Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193261 7.5 危険 berthanas ziyaretci - Berthanas Ziyaretci Defteri 2.0 の yonetici.asp における SQL インジェクションの脆弱性 - CVE-2007-4119 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
193262 3.5 注意 awbs - AWBS における他の専用サーバの設定データを取得される脆弱性 - CVE-2007-4113 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
193263 6.8 警告 awbs - AWBS における SQL インジェクションの脆弱性 - CVE-2007-4112 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
193264 6.8 警告 codewidgets - Real Estate listing website アプリケーションテンプレートのログインスクリプトにおける SQL インジェクションの脆弱性 - CVE-2007-4111 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
193265 7.5 危険 codewidgets - Message Board / Threaded Discussion Forum Application Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4110 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
193266 7.5 危険 codewidgets - Online Store Application Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4109 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
193267 7.5 危険 codewidgets - Online Event Registration Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4108 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
193268 6.8 警告 codewidgets - CodeWidgets Pay Roll - Time Sheet and Punch Card Application における SQL インジェクションの脆弱性 - CVE-2007-4106 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
193269 9.3 危険 Baidu, Inc. - Baidu Soba Search Bar の BaiduBar.dll の特定の ActiveX コントロールにおける任意のコードを実行される脆弱性 - CVE-2007-4105 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
193270 7.8 危険 Digium - Asterisk Open の IAX2 チャネルドライバ (chan_iax2) におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4103 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2411 - - - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race between ordered extent completion and fiemap For fiemap we recently stopped locking the target extent range for t… - CVE-2024-26794 2024-11-8 05:35 2024-04-4 Show GitHub Exploit DB Packet Storm
2412 - - - In the Linux kernel, the following vulnerability has been resolved: LoongArch: Change acpi_core_pic[NR_CPUS] to acpi_core_pic[MAX_CORE_PIC] With default config, the value of NR_CPUS is 64. When HW … - CVE-2024-26768 2024-11-8 05:35 2024-04-4 Show GitHub Exploit DB Packet Storm
2413 5.5 MEDIUM
Local 		huawei harmonyos Vulnerability of processes not being fully terminated in the VPN module Impact: Successful exploitation of this vulnerability will affect power consumption. NVD-CWE-noinfo
CVE-2024-51513 2024-11-8 05:30 2024-11-5 Show GitHub Exploit DB Packet Storm
2414 5.4 MEDIUM
Network 		kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Stored XSS.This issue affects Namaste! LMS: from n/a throu… CWE-79
Cross-site Scripting 		CVE-2024-50410 2024-11-8 05:29 2024-10-29 Show GitHub Exploit DB Packet Storm
2415 5.4 MEDIUM
Network 		kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Stored XSS.This issue affects Namaste! LMS: from n/a throu… CWE-79
Cross-site Scripting 		CVE-2024-50409 2024-11-8 05:28 2024-10-29 Show GitHub Exploit DB Packet Storm
2416 6.1 MEDIUM
Network 		kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Reflected XSS.This issue affects Namaste! LMS: from n/a th… CWE-79
Cross-site Scripting 		CVE-2024-50407 2024-11-8 05:28 2024-10-29 Show GitHub Exploit DB Packet Storm
2417 8.2 HIGH
Local 		intel thunderbolt_dch_driver Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. NVD-CWE-noinfo
CVE-2023-22293 2024-11-8 05:27 2024-02-14 Show GitHub Exploit DB Packet Storm
2418 6.5 MEDIUM
Network 		qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware 		Transient DOS while parsing fragments of MBSSID IE from beacon frame. CWE-416
 Use After Free 		CVE-2024-33068 2024-11-8 05:07 2024-11-4 Show GitHub Exploit DB Packet Storm
2419 6.5 MEDIUM
Network 		qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware 		Transient DOS while processing the CU information from RNR IE. CWE-125
Out-of-bounds Read 		CVE-2024-38405 2024-11-8 05:06 2024-11-4 Show GitHub Exploit DB Packet Storm
2420 6.5 MEDIUM
Network 		qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware 		Transient DOS while parsing BTM ML IE when per STA profile is not included. CWE-125
Out-of-bounds Read 		CVE-2024-38403 2024-11-8 05:06 2024-11-4 Show GitHub Exploit DB Packet Storm