Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
193461 7.5 危険 elkagroup - elkagroup Image Gallery の property.php における SQL インジェクションの脆弱性 - CVE-2007-3461 2012-06-26 15:46 2007-06-27 Show GitHub Exploit DB Packet Storm
193462 7.5 危険 eva-web - EVA-Web の index.php3 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3460 2012-06-26 15:46 2007-06-27 Show GitHub Exploit DB Packet Storm
193463 6.4 警告 civiltech - Civitech Avax Vector の特定の ActiveX コントロールにおける任意のファイルを作成または上書きされる脆弱性 - CVE-2007-3459 2012-06-26 15:46 2007-06-27 Show GitHub Exploit DB Packet Storm
193464 7.5 危険 edocstore - eDocStore の essentials/minutes/doc.php における SQL インジェクションの脆弱性 - CVE-2007-3452 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
193465 6.5 警告 gorani network - 6ALBlog の admin/index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3451 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
193466 6.8 警告 gorani network - 6ALBlog の member.php における SQL インジェクションの脆弱性 - CVE-2007-3450 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
193467 6.8 警告 gorani network - 6ALBlog の member.php における SQL インジェクションの脆弱性 - CVE-2007-3449 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
193468 4.3 警告 bugmall - BugMall Shopping Cart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-3448 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
193469 6.8 警告 bugmall - BugMall Shopping Cart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-3447 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
193470 7.5 危険 bugmall - BugMall Shopping Cart におけるログインアクセス権を取得される脆弱性 - CVE-2007-3446 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 5:14 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
471 - - - Incorrect default permissions for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via l… CWE-276
Incorrect Default Permissions 
CVE-2024-25647 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
472 - - - Insufficient control flow management in UEFI firmware for some Intel(R) Xeon(R) Processors may allow an authenticated user to enable denial of service via local access. CWE-691
 Insufficient Control Flow Management
CVE-2024-25565 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
473 - - - Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclos… CWE-665
 Improper Initialization
CVE-2024-25563 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
474 - - - Exposure of resource to wrong sphere in some Intel(R) processors with Intel(R) ACTM may allow a privileged user to potentially enable escalation of privilege via local access. CWE-668
 Exposure of Resource to Wrong Sphere
CVE-2024-24985 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
475 - - - Improper input validation for some Intel(R) Wireless Bluetooth(R) products for Windows before version 23.40 may allow an unauthenticated user to potentially enable denial of service via adjacent acce… CWE-20
 Improper Input Validation 
CVE-2024-24984 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
476 - - - Improper buffer restrictions in some Intel(R) Graphics software may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-92
 DEPRECATED: Improper Sanitization of Custom Special Characters
CVE-2024-23919 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
477 - - - Improper conditions check in some Intel(R) Xeon(R) processor memory controller configurations when using Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via loc… - CVE-2024-23918 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
478 - - - Uncontrolled search path for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local … CWE-427
 Uncontrolled Search Path Element
CVE-2024-23312 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
479 - - - Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi products before version 23.40 may allow an unauthenticated user to enable denial of serv… CWE-20
 Improper Input Validation 
CVE-2024-23198 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
480 - - - Time-of-check Time-of-use Race Condition in some Intel(R) processors with Intel(R) ACTM may allow a privileged user to potentially enable escalation of privilege via local access. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition
CVE-2024-22185 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm