Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
193061 10 危険 Firebird Project - Firebird SQL の fbserver.exe の process_packet 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-4992 2012-06-26 15:54 2007-10-10 Show GitHub Exploit DB Packet Storm
193062 10 危険 JetAudio - jetAudio の JetFlExt.dll の JetAudio.Interface.1 ActiveX コントロールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-4983 2012-06-26 15:54 2007-09-19 Show GitHub Exploit DB Packet Storm
193063 4.3 警告 gcaldaemon - GCALDaemon の readRequest メソッドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題
CVE-2007-4980 2012-06-26 15:54 2007-09-19 Show GitHub Exploit DB Packet Storm
193064 3.5 注意 Coppermine Photo Gallery - CPG の mode.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4977 2012-06-26 15:54 2007-09-19 Show GitHub Exploit DB Packet Storm
193065 6.5 警告 Coppermine Photo Gallery - CPG の viewlog.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-4976 2012-06-26 15:54 2007-09-19 Show GitHub Exploit DB Packet Storm
193066 4.3 警告 b1g - b1gMail の hilfe.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4975 2012-06-26 15:54 2007-09-19 Show GitHub Exploit DB Packet Storm
193067 4.4 警告 diamondcs - ProcessGuard における権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2007-4970 2012-06-26 15:54 2007-09-18 Show GitHub Exploit DB Packet Storm
193068 6.8 警告 GForge Group - GForge の www/people/editprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-4966 2012-06-26 15:54 2007-09-18 Show GitHub Exploit DB Packet Storm
193069 7.5 危険 chupix - Chupix CMS の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-4957 2012-06-26 15:54 2007-09-18 Show GitHub Exploit DB Packet Storm
193070 9.3 危険 baofeng - Baofeng Storm の sparser.dll の 特定の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-4943 2012-06-26 15:54 2007-09-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 5:18 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2421 8.0 HIGH
Adjacent
zephyrproject zephyr The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in… CWE-416
 Use After Free
CVE-2023-1902 2024-11-8 01:35 2023-07-11 Show GitHub Exploit DB Packet Storm
2422 8.0 HIGH
Adjacent
zephyrproject zephyr The bluetooth HCI host layer logic not clearing a global reference to a semaphore after synchronously sending HCI commands may allow a malicious HCI Controller to cause the use of a dangling referenc… CWE-787
 Out-of-bounds Write
CVE-2023-1901 2024-11-8 01:35 2023-07-11 Show GitHub Exploit DB Packet Storm
2423 - - - Use of Default Credentials vulnerability in Maruti Suzuki SmartPlay on Linux (Infotainment Hub modules) allows attacker to try common or default usernames and passwords.The issue was detected on a 20… - CVE-2024-6245 2024-11-8 01:15 2024-10-29 Show GitHub Exploit DB Packet Storm
2424 5.5 MEDIUM
Local
codesector teracopy Code Sector TeraCopy 3.9.7 does not perform proper access validation on the source folder during a copy operation. This leads to Arbitrary File Read by allowing any user to copy any directory in the … NVD-CWE-noinfo
CVE-2023-29586 2024-11-8 00:54 2023-04-20 Show GitHub Exploit DB Packet Storm
2425 6.5 MEDIUM
Network
mongodb mongodb prepareUnique index may cause secondaries to crash due to incorrect enforcement of index constraints on secondaries, where in extreme cases may cause multiple secondaries crashing leading to no prima… NVD-CWE-Other
CVE-2024-8305 2024-11-8 00:38 2024-10-22 Show GitHub Exploit DB Packet Storm
2426 - - - Incorrect access control in logs management function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote attackers to get the device logs via HTTP GET request. The logs contain such inf… - CVE-2023-43846 2024-11-8 00:35 2024-05-29 Show GitHub Exploit DB Packet Storm
2427 - - - Jenkins Report Info Plugin 1.2 and earlier does not perform path validation of the workspace directory while serving report files, allowing attackers with Item/Configure permission to retrieve Surefi… - CVE-2024-5273 2024-11-8 00:35 2024-05-24 Show GitHub Exploit DB Packet Storm
2428 - - - In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Book3S HV: Fix stack handling in idle_kvm_start_guest() In commit 10d91611f426 ("powerpc/64s: Reimplement book3s idle c… - CVE-2021-47465 2024-11-8 00:35 2024-05-22 Show GitHub Exploit DB Packet Storm
2429 - - - In the Linux kernel, the following vulnerability has been resolved: mac80211: fix deadlock in AP/VLAN handling Syzbot reports that when you have AP_VLAN interfaces that are up and close the AP inte… - CVE-2021-47225 2024-11-8 00:35 2024-05-22 Show GitHub Exploit DB Packet Storm
2430 - - - Cross Site Scripting vulnerability in SourceCodester Simple Customer Relationship Management System v1.0 allows attacker to execute arbitary code via the company or query parameter(s). - CVE-2023-24203 2024-11-8 00:35 2024-05-15 Show GitHub Exploit DB Packet Storm