Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
193901 4.3 警告 bloofox - BloofoxCMS の plugins/spaw/img_popup.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2310 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193902 4.3 警告 flowers - FloweRS の cas.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2309 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193903 4.3 警告 flowers - FloweRS の cas.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2308 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193904 7.5 危険 expow - Expow の autoindex.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2302 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193905 7.5 危険 arash - audioCMS arash における任意の PHP コードが実行される脆弱性 - CVE-2007-2301 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193906 7.5 危険 frogss - Frogss CMS における SQL インジェクションの脆弱性 - CVE-2007-2299 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193907 7.5 危険 GForge Group - Garennes における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2298 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193908 7.8 危険 Digium - Asterisk のSIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2297 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193909 7.8 危険 Digium - Asterisk の Manager Interface におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2294 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
193910 7.6 危険 Digium - Asterisk の SIP チャネル T.38 SDP パーサの chan_sip.c の process_sdp 関数におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2293 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2451 5.4 MEDIUM
Network
kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Stored XSS.This issue affects Namaste! LMS: from n/a throu… CWE-79
Cross-site Scripting
CVE-2024-50410 2024-11-8 05:29 2024-10-29 Show GitHub Exploit DB Packet Storm
2452 5.4 MEDIUM
Network
kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Stored XSS.This issue affects Namaste! LMS: from n/a throu… CWE-79
Cross-site Scripting
CVE-2024-50409 2024-11-8 05:28 2024-10-29 Show GitHub Exploit DB Packet Storm
2453 6.1 MEDIUM
Network
kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Reflected XSS.This issue affects Namaste! LMS: from n/a th… CWE-79
Cross-site Scripting
CVE-2024-50407 2024-11-8 05:28 2024-10-29 Show GitHub Exploit DB Packet Storm
2454 8.2 HIGH
Local
intel thunderbolt_dch_driver Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. NVD-CWE-noinfo
CVE-2023-22293 2024-11-8 05:27 2024-02-14 Show GitHub Exploit DB Packet Storm
2455 6.5 MEDIUM
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware
Transient DOS while parsing fragments of MBSSID IE from beacon frame. CWE-416
 Use After Free
CVE-2024-33068 2024-11-8 05:07 2024-11-4 Show GitHub Exploit DB Packet Storm
2456 6.5 MEDIUM
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware
Transient DOS while processing the CU information from RNR IE. CWE-125
Out-of-bounds Read
CVE-2024-38405 2024-11-8 05:06 2024-11-4 Show GitHub Exploit DB Packet Storm
2457 6.5 MEDIUM
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware
Transient DOS while parsing BTM ML IE when per STA profile is not included. CWE-125
Out-of-bounds Read
CVE-2024-38403 2024-11-8 05:06 2024-11-4 Show GitHub Exploit DB Packet Storm
2458 6.5 MEDIUM
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wsa8815_firmware
wsa8810_firmware
wcn6755_firmware
wcn3988_firmware
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE. CWE-617
 Reachable Assertion
CVE-2024-23385 2024-11-8 05:05 2024-11-4 Show GitHub Exploit DB Packet Storm
2459 6.7 MEDIUM
Local
qualcomm wsa8835_firmware
wsa8830_firmware
wcd9380_firmware
wcd9340_firmware
snapdragon_x75_5g_modem-rf_system_firmware
snapdragon_x72_5g_modem-rf_system_firmware
snapdragon_auto_5g_modem-rf…
Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size. CWE-120
Classic Buffer Overflow
CVE-2024-33030 2024-11-8 05:04 2024-11-4 Show GitHub Exploit DB Packet Storm
2460 7.5 HIGH
Network
huawei harmonyos Information management vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2024-51523 2024-11-8 05:03 2024-11-5 Show GitHub Exploit DB Packet Storm