Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
193861 4.3 警告 Drupal - Drupal 用の dba モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2159 2012-06-26 15:46 2007-04-11 Show GitHub Exploit DB Packet Storm
193862 7.5 危険 cabron connector - Cabron Connector の services/samples/inclusionService.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2154 2012-06-26 15:46 2007-04-19 Show GitHub Exploit DB Packet Storm
193863 6.8 警告 atmail pty ltd - Atmail の atmail.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2153 2012-06-26 15:46 2007-04-19 Show GitHub Exploit DB Packet Storm
193864 7.8 危険 bluearc - BlueArc Titan デバイスの BlueArc-FTPD における他のサイトへトラフィックをリダイレクトする脆弱性 - CVE-2007-2150 2012-06-26 15:46 2007-04-19 Show GitHub Exploit DB Packet Storm
193865 7.5 危険 bonoestente - Joomla! の Be2004-2 テンプレートの index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2143 2012-06-26 15:46 2007-04-19 Show GitHub Exploit DB Packet Storm
193866 7.5 危険 ajportal2php - AjPortal2Php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2142 2012-06-26 15:46 2007-04-19 Show GitHub Exploit DB Packet Storm
193867 7.5 危険 franklin huang - Franklin Huang Flip の everything.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2140 2012-06-26 15:46 2007-04-19 Show GitHub Exploit DB Packet Storm
193868 10 危険 CA Technologies - 複数の CA 製品で使用される CA BrightStor ARCserve Media Server の SUN RPC サービスにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2139 2012-06-26 15:46 2007-04-25 Show GitHub Exploit DB Packet Storm
193869 7.5 危険 BMC Software - BMC Patrol PerformAgent の bgs_sdservice.exe におけるバッファオーバーフローの脆弱性 - CVE-2007-2136 2012-06-26 15:46 2007-04-22 Show GitHub Exploit DB Packet Storm
193870 10 危険 fac guestbook - FAC Guestbook におけるデータベースをダウンロードされる脆弱性 - CVE-2007-2101 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
381 - - - The "Stammdaten" menu of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.291), in /Apps/TOPqw/qwStammdaten.aspx, is vulnerable to persistent Cross-Site Scripting (XSS). Update - CVE-2024-45878 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
382 - - - baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User Management function in /Apps/TOPqw/BenutzerManagement.aspx. This allows a low privileged user to access all… Update - CVE-2024-45877 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
383 - - - The login form of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.283.4) at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsern… Update - CVE-2024-45876 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
384 - - - The create user function in baltic-it TOPqw Webportal 1.35.287.1 (fixed in version1.35.291), in /Apps/TOPqw/BenutzerManagement.aspx/SaveNewUser, is vulnerable to SQL injection. The JSON object userna… Update - CVE-2024-45875 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
385 - - - Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access. Update - CVE-2024-41167 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
386 - - - Use after free in the UEFI firmware of some Intel(R) Server M20NTP BIOS may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-416
 Use After Free
CVE-2024-40885 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
387 - - - Improper input validation in firmware for some Intel(R) Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-20
 Improper Input Validation 
CVE-2024-39811 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
388 - - - Improper neutralization of special elements used in SQL command in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable escalation of pri… Update CWE-1336
 Improper Neutralization of Special Elements Used in a Template Engine
CVE-2024-39766 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
389 - - - Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-284
Improper Access Control
CVE-2024-39609 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
390 - - - Improper neutralization of special elements used in an SQL command ('SQL Injection') in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially ena… Update CWE-89
SQL Injection
CVE-2024-39368 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm