Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 19, 2024, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193521 5 警告 dirlist - dirLIST の index.php における除外フォルダのコンテンツを一覧にされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-3968 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
193522 5 警告 dirlist - PHP dirLIST の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-3967 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
193523 7.5 危険 fsp - fsplib の fsplib.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-3962 2012-06-26 15:54 2007-07-23 Show GitHub Exploit DB Packet Storm
193524 5 警告 fsp - fsplib の fsplib.c におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3961 2012-06-26 15:54 2007-07-23 Show GitHub Exploit DB Packet Storm
193525 9.3 危険 アップル - Apple Safari などの PCRE ライブラリにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-3944 2012-06-26 15:54 2007-07-23 Show GitHub Exploit DB Packet Storm
193526 7.5 危険 adaptive business design - Infinite Responder における SQL インジェクションの脆弱性 - CVE-2007-3943 2012-06-26 15:54 2007-07-20 Show GitHub Exploit DB Packet Storm
193527 7.5 危険 a-shop - A-shop における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-3937 2012-06-26 15:54 2007-07-20 Show GitHub Exploit DB Packet Storm
193528 6.4 警告 a-shop - A-shop の admin/filebrowser.asp におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-3936 2012-06-26 15:54 2007-07-20 Show GitHub Exploit DB Packet Storm
193529 7.5 危険 bbs - BBS E-Market の postscript/postscript.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3934 2012-06-26 15:54 2007-07-20 Show GitHub Exploit DB Packet Storm
193530 7.8 危険 シスコシステムズ - Cisco WAE アプライアンスで使用される Cisco WAAS の CIFS の最適化におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3923 2012-06-26 15:54 2007-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 19, 2024, 4:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1641 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit Syzbot points out that skb_trim() has a sanity check on… CWE-824
 Access of Uninitialized Pointer 		CVE-2024-49938 2024-11-14 00:25 2024-10-22 Show GitHub Exploit DB Packet Storm
1642 6.1 MEDIUM
Network 		veritas data_insight An XSS vulnerability was discovered in Veritas Data Insight before 7.1. It allows a remote attacker to inject an arbitrary web script into an HTTP request that could reflect back to an authenticated … CWE-79
Cross-site Scripting 		CVE-2024-47854 2024-11-14 00:25 2024-10-4 Show GitHub Exploit DB Packet Storm
1643 6.5 MEDIUM
Adjacent 		zephyrproject zephyr No proper validation of the length of user input in olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c. CWE-787
 Out-of-bounds Write 		CVE-2024-6444 2024-11-14 00:24 2024-10-4 Show GitHub Exploit DB Packet Storm
1644 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Fix null-ptr-deref in target_alloc_device() There is a null-ptr-deref issue reported by KASAN: BUG: KASAN: n… CWE-476
 NULL Pointer Dereference 		CVE-2024-50153 2024-11-14 00:23 2024-11-7 Show GitHub Exploit DB Packet Storm
1645 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ACPI: PAD: fix crash in exit_round_robin() The kernel occasionally crashes in cpumask_clear_cpu(), which is called within exit_ro… NVD-CWE-noinfo
CVE-2024-49935 2024-11-14 00:21 2024-10-22 Show GitHub Exploit DB Packet Storm
1646 4.6 MEDIUM
Physics 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name It's observed that a crash occurs during hot-remove a memor… NVD-CWE-noinfo
CVE-2024-49934 2024-11-14 00:18 2024-10-22 Show GitHub Exploit DB Packet Storm
1647 5.3 MEDIUM
Network 		iowacomputergurus aspnetcore.utilities.cloudstorage ICG.AspNetCore.Utilities.CloudStorage is a collection of cloud storage utilities to assist with the management of files for cloud upload. Users of this library that set a duration for a SAS Uri with … NVD-CWE-noinfo
CVE-2024-50353 2024-11-14 00:15 2024-10-30 Show GitHub Exploit DB Packet Storm
1648 7.5 HIGH
Network 		idurarapp idurar IDURAR is open source ERP CRM accounting invoicing software. The vulnerability exists in the corePublicRouter.js file. Using the reference usage here, it is identified that the public endpoint is acc… CWE-22
CWE-23
Path Traversal
 Relative Path Traversal 		CVE-2024-47769 2024-11-14 00:12 2024-10-5 Show GitHub Exploit DB Packet Storm
1649 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: blk_iocost: fix more out of bound shifts Recently running UBSAN caught few out of bound shifts in the ioc_forgive_debts() functio… NVD-CWE-noinfo
CVE-2024-49933 2024-11-14 00:09 2024-10-22 Show GitHub Exploit DB Packet Storm
1650 9.8 CRITICAL
Network 		yarpp yet_another_related_posts_plugin Access Control vulnerability in YARPP YARPP allows . This issue affects YARPP: from n/a through 5.30.10. CWE-862
 Missing Authorization 		CVE-2024-43919 2024-11-14 00:02 2024-11-2 Show GitHub Exploit DB Packet Storm