Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
193121 7.5 危険 cartkeeper - CartKeeper CKGold Shopping Cart の category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-4736 2012-06-26 15:54 2007-09-6 Show GitHub Exploit DB Packet Storm
193122 9.3 危険 Aztech Group Ltd - Aztech DSL600EU ルータにおける Web インターフェースに接続される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-4733 2012-06-26 15:54 2007-09-6 Show GitHub Exploit DB Packet Storm
193123 4.3 警告 Apache Software Foundation - Apache Tomcat の cal2.jsp における任意のユーザとしてイベントを追加される脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2007-4724 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
193124 7.5 危険 jasio.net
Apache Software Foundation
- Ragnarok Online Control Panel におけるディレクトリトラバーサルの脆弱性 CWE-22
CWE-287
CVE-2007-4723 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
193125 7.5 危険 212cafe - 212cafeBoard の read.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-4719 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
193126 5.1 警告 Claroline Consortium - Claroline の inc/lib/language.lib.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-4718 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
193127 3.5 注意 Claroline Consortium - Claroline におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4717 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
193128 7.5 危険 enetman - eNetman の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-4712 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
193129 9.3 危険 アップル - Apple Mac OS X の Address Book におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題
CVE-2007-4708 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
193130 4 警告 Firebird Project - Firebird の Services API におけるサーバログ (firebird.log) を読まれる脆弱性 CWE-200
CWE-264
CVE-2007-4669 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1431 3.3 LOW
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: netconsole: fix wrong warning A warning is triggered when there is insufficient space in the buffer for userdata. However, t… NVD-CWE-noinfo
CVE-2024-50092 2024-11-13 09:40 2024-11-6 Show GitHub Exploit DB Packet Storm
1432 9.1 CRITICAL
Network
mitsubishielectric fx3u-32mt\/es_firmware
fx3u-48mt\/es_firmware
fx3u-64mt\/es_firmware
fx3u-80mt\/es_firmware
fx3u-128mt\/e_firmware
fx3u-16mt\/es_firmware
fx3u-16mr\/es_firmware
fx3u-32mr\/es_fir…
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELS… CWE-306
Missing Authentication for Critical Function
CVE-2023-4699 2024-11-13 09:15 2023-11-6 Show GitHub Exploit DB Packet Storm
1433 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: dm vdo: don't refer to dedupe_context after releasing it Clear the dedupe_context pointer in a data_vio whenever ownership of the… NVD-CWE-noinfo
CVE-2024-50091 2024-11-13 06:44 2024-11-6 Show GitHub Exploit DB Packet Storm
1434 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe/oa: Fix overflow in oa batch buffer By default xe_bb_create_job() appends a MI_BATCH_BUFFER_END to batch buffer, this is n… NVD-CWE-noinfo
CVE-2024-50090 2024-11-13 06:41 2024-11-6 Show GitHub Exploit DB Packet Storm
1435 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ppp: do not assume bh is held in ppp_channel_bridge_input() Networking receive path is usually handled from BH handler. However, … NVD-CWE-noinfo
CVE-2024-49946 2024-11-13 06:37 2024-10-22 Show GitHub Exploit DB Packet Storm
1436 - - - An issue was discovered in Qt before 6.2.11 and 6.3.x through 6.6.x before 6.6.1. When a QML image refers to an image whose content is not known yet, there is an assumption that it is an SVG document… - CVE-2023-45872 2024-11-13 06:35 2024-10-9 Show GitHub Exploit DB Packet Storm
1437 - - - HCL BigFix Compliance server can respond with an HTTP status of 500, indicating a server-side error that may cause the server process to die. - CVE-2024-30125 2024-11-13 06:35 2024-07-19 Show GitHub Exploit DB Packet Storm
1438 - - - Mismatches in interpreting USB authorization policy between GNOME Settings Daemon (GSD) through 46.0 and the Linux kernel's underlying device matching logic allow a physically proximate attacker to a… - CVE-2024-38394 2024-11-13 06:35 2024-06-16 Show GitHub Exploit DB Packet Storm
1439 - - - Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an attacker to create a document which without prompt will execute scripts built-into LibreOffice on cli… - CVE-2024-3044 2024-11-13 06:35 2024-05-15 Show GitHub Exploit DB Packet Storm
1440 - - - Technicolor TC8715D TC8715D-01.EF.04.38.00-180405-S-FF9-D RSE-TC8717T devices allow a remote attacker within Wi-Fi proximity to conduct stored XSS attacks via User Defined Service in managed_services… - CVE-2024-28091 2024-11-13 06:35 2024-03-29 Show GitHub Exploit DB Packet Storm