Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193291 6.8 警告 アップル - Apple Safari における外部ドメインへのローカルゾーンからのアクセスを伴う同一生成元ポリシを回避される脆弱性 - CVE-2007-4431 2012-06-26 15:54 2007-08-20 Show GitHub Exploit DB Packet Storm
193292 4.3 警告 アップル - Apple Safari におけるクライアントシステムのデスクトップに任意のファイルをダウンロードされる脆弱性 - CVE-2007-4424 2012-06-26 15:54 2007-08-18 Show GitHub Exploit DB Packet Storm
193293 9.3 危険 EdrawSoft - EDraw Office Viewer コンポーネントの officeviewer.ocx における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4420 2012-06-26 15:54 2007-08-18 Show GitHub Exploit DB Packet Storm
193294 6.8 警告 シスコシステムズ - Cisco VPN Client における権限を取得される脆弱性 - CVE-2007-4415 2012-06-26 15:54 2007-08-15 Show GitHub Exploit DB Packet Storm
193295 6.8 警告 シスコシステムズ - Windows 上の Cisco VPN Client における権限を取得される脆弱性 - CVE-2007-4414 2012-06-26 15:54 2007-08-15 Show GitHub Exploit DB Packet Storm
193296 7.2 危険 bluecat networks - BlueCat Networks Adonis DNS/DHCP アプライアンスの CLI における使用 OS の root 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4390 2012-06-26 15:54 2007-08-17 Show GitHub Exploit DB Packet Storm
193297 7.8 危険 2wire - 複数の 2wire 製品の /xslt におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-4389 2012-06-26 15:54 2007-08-17 Show GitHub Exploit DB Packet Storm
193298 10 危険 2wire - 2wire の 1701HG および 2071 Gateway における空パスワードの脆弱性 - CVE-2007-4388 2012-06-26 15:54 2007-08-17 Show GitHub Exploit DB Packet Storm
193299 4.3 警告 2wire - 2wire 1701HG および 2071 Gateway の /xslt におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-4387 2012-06-26 15:54 2007-08-17 Show GitHub Exploit DB Packet Storm
193300 6 警告 getmyownarcade - GetMyOwnArcade の search.php における SQL インジェクションの脆弱性 - CVE-2007-4386 2012-06-26 15:54 2007-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1371 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: blk_iocost: fix more out of bound shifts Recently running UBSAN caught few out of bound shifts in the ioc_forgive_debts() functio… NVD-CWE-noinfo
CVE-2024-49933 2024-11-14 00:09 2024-10-22 Show GitHub Exploit DB Packet Storm
1372 9.8 CRITICAL
Network 		yarpp yet_another_related_posts_plugin Access Control vulnerability in YARPP YARPP allows . This issue affects YARPP: from n/a through 5.30.10. CWE-862
 Missing Authorization 		CVE-2024-43919 2024-11-14 00:02 2024-11-2 Show GitHub Exploit DB Packet Storm
1373 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: btrfs: don't readahead the relocation inode on RST On relocation we're doing readahead on the relocation inode, but if the filesy… CWE-617
 Reachable Assertion 		CVE-2024-49932 2024-11-14 00:01 2024-10-22 Show GitHub Exploit DB Packet Storm
1374 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: x86/ioapic: Handle allocation failures gracefully Breno observed panics when using failslab under certain conditions during runti… NVD-CWE-noinfo
CVE-2024-49927 2024-11-13 23:58 2024-10-22 Show GitHub Exploit DB Packet Storm
1375 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb() For kernels built with CONFIG_FORCE_NR_CPUS=y, … NVD-CWE-noinfo
CVE-2024-49926 2024-11-13 23:57 2024-10-22 Show GitHub Exploit DB Packet Storm
1376 8.1 HIGH
Network 		lifplatforms lif_authentication_server Lif Authentication Server is a server used by Lif to do various tasks regarding Lif accounts. This vulnerability has to do with the account recovery system where there does not appear to be a check t… CWE-862
 Missing Authorization 		CVE-2024-47768 2024-11-13 23:55 2024-10-5 Show GitHub Exploit DB Packet Storm
1377 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a sdiv overflow issue Zac Ecob reported a problem where a bpf program may cause kernel crash due to the following error:… CWE-190
 Integer Overflow or Wraparound 		CVE-2024-49888 2024-11-13 23:54 2024-10-22 Show GitHub Exploit DB Packet Storm
1378 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to don't panic system for no free segment fault injection f2fs: fix to don't panic system for no free segment fault inj… NVD-CWE-noinfo
CVE-2024-49887 2024-11-13 23:50 2024-10-22 Show GitHub Exploit DB Packet Storm
1379 6.1 MEDIUM
Network 		jgniecki minecraft_motd_parser Minecraft MOTD Parser is a PHP library to parse minecraft server motd. The HtmlGenerator class is subject to potential cross-site scripting (XSS) attack through a parsed malformed Minecraft server MO… CWE-79
CWE-80
Cross-site Scripting
Basic XSS 		CVE-2024-47765 2024-11-13 23:48 2024-10-5 Show GitHub Exploit DB Packet Storm
1380 9.8 CRITICAL
Network 		mudler localai mudler/LocalAI version 2.17.1 allows for arbitrary file write due to improper handling of automatic archive extraction. When model configurations specify additional files as archives (e.g., .tar), th… NVD-CWE-noinfo
CVE-2024-6868 2024-11-13 23:43 2024-10-29 Show GitHub Exploit DB Packet Storm