Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193741	10	危険	GNU Project	-	GNU Gnash の server/parser/sprite_definition.cpp における任意のコードを実行される脆弱性	-	CVE-2007-2500	2012-06-26 15:46	2007-05-3	Show	GitHub Exploit DB Packet Storm

193742	6.8	警告	globalmegacorp	-	DVDdb におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2499	2012-06-26 15:46	2007-05-3	Show	GitHub Exploit DB Packet Storm

193743	5	警告	archangelmgt	-	Archangel Weblog の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2574	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

193744	7.1	危険	cdelia software	-	Cdelia Software ImageProcessing におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2565	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

193745	10	危険	Digium	-	Asterisk の IAX2 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2488	2012-06-26 15:46	2007-05-7	Show	GitHub Exploit DB Packet Storm

193746	7.5	危険	Atomix Productions	-	AtomixMP3 におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2487	2012-06-26 15:46	2007-05-3	Show	GitHub Exploit DB Packet Storm

193747	7.1	危険	Cerulean Studios	-	Cerulean Studios Trillian Pro における重要な情報を取得される脆弱性	-	CVE-2007-2479	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

193748	9.3	危険	Cerulean Studios	-	Cerulean Studios Trillian Pro の IRC コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-2478	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

193749	7.5	危険	CMS Made Simple	-	CMS Made Simple の stylesheet.php における SQL インジェクションの脆弱性	-	CVE-2007-2473	2012-06-26 15:46	2007-04-24	Show	GitHub Exploit DB Packet Storm

193750	5.8	警告	filerun	-	FileRun の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2470	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 17, 2024, 5:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
531	-		-	-	Insyde IHISI function 0x49 can restore factory defaults for certain UEFI variables without further authentication by default, which could lead to a possible roll-back attack in certain platforms. Thi… New	-	CVE-2024-39707	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

532	-		-	-	A misconfiguration in the fingerprint authentication mechanism of Binance: BTC, Crypto and NFTS v2.85.4, allows attackers to bypass authentication when adding a new fingerprint. New	-	CVE-2024-31695	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

533	-		-	-	Improper data protection on the ventilator's serial interface could allow an attacker to send and receive messages that result in unauthorized disclosure of information and/or have unintended impacts… New	-	CVE-2024-9834	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

534	-		-	-	There is no limit on the number of failed login attempts permitted with the Clinician Password or the Serial Number Clinician Password. An attacker could execute a brute-force attack to gain unauthor… New	-	CVE-2024-9832	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

535	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in Platform.Ly Platform.Ly Official allows Stored XSS.This issue affects Platform.Ly Official: from n/a through 1.1.3. New	CWE-352 Origin Validation Error	CVE-2024-51687	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

536	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in Ciprian Popescu W3P SEO allows Stored XSS.This issue affects W3P SEO: from n/a before 1.8.6. New	CWE-352 Origin Validation Error	CVE-2024-51684	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

537	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in FraudLabs Pro FraudLabs Pro SMS Verification allows Stored XSS.This issue affects FraudLabs Pro SMS Verification: from n/a through 1.10.1. New	CWE-352 Origin Validation Error	CVE-2024-51688	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

538	5.4	MEDIUM Network	-	-	Microsoft Edge (Chromium-based) Information Disclosure Vulnerability New	CWE-359 Exposure of Private Personal Information to an Unauthorized Actor	CVE-2024-49025	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

539	-		-	-	A malicious server can crash the OpenAFS cache manager and other client utilities, and possibly execute arbitrary code. New	-	CVE-2024-10397	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm

540	-		-	-	An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the fileserver to crash, possibly expose uninitialized memory, and possibly store garbage data in the audit… New	-	CVE-2024-10396	2024-11-15 22:58	2024-11-15	Show	GitHub Exploit DB Packet Storm