Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 25, 2024, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
192721 6.9 警告 FreeBSD - FreeBSD のカーネルの NFS クライアントにおける権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2010-2020 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
192722 6.8 警告 bukulokomedia - Lokomedia CMS の downlot.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-2019 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
192723 5 警告 bukulokomedia - Lokomedia CMS の downlot.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-2018 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
192724 4.3 警告 bukulokomedia - Lokomedia CMS の hasil-pencarian.html におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-2017 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
192725 6.8 警告 createch-group - LiSK CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-2015 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
192726 4.3 警告 createch-group - LiSK CMS の cp/list_content.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-2014 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
192727 4.3 警告 createch-group - LiSK CMS の cp/edit_email.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-2013 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
192728 4.3 警告 Angry Donuts
Drupal
- Drupal の Chaos Tool Suite モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-2010 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
192729 9.3 危険 AB Team - BS.Global BS.Player のメディアライブラリにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-2009 2012-06-26 16:19 2010-05-21 Show GitHub Exploit DB Packet Storm
192730 7.5 危険 datalifecms - DLE における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2010-2005 2012-06-26 16:19 2010-05-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Dec. 25, 2024, 4:06 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1 - - - Gogs is an open source self-hosted Git service. A malicious user is able to write a file to an arbitrary path on the server to gain SSH access to the server. The vulnerability is fixed in 0.13.1. New - CVE-2024-55947 2024-12-25 01:15 2024-12-24 Show GitHub Exploit DB Packet Storm
2 - - - A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2 up to 20241222. It has been classified as critical. This affects an unknown part of the file ../mtd/Co… New - CVE-2024-12897 2024-12-25 01:15 2024-12-23 Show GitHub Exploit DB Packet Storm
3 - - - A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2 up to 20241222 and classified as problematic. Affected by this issue is some unknown functionality of … New - CVE-2024-12896 2024-12-25 01:15 2024-12-23 Show GitHub Exploit DB Packet Storm
4 - - - A reflected Cross-Site Scripting vulnerability in the standard documentation upload functionality in Portabilis i-Educar 2.9 allows attacker to craft malicious urls with arbitrary javascript in the '… Update - CVE-2024-55239 2024-12-25 00:15 2024-12-19 Show GitHub Exploit DB Packet Storm
5 - - - In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix off by one in uof_get_name() This is called from uof_get_name_420xx() where "num_objs" is the ARRAY_S… New - CVE-2024-53163 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
6 - - - In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_4xxx - fix off by one in uof_get_name() The fw_objs[] array has "num_objs" elements so the > needs to be >= to pr… New - CVE-2024-53162 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
7 - - - In the Linux kernel, the following vulnerability has been resolved: EDAC/bluefield: Fix potential integer overflow The 64-bit argument for the "get DIMM info" SMC call consists of mem_ctrl_idx left… New - CVE-2024-53161 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
8 - - - In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct6775-core) Fix overflows seen when writing limit attributes DIV_ROUND_CLOSEST() after kstrtoul() results in an overflo… New - CVE-2024-53159 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
9 - - - In the Linux kernel, the following vulnerability has been resolved: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() This loop is supposed to break if the frequency returned from cl… New - CVE-2024-53158 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
10 - - - In the Linux kernel, the following vulnerability has been resolved: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu KCSAN reports a data race when access the krcp->monitor_work.timer.exp… New - CVE-2024-53160 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm