Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 4, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191371	7.5	危険	basicforum	-	BasicForum の edit.asp における SQL インジェクションの脆弱性	-	CVE-2006-6193	2012-06-26 15:38	2006-11-30	Show	GitHub Exploit DB Packet Storm

191372	7.5	危険	8pixel	-	8pixel.net SimpleBlog の admin ディレクトリのスクリプトにおける特権を用いたアクションを実行される脆弱性	-	CVE-2006-6192	2012-06-26 15:38	2006-11-30	Show	GitHub Exploit DB Packet Storm

191373	7.5	危険	8pixel	-	8pixel.net simpleblog の admin/edit.asp における SQL インジェクションの脆弱性	-	CVE-2006-6191	2012-06-26 15:38	2006-11-30	Show	GitHub Exploit DB Packet Storm

191374	7.5	危険	anna irc bot	-	Anna^ IRC Bot の anna.pl における SQL インジェクションの脆弱性	-	CVE-2006-6190	2012-06-26 15:38	2006-11-30	Show	GitHub Exploit DB Packet Storm

191375	7.5	危険	clicktech	-	ClickTech Click Blog の displayCalendar.asp における SQL インジェクションの脆弱性	-	CVE-2006-6189	2012-06-26 15:38	2006-11-30	Show	GitHub Exploit DB Packet Storm

191376	4.3	警告	clicktech	-	ClickTech Click Gallery の view_search.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6188	2012-06-26 15:37	2006-11-30	Show	GitHub Exploit DB Packet Storm

191377	7.5	危険	clicktech	-	ClickTech Click Gallery における SQL インジェクションの脆弱性	-	CVE-2006-6187	2012-06-26 15:37	2006-11-30	Show	GitHub Exploit DB Packet Storm

191378	5	警告	enomphp	-	enomphp におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6186	2012-06-26 15:37	2006-11-30	Show	GitHub Exploit DB Packet Storm

191379	10	危険	アライドテレシス	-	AT-TFTP におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-6184	2012-06-26 15:37	2006-11-30	Show	GitHub Exploit DB Packet Storm

191380	10	危険	3com	-	3Com 3CTftpSvc スタックベースにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2006-6183	2012-06-26 15:37	2006-11-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 4, 2024, 8:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
501	5.4	MEDIUM Network	clibomanager	clibo_manager	Vulnerability in Clibo Manager v1.1.9.1 that could allow an attacker to execute an stored Cross-Site Scripting (stored XSS ) by uploading a malicious .svg image in the section: Profile > Profile pict… Update	CWE-79 Cross-site Scripting	CVE-2024-9198	2024-10-2 23:33	2024-09-26	Show	GitHub Exploit DB Packet Storm

502	4.8	MEDIUM Network	radiustheme	the_post_grid	The Post Grid WordPress plugin before 7.5.0 does not sanitise and escape some of its Grid settings, which could allow high privilege users such as Editor and above to perform Stored Cross-Site Scrip… Update	CWE-79 Cross-site Scripting	CVE-2024-3635	2024-10-2 23:30	2024-09-30	Show	GitHub Exploit DB Packet Storm

503	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: iommufd: Require drivers to supply the cache_invalidate_user ops If drivers don't do this then iommufd will oops invalidation ioc… Update	CWE-476 NULL Pointer Dereference	CVE-2024-46824	2024-10-2 23:29	2024-09-27	Show	GitHub Exploit DB Packet Storm

504	8.1	HIGH Network	acquia	mautic	Prior to the patched version, logged in users of Mautic are vulnerable to Relative Path Traversal/Arbitrary File Deletion. Regardless of the level of access the Mautic user had, they could delete fil… Update	CWE-22 Path Traversal	CVE-2021-27916	2024-10-2 23:29	2024-09-18	Show	GitHub Exploit DB Packet Storm

505	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: rtmutex: Drop rt_mutex::wait_lock before scheduling rt_mutex_handle_deadlock() is called with rt_mutex::wait_lock held. In the g… Update	CWE-667 Improper Locking	CVE-2024-46829	2024-10-2 23:27	2024-09-27	Show	GitHub Exploit DB Packet Storm

506	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: microchip: vcap: Fix use-after-free error in kunit test This is a clear use-after-free error. We remove it, and rely on chec… Update	CWE-416 Use After Free	CVE-2024-46831	2024-10-2 23:26	2024-09-27	Show	GitHub Exploit DB Packet Storm

507	5.5	MEDIUM Local	gpac debian	gpac debian_linux	NULL Pointer Dereference in GitHub repository gpac/gpac prior to 1.1.0. Update	CWE-476 NULL Pointer Dereference	CVE-2021-4043	2024-10-2 23:26	2022-02-5	Show	GitHub Exploit DB Packet Storm

508	8.8	HIGH Local	oracle	solaris	Vulnerability in the Oracle Solaris product of Oracle Systems (component: XScreenSaver). The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker … Update	NVD-CWE-noinfo	CVE-2019-3010	2024-10-2 23:26	2019-10-17	Show	GitHub Exploit DB Packet Storm

509	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix smatch static checker warning adev->gfx.imu.funcs could be NULL Update	CWE-476 NULL Pointer Dereference	CVE-2024-46835	2024-10-2 23:24	2024-09-27	Show	GitHub Exploit DB Packet Storm

510	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry In a review discussion of the changes to support vCPU hotplug… Update	CWE-476 NULL Pointer Dereference	CVE-2024-46822	2024-10-2 23:24	2024-09-27	Show	GitHub Exploit DB Packet Storm