Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193371	9.3	危険	generic youtube clone script	-	Generic YouTube Clone Script の Email-Template モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-94 コード・インジェクション	CVE-2007-3773	2012-06-26 15:54	2007-07-15	Show	GitHub Exploit DB Packet Storm

193372	5	警告	Digium	-	Asterisk の STUN 実装におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3765	2012-06-26 15:54	2007-07-18	Show	GitHub Exploit DB Packet Storm

193373	5	警告	Digium	-	Asterisk の Skinny チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3764	2012-06-26 15:54	2007-07-18	Show	GitHub Exploit DB Packet Storm

193374	5	警告	Digium	-	Asterisk の IAX2 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3763	2012-06-26 15:54	2007-07-18	Show	GitHub Exploit DB Packet Storm

193375	9.3	危険	Digium	-	Asterisk の IAX2 チャネルドライバにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-3762	2012-06-26 15:54	2007-07-18	Show	GitHub Exploit DB Packet Storm

193376	5.4	警告	アップル	-	iChat の UPnP IGD 実装におけるバッファオーバーフローの脆弱性	-	CVE-2007-3748	2012-06-26 15:54	2007-07-31	Show	GitHub Exploit DB Packet Storm

193377	6.8	警告	アップル	-	CoreAudio への Java インターフェースにおける任意のコードを実行される脆弱性	-	CVE-2007-3747	2012-06-26 15:46	2007-07-31	Show	GitHub Exploit DB Packet Storm

193378	6.8	警告	アップル	-	CoreAudio への Java インターフェースにおける任意のコードを実行される脆弱性	-	CVE-2007-3746	2012-06-26 15:46	2007-07-31	Show	GitHub Exploit DB Packet Storm

193379	6.8	警告	アップル	-	CoreAudio への Java インターフェースにおける任意のメモリを解放される脆弱性	-	CVE-2007-3745	2012-06-26 15:46	2007-07-31	Show	GitHub Exploit DB Packet Storm

193380	5.8	警告	アップル	-	mDNSResponder の UPnP IGD 実装におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-3744	2012-06-26 15:46	2007-07-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2301	6.1	MEDIUM Network	samglover	client_power_tools	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sam Glover Client Power Tools Portal allows Reflected XSS.This issue affects Client Power …	CWE-79 Cross-site Scripting	CVE-2024-49670	2024-11-8 23:57	2024-10-29	Show	GitHub Exploit DB Packet Storm

2302	5.4	MEDIUM Network	affiliatexblocks	affiliatex	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AffiliateX allows Stored XSS.This issue affects AffiliateX: from n/a through 1.2.9.	CWE-79 Cross-site Scripting	CVE-2024-49692	2024-11-8 23:55	2024-10-29	Show	GitHub Exploit DB Packet Storm

2303	5.4	MEDIUM Network	brainstormforce	astra_widgets	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Brainstorm Force Astra Widgets allows Stored XSS.This issue affects Astra Widgets: from n/…	CWE-79 Cross-site Scripting	CVE-2024-50439	2024-11-8 23:53	2024-10-29	Show	GitHub Exploit DB Packet Storm

2304	5.4	MEDIUM Network	wpkoi	wpkoi_templates_for_elementor	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPKoi WPKoi Templates for Elementor allows Stored XSS.This issue affects WPKoi Templates f…	CWE-79 Cross-site Scripting	CVE-2024-49679	2024-11-8 23:52	2024-10-29	Show	GitHub Exploit DB Packet Storm

2305	6.1	MEDIUM Network	themoyles	church_admin	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Andy Moyle Church Admin allows Reflected XSS.This issue affects Church Admin: from n/a bef…	CWE-79 Cross-site Scripting	CVE-2024-50438	2024-11-8 23:52	2024-10-29	Show	GitHub Exploit DB Packet Storm

2306	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix race condition between reset and nvme_dev_disable() nvme_dev_disable() modifies the dev->online_queues field, there…	CWE-362 Race Condition	CVE-2024-50135	2024-11-8 23:34	2024-11-6	Show	GitHub Exploit DB Packet Storm

2307	5.4	MEDIUM Network	mycred	mycred_elementor	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in myCRED myCred Elementor allows Stored XSS.This issue affects myCred Elementor: from n/a th…	CWE-79 Cross-site Scripting	CVE-2024-49702	2024-11-8 23:32	2024-10-24	Show	GitHub Exploit DB Packet Storm

2308	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Unregister notifier on eswitch init failure It otherwise remains registered and a subsequent attempt at eswitch enablin…	NVD-CWE-noinfo	CVE-2024-50136	2024-11-8 23:31	2024-11-6	Show	GitHub Exploit DB Packet Storm

2309	6.5	MEDIUM Network	zte	zxr10_1800-2s_firmware zxr10_2800-4_firmware zxr10_3800-8_firmware zxr10_160_firmware	There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . An authenticated attacker could use the vulnerability to obtain sensitive information about the de…	CWE-294 Authentication Bypass by Capture-replay	CVE-2024-22066	2024-11-8 23:31	2024-10-29	Show	GitHub Exploit DB Packet Storm

2310	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: reset: starfive: jh71x0: Fix accessing the empty member on JH7110 SoC data->asserted will be NULL on JH7110 SoC since commit 8232…	NVD-CWE-noinfo	CVE-2024-50137	2024-11-8 23:29	2024-11-6	Show	GitHub Exploit DB Packet Storm