Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Sept. 23, 2024, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193341	7.5	危険	fribidi	-	PyFriBidi で使用される GNU FriBidi の log2vis_utf8 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3444	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

193342	7.5	危険	moinejf	-	abcm2ps における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3441	2012-03-27 18:42	2011-02-18	Show	GitHub Exploit DB Packet Storm

193343	1.9	注意	kernel.org	-	Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性	CWE-DesignError	CVE-2010-3431	2012-03-27 18:42	2011-01-24	Show	GitHub Exploit DB Packet Storm

193344	4.7	警告	kernel.org	-	Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性	CWE-DesignError	CVE-2010-3430	2012-03-27 18:42	2011-01-24	Show	GitHub Exploit DB Packet Storm

193345	7.5	危険	Symphony CMS	-	Symphony CMS の lib/toolkit/events/event.section.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3458	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

193346	4.3	警告	Symphony CMS	-	Symphony CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3457	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

193347	5	警告	energyscripts	-	ES Simple Download の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3456	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

193348	4.3	警告	ATutor	-	AChecker の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3455	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

193349	6.8	警告	FFmpeg mplayerhq	-	MPlayer などの製品で使用される FFmpeg の flicvideo.c における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3429	2012-03-27 18:42	2010-09-30	Show	GitHub Exploit DB Packet Storm

193350	7.5	危険	Intermesh	-	Intermesh Group-Office の modules/notes/json.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3428	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Sept. 23, 2024, 12:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1931	7.2	HIGH Network	gitlab	gitlab	A privilege escalation issue has been discovered in GitLab EE affecting all versions starting from 16.6 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. A user assigned the …	NVD-CWE-noinfo	CVE-2024-8631	2024-09-15 00:22	2024-09-13	Show	GitHub Exploit DB Packet Storm

1932	3.5	LOW Network	gitlab	gitlab	An issue has been discovered in GitLab affecting all versions starting from 17.1 to 17.1.7, 17.2 prior to 17.2.5 and 17.3 prior to 17.3.2. A crafted URL could be used to trick a victim to trust an at…	NVD-CWE-noinfo	CVE-2024-6446	2024-09-15 00:17	2024-09-13	Show	GitHub Exploit DB Packet Storm

1933	4.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab-CE/EE affecting all versions starting with 17.0 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. An attacker as a guest user was able to access commit info…	NVD-CWE-noinfo	CVE-2024-6389	2024-09-15 00:10	2024-09-13	Show	GitHub Exploit DB Packet Storm

1934	6.5	MEDIUM Network	gitlab	gitlab	An issue has been discovered discovered in GitLab EE/CE affecting all versions starting from 15.10 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before…	CWE-209 Information Exposure Through an Error Message	CVE-2024-5435	2024-09-15 00:05	2024-09-13	Show	GitHub Exploit DB Packet Storm

1935	7.5	HIGH Network	gitlab	gitlab	An issue has been discovered in GitLab EE affecting all versions starting from 11.2 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before 17.3.2. It was…	NVD-CWE-noinfo	CVE-2024-4660	2024-09-14 23:57	2024-09-13	Show	GitHub Exploit DB Packet Storm

1936	6.1	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. Under certain conditions an open redirect vulnerability …	CWE-601 Open Redirect	CVE-2024-4612	2024-09-14 23:48	2024-09-13	Show	GitHub Exploit DB Packet Storm

1937	9.1	CRITICAL Network	gitlab	gitlab	An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that would allow an attacker to modify an on-demand DAST scan without permiss…	CWE-863 Incorrect Authorization	CVE-2024-2743	2024-09-14 23:42	2024-09-13	Show	GitHub Exploit DB Packet Storm

1938	7.2	HIGH Network	-	-	An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection through specially crafted command line input …	-	CVE-2024-8281	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

1939	7.2	HIGH Network	-	-	An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection or cause a recoverable denial of service usin…	-	CVE-2024-8280	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

1940	7.2	HIGH Network	-	-	A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads.	-	CVE-2024-8279	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm