe の admin_login.asp における SQL インジェクションの脆弱性 - CVE-2006-5976 2012-06-26 15:37 2006-11-20 Show GitHub Exploit DB Packet Storm
191363 6.8 警告 drumster - BlogMe の comments.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5975 2012-06-26 15:37 2006-11-20 Show GitHub Exploit DB Packet Storm
191364 7.8 危険 Fetchmail Project - fetchmail におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2006-5974 2012-06-26 15:37 2006-12-31 Show GitHub Exploit DB Packet Storm
191365 4.6 警告 fvwm - fvwm の evalFolderLine 関数における CRLF インジェクションの脆弱性 - CVE-2006-5969 2012-06-26 15:37 2006-11-17 Show GitHub Exploit DB Packet Storm
191366 4.6 警告 Alt-N - MDaemon における任意のコードを実行される脆弱性 - CVE-2006-5968 2012-06-26 15:37 2006-11-17 Show GitHub Exploit DB Packet Storm
191367 7.5 危険 20 20 applications - 20/20 DataShed の listings.asp における SQL インジェクションの脆弱性 - CVE-2006-5955 2012-06-26 15:37 2006-11-16 Show GitHub Exploit DB Packet Storm
191368 7.5 危険 asp smiley - ASP Smiley の admin/default.asp における SQL インジェクションの脆弱性 - CVE-2006-5952 2012-06-26 15:37 2006-11-16 Show GitHub Exploit DB Packet Storm
191369 7.5 危険 exophpdesk - Exophpdesk の pipe.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5951 2012-06-26 15:37 2006-11-16 Show GitHub Exploit DB Packet Storm
191370 5 警告 altools - ALTools ALFTP FTP Server におけるインストールパスを取得される脆弱性 - CVE-2006-5950 2012-06-26 15:37 2006-11-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 4, 2024, 5:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2351 - - - Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5.17.10 may allow a privileged user to conduct an escalation of privilege via local access. - CVE-2024-27247 2024-09-21 00:15 2024-04-10 Show GitHub Exploit DB Packet Storm
2352 - - - Improper privilege management in the installer for Zoom Desktop Client for Windows before version 5.17.10 may allow an authenticated user to conduct an escalation of privilege via local access. - CVE-2024-24694 2024-09-21 00:15 2024-04-10 Show GitHub Exploit DB Packet Storm
2353 5.5 MEDIUM
Local 		zoom rooms Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access. NVD-CWE-Other
CVE-2024-24693 2024-09-21 00:15 2024-03-14 Show GitHub Exploit DB Packet Storm
2354 - - - Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an unauthenticated user to conduct an escalation of privilege via… - CVE-2024-24691 2024-09-21 00:15 2024-02-14 Show GitHub Exploit DB Packet Storm
2355 - - - Improper input validation in some Zoom clients may allow an authenticated user to conduct a denial of service via network access. - CVE-2024-24690 2024-09-21 00:15 2024-02-14 Show GitHub Exploit DB Packet Storm
2356 7.8 HIGH
Local 		zoom zoom
video_software_development_kit
meeting_software_development_kit
virtual_desktop_infrastructure 		Improper access control in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows before version 5.16.10 may allow an authenticated user to conduct an escalation of p… NVD-CWE-noinfo
CVE-2023-49647 2024-09-21 00:15 2024-01-13 Show GitHub Exploit DB Packet Storm
2357 6.5 MEDIUM
Network 		zoom zoom
virtual_desktop_infrastructure
meeting_software_development_kit
video_software_development_kit 		Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user to conduct a denial of service via network access. CWE-287
Improper Authentication 		CVE-2023-49646 2024-09-21 00:15 2023-12-14 Show GitHub Exploit DB Packet Storm
2358 6.5 MEDIUM
Network 		zoom meetings
virtual_desktop_infrastructure
zoom 		Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access. NVD-CWE-Other
CVE-2023-43588 2024-09-21 00:15 2023-11-15 Show GitHub Exploit DB Packet Storm
2359 7.5 HIGH
Network 		litellm litellm A Server-Side Request Forgery (SSRF) vulnerability exists in berriai/litellm version 1.38.10. This vulnerability allows users to specify the `api_base` parameter when making requests to `POST /chat/c… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-6587 2024-09-20 23:55 2024-09-14 Show GitHub Exploit DB Packet Storm
2360 9.8 CRITICAL
Network 		thinkphp thinkphp A deserialization vulnerability in Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-44902 2024-09-20 23:55 2024-09-10 Show GitHub Exploit DB Packet Storm