Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 4, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191721 6.4 警告 Exponent CMS project - Exponent CMS の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4963 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
191722 6.4 警告 blue dragon - Php Blue Dragon の pbd_engine.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4962 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
191723 7.5 危険 blue dragon - Php Blue Dragon の GetModuleConfig 関数における SQL インジェクションの脆弱性 - CVE-2006-4961 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
191724 6.8 警告 blue dragon - Php Blue Dragon の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4960 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
191725 4.3 警告 Drupal - Drupal の Site Profile Directory におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4949 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
191726 6.8 警告 Drupal - Drupal の Search Keywords モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4947 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
191727 5.1 警告 cmsdevelopment - BCWB の include/startup.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4946 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
191728 5.1 警告 cardway - Cardway DigitalWebShop における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4945 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
191729 7.5 危険 boesch-it - ProgSys の includes/pear/Net/DNS/RR.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4944 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
191730 4.3 警告 esyndicat portal system - eSyndiCat Portal System の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4923 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 4, 2024, 8:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1151 - - - A vulnerability classified as problematic has been found in TMsoft MyAuth Gateway 3. Affected is an unknown function of the file /index.php. The manipulation of the argument console/nocache/cmd leads… CWE-79
Cross-site Scripting 		CVE-2024-9276 2024-09-30 21:45 2024-09-27 Show GitHub Exploit DB Packet Storm
1152 - - - A vulnerability was found in jeanmarc77 123solar up to 1.8.4.5. It has been rated as critical. This issue affects some unknown processing of the file /admin/admin_invt2.php. The manipulation of the a… CWE-73
 External Control of File Name or Path 		CVE-2024-9275 2024-09-30 21:45 2024-09-27 Show GitHub Exploit DB Packet Storm
1153 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: btrfs: don't BUG_ON() when 0 reference count at btrfs_lookup_extent_info() Instead of doing a BUG_ON() handle the error by return… NVD-CWE-Other
CVE-2024-46751 2024-09-30 21:45 2024-09-18 Show GitHub Exploit DB Packet Storm
1154 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: spi: intel: Add check devm_kasprintf() returned value intel_spi_populate_chip() use devm_kasprintf() to set pdata->name. This can… CWE-476
 NULL Pointer Dereference 		CVE-2024-46769 2024-09-30 21:44 2024-09-18 Show GitHub Exploit DB Packet Storm
1155 6.1 MEDIUM
Network 		wp-unit share_this_image The ILLID Share This Image plugin before 1.04 for WordPress has XSS via the sharer.php url parameter. CWE-79
Cross-site Scripting 		CVE-2017-18015 2024-09-30 20:28 2018-01-2 Show GitHub Exploit DB Packet Storm
1156 - - - A Use of Weak Credentials vulnerability affecting the Wi-Fi network generated by a set of DJI drones could allow a remote attacker to derive the WPA2 PSK key and authenticate without permission to th… CWE-334
 Small Space of Random Values 		CVE-2023-6951 2024-09-30 19:15 2024-04-2 Show GitHub Exploit DB Packet Storm
1157 - - - An Improper Input Validation vulnerability affecting the FTP service running on the DJI Mavic Mini 3 Pro could allow an attacker to craft a malicious packet containing a malformed path provided to th… - CVE-2023-6950 2024-09-30 19:15 2024-04-2 Show GitHub Exploit DB Packet Storm
1158 - - - A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an attacker to trigger an out-of-bound read/write into the process m… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2023-51456 2024-09-30 19:15 2024-04-2 Show GitHub Exploit DB Packet Storm
1159 - - - A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an attacker to cause a crash of the service through a crafted payloa… CWE-787
 Out-of-bounds Write 		CVE-2023-51453 2024-09-30 19:15 2024-04-2 Show GitHub Exploit DB Packet Storm
1160 - - - A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an attacker to cause a crash of the service through a crafted payloa… CWE-787
 Out-of-bounds Write 		CVE-2023-51452 2024-09-30 19:15 2024-04-2 Show GitHub Exploit DB Packet Storm