Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Sept. 29, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191521 2.1 注意 アップル - Mac OS X の動的リンカーにおける重要な情報を取得される脆弱性 - CVE-2006-3499 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
191522 10 危険 アップル - DHCP コンポーネントの bootpd におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-3498 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
191523 5.1 警告 アップル - Apple Mac OS X 用 Bom の "圧縮ステート処理" におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2006-3497 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
191524 5 警告 アップル - Apple Mac OS X の AFP Server におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3496 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
191525 2.1 注意 アップル - Apple Mac OS X の AFP Server における他のユーザのファイルにアクセスされる脆弱性 - CVE-2006-3495 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
191526 7.5 危険 gtetrinet - gtetrinet の tetrinet.c における任意のコードを実行される脆弱性 - CVE-2006-3125 2012-06-26 15:37 2006-08-31 Show GitHub Exploit DB Packet Storm
191527 6.4 警告 デル
富士ゼロックス株式会社		 - FXPS プリントエンジンの組み込み HTTP サーバにおけるシステム設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2006-2113 2012-06-26 15:37 2006-08-24 Show GitHub Exploit DB Packet Storm
191528 7.5 危険 デル
富士ゼロックス株式会社		 - FXPS プリントエンジンにおける FTP 印刷インターフェースをプロキシとして使用される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2006-2112 2012-06-26 15:37 2006-08-24 Show GitHub Exploit DB Packet Storm
191529 5 警告 アップル - AFP Server における整数オーバーフローの脆弱性 - CVE-2006-1473 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
191530 5 警告 アップル - Apple Mac OS X の AFP Server における認証しないファイルおよびフォルダの名前を特定される脆弱性 - CVE-2006-1472 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Sept. 29, 2024, 8:11 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
521 9.8 CRITICAL
Network 		trendylogics crypto_currency_tracker Incorrect access control in the User Registration page of Crypto Currency Tracker (CCT) before v9.5 allows unauthenticated attackers to register as an Admin account via a crafted POST request. Update NVD-CWE-Other
CVE-2023-37759 2024-09-27 03:35 2023-09-8 Show GitHub Exploit DB Packet Storm
522 5.4 MEDIUM
Network 		muffingroup betheme The Betheme theme for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 27.5.5 due to insufficient input sanitization and output escapi… Update CWE-79
Cross-site Scripting 		CVE-2024-5567 2024-09-27 03:27 2024-09-13 Show GitHub Exploit DB Packet Storm
523 - - - Nix is a package manager for Linux and other Unix systems. Starting in version 1.11 and prior to versions 2.18.8 and 2.24.8, `<nix/fetchurl.nix>` did not verify TLS certificates on HTTPS connections.… New CWE-287
Improper Authentication 		CVE-2024-47174 2024-09-27 03:15 2024-09-27 Show GitHub Exploit DB Packet Storm
524 - - - Agnai is an artificial-intelligence-agnostic multi-user, mult-bot roleplaying chat system. A vulnerability in versions prior to 1.0.330 permits attackers to upload image files at attacker-chosen loca… New CWE-35
 Path Traversal: '.../...//' 		CVE-2024-47171 2024-09-27 03:15 2024-09-27 Show GitHub Exploit DB Packet Storm
525 - - - Agnai is an artificial-intelligence-agnostic multi-user, mult-bot roleplaying chat system. A vulnerability in versions prior to 1.0.330 permits attackers to read arbitrary JSON files at attacker-chos… New CWE-35
 Path Traversal: '.../...//' 		CVE-2024-47170 2024-09-27 03:15 2024-09-27 Show GitHub Exploit DB Packet Storm
526 - - - Agnai is an artificial-intelligence-agnostic multi-user, mult-bot roleplaying chat system. A vulnerability in versions prior to 1.0.330 permits attackers to upload arbitrary files to attacker-chosen … New CWE-434
CWE-35
 Unrestricted Upload of File with Dangerous Type 
 Path Traversal: '.../...//' 		CVE-2024-47169 2024-09-27 03:15 2024-09-27 Show GitHub Exploit DB Packet Storm
527 - - - The goTenna Pro series allows unauthenticated attackers to remotely update the local public keys used for P2P and Group messages. New CWE-306
Missing Authentication for Critical Function 		CVE-2024-47130 2024-09-27 03:15 2024-09-27 Show GitHub Exploit DB Packet Storm
528 - - - The goTenna Pro has a payload length vulnerability that makes it possible to tell the length of the payload regardless of the encryption used. New CWE-204
 Response Discrepancy Information Exposure 		CVE-2024-47129 2024-09-27 03:15 2024-09-27 Show GitHub Exploit DB Packet Storm
529 - - - The goTenna Pro broadcast key name is always sent unencrypted and could reveal the location of operation. New CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2024-47128 2024-09-27 03:15 2024-09-27 Show GitHub Exploit DB Packet Storm
530 - - - In the goTenna Pro there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing gotenna mesh networks. This vulner… New CWE-1390
 Weak Authentication 		CVE-2024-47127 2024-09-27 03:15 2024-09-27 Show GitHub Exploit DB Packet Storm