Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 20, 2024, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193571	3.5	注意	Drupal	-	Drupal 用の LoginToboggan モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3818	2012-06-26 15:54	2007-07-12	Show	GitHub Exploit DB Packet Storm

193572	4.3	警告	Drupal	-	Drupal 用の LoginToboggan モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3817	2012-06-26 15:54	2007-07-12	Show	GitHub Exploit DB Packet Storm

193573	7.5	危険	CMScout	-	CMScout の forums.php における SQL インジェクションの脆弱性	-	CVE-2007-3812	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

193574	7.5	危険	eSyndiCat	-	eSyndiCat における SQL インジェクションの脆弱性	-	CVE-2007-3811	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

193575	5.4	警告	Clavister AB	-	Clavister CorePlus の IKE 実装におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3805	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

193576	5	警告	Clavister AB	-	Clavister CorePlus の AntiVirus エンジンにおけるスキャンを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-3804	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

193577	10	危険	Clavister AB	-	Clavister CorePlus の SMTP ALG におけるアドレスブラックリストを回避される脆弱性	-	CVE-2007-3803	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

193578	4.3	警告	azerbaijan development group	-	AzDG Dating Gold における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3792	2012-06-26 15:54	2007-07-15	Show	GitHub Exploit DB Packet Storm

193579	7.6	危険	esoft	-	eSoft InstaGate EX2 UTM デバイスにおける重要な情報が取得される脆弱性	-	CVE-2007-3788	2012-06-26 15:54	2007-07-15	Show	GitHub Exploit DB Packet Storm

193580	7.5	危険	esoft	-	eSoft InstaGate EX2 UTM デバイスにおける権限を取得される脆弱性	-	CVE-2007-3787	2012-06-26 15:54	2007-07-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 20, 2024, 6:03 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1611	6.5	MEDIUM Network	andsonsdesign	wp-contest	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SONS Creative Development WP Contest allows SQL Injection.This issue affects WP Contest: from n/a…	CWE-89 SQL Injection	CVE-2024-51837	2024-11-15 03:43	2024-11-11	Show	GitHub Exploit DB Packet Storm

1612	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() This was found by a static analyzer.…	CWE-125 Out-of-bounds Read	CVE-2024-50259	2024-11-15 03:24	2024-11-9	Show	GitHub Exploit DB Packet Storm

1613	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: macsec: Fix use-after-free while sending the offloading packet KASAN reports the following UAF. The metadata_dst, which is used t…	CWE-416 Use After Free	CVE-2024-50261	2024-11-15 03:24	2024-11-9	Show	GitHub Exploit DB Packet Storm

1614	5.4	MEDIUM Network	miraheze	wikidiscover	WikiDiscover is an extension designed for use with a CreateWiki managed farm to display wikis. Special:WikiDiscover is a special page that lists all wikis on the wiki farm. However, the special page …	CWE-79 CWE-80 Cross-site Scripting Basic XSS	CVE-2024-47782	2024-11-15 03:19	2024-10-8	Show	GitHub Exploit DB Packet Storm

1615	6.1	MEDIUM Network	miraheze	createwiki	CreateWiki is an extension used at Miraheze for requesting & creating wikis. The name of requested wikis is not escaped on Special:RequestWikiQueue, so a user can insert arbitrary HTML that is displa…	CWE-79 Cross-site Scripting	CVE-2024-47781	2024-11-15 03:19	2024-10-8	Show	GitHub Exploit DB Packet Storm

1616	6.1	MEDIUM Network	-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-51689. Reason: This candidate is a reservation duplicate of CVE-2024-51689. Notes: All CVE users should reference …	-	CVE-2024-10686	2024-11-15 03:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

1617	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: fix crash when config small gso_max_size/gso_ipv4_max_size Config a small gso_max_size/gso_ipv4_max_size will lead to an und…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2024-50258	2024-11-15 03:12	2024-11-9	Show	GitHub Exploit DB Packet Storm

1618	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: Fix use-after-free in get_info() ip6table_nat module unload has refcnt warning for UAF. call trace is: WARNING: CPU: …	CWE-416 Use After Free	CVE-2024-50257	2024-11-15 03:11	2024-11-9	Show	GitHub Exploit DB Packet Storm

1619	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() I got a syzbot report without a repro [1] crashing in nf_send_…	NVD-CWE-noinfo	CVE-2024-50256	2024-11-15 03:11	2024-11-9	Show	GitHub Exploit DB Packet Storm

1620	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs Fix __hci_cmd_sync_sk() to return not NULL for unknown opcodes. …	CWE-476 NULL Pointer Dereference	CVE-2024-50255	2024-11-15 03:10	2024-11-9	Show	GitHub Exploit DB Packet Storm