Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193871 10 危険 fac guestbook - FAC Guestbook におけるデータベースをダウンロードされる脆弱性 - CVE-2007-2100 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
193872 7.5 危険 anthologia - Anthologia の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2094 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
193873 6.8 警告 cnstats - CNStats における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2087 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
193874 6.8 警告 cnstats - CNStats における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2086 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
193875 7.5 危険 actionpoll - Robert Ladstaetter ActionPoll の db/PollDB.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2065 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
193876 7.5 危険 actionpoll - Robert Ladstaetter ActionPoll における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2064 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
193877 4.3 警告 AfterLogic - AfterLogic MailBee WebMail Pro の check_login.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2061 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
193878 10 危険 eiqnetworks - eIQnetworks ESA の ESA プロトコル実装におけるバッファオーバーフローの脆弱性 - CVE-2007-2059 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
193879 10 危険 Aircrack-ng - aircrack-ng airodump-ng におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2057 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
193880 7.5 危険 afflib - AFFLIB における任意のコマンドを実行される脆弱性 - CVE-2007-2055 2012-06-26 15:46 2007-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
381 - - - The "Stammdaten" menu of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.291), in /Apps/TOPqw/qwStammdaten.aspx, is vulnerable to persistent Cross-Site Scripting (XSS). Update - CVE-2024-45878 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
382 - - - baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User Management function in /Apps/TOPqw/BenutzerManagement.aspx. This allows a low privileged user to access all… Update - CVE-2024-45877 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
383 - - - The login form of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.283.4) at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsern… Update - CVE-2024-45876 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
384 - - - The create user function in baltic-it TOPqw Webportal 1.35.287.1 (fixed in version1.35.291), in /Apps/TOPqw/BenutzerManagement.aspx/SaveNewUser, is vulnerable to SQL injection. The JSON object userna… Update - CVE-2024-45875 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
385 - - - Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access. Update - CVE-2024-41167 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
386 - - - Use after free in the UEFI firmware of some Intel(R) Server M20NTP BIOS may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-416
 Use After Free 		CVE-2024-40885 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
387 - - - Improper input validation in firmware for some Intel(R) Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-20
 Improper Input Validation  		CVE-2024-39811 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
388 - - - Improper neutralization of special elements used in SQL command in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable escalation of pri… Update CWE-1336
 Improper Neutralization of Special Elements Used in a Template Engine 		CVE-2024-39766 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
389 - - - Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access. Update CWE-284
Improper Access Control 		CVE-2024-39609 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
390 - - - Improper neutralization of special elements used in an SQL command ('SQL Injection') in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially ena… Update CWE-89
SQL Injection 		CVE-2024-39368 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm