Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194001	6.8	警告	dayfox designs	-	dfblog の postpost.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1525	2012-06-26 15:46	2007-03-20	Show	GitHub Exploit DB Packet Storm

194002	6.8	警告	cicoandcico	-	Cicoandcico CcMail の functions/update.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1516	2012-06-26 15:46	2007-03-20	Show	GitHub Exploit DB Packet Storm

194003	6.8	警告	grafx	-	CWB PRO の comanda.php における PHP リモートファイルインクルーションの脆弱性	-	CVE-2007-1513	2012-06-26 15:46	2007-03-20	Show	GitHub Exploit DB Packet Storm

194004	7.1	危険	frontbase	-	FrontBase Relational Database Server におけるバッファオーバーフローの脆弱性	-	CVE-2007-1511	2012-06-26 15:46	2007-03-20	Show	GitHub Exploit DB Packet Storm

194005	9.3	危険	avant force	-	Avant Browser におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1501	2012-06-26 15:46	2007-03-19	Show	GitHub Exploit DB Packet Storm

194006	4.3	警告	Gentoo Linux	-	LSAT における任意のファイルを上書きされる脆弱性	-	CVE-2007-1500	2012-06-26 15:46	2007-03-18	Show	GitHub Exploit DB Packet Storm

194007	5.2	警告	アバイア	-	複数の Avaya 製品で使用されている Apache Tomcat における外部から攻撃される脆弱性	-	CVE-2007-1491	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194008	6	警告	アバイア	-	複数の Avaya 製品における任意のコマンドを実行される脆弱性	-	CVE-2007-1490	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194009	5	警告	cyber inside sascha schroeder cyberteddy	-	Sascha Schroeder WebLog の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1487	2012-06-26 15:46	2007-03-16	Show	GitHub Exploit DB Packet Storm

194010	10	危険	carbonize	-	Carbonize Lazarus Guestbook の template.class.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1486	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2071	-		-	-	An issue was discovered on Brother MFC-J491DW C1806180757 devices. The printer's web-interface password hash can be retrieved without authentication, because the response header of any failed login a…	-	CVE-2019-20457	2024-11-9 02:35	2024-11-8	Show	GitHub Exploit DB Packet Storm

2072	-		-	-	The Alemha watermarker WordPress plugin through 1.3.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting at…	-	CVE-2024-3754	2024-11-9 02:35	2024-06-14	Show	GitHub Exploit DB Packet Storm

2073	-		-	-	Cross-site scripting vulnerability exists in WP Booking versions prior to 2.4.5. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is accessin…	-	CVE-2024-35297	2024-11-9 02:35	2024-05-27	Show	GitHub Exploit DB Packet Storm

2074	-		-	-	nGrinder before 3.5.9 allows to set delay without limitation, which could be the cause of Denial of Service by remote attacker.	-	CVE-2024-28214	2024-11-9 02:35	2024-03-7	Show	GitHub Exploit DB Packet Storm

2075	-		-	-	The issue was addressed with improved handling of caches. This issue is fixed in iOS 17.1 and iPadOS 17.1. A user may be unable to delete browsing history items.	-	CVE-2023-42951	2024-11-9 02:35	2024-02-21	Show	GitHub Exploit DB Packet Storm

2076	6.5	MEDIUM Network	hcltech	bigfix_webui_insights	A permission issue in BigFix WebUI Insights site version 14 allows an authenticated, unprivileged operator to access an administrator page.	CWE-276 Incorrect Default Permissions	CVE-2023-23344	2024-11-9 02:35	2023-06-23	Show	GitHub Exploit DB Packet Storm

2077	8.8	HIGH Network	level1	wbr-6012_firmware	The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the curr…	CWE-620 Unverified Password Change	CVE-2024-33699	2024-11-9 02:09	2024-10-30	Show	GitHub Exploit DB Packet Storm

2078	7.5	HIGH Network	level1	wbr-6012_firmware	The LevelOne WBR-6012 router firmware R0.40e6 suffers from an input validation vulnerability within its FTP functionality, enabling attackers to cause a denial of service through a series of malforme…	NVD-CWE-noinfo	CVE-2024-33700	2024-11-9 02:06	2024-10-30	Show	GitHub Exploit DB Packet Storm

2079	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: thermal: intel: int340x: processor: Fix warning during module unload The processor_thermal driver uses pcim_device_enable() to en…	NVD-CWE-noinfo	CVE-2024-50093	2024-11-9 01:49	2024-11-6	Show	GitHub Exploit DB Packet Storm

2080	-		-	-	An attacker with local access to the medical office computer can access restricted functions of the Elefant Service tool by using a hard-coded "Hotline" password in the Elefant service binary, whic…	-	CVE-2024-50593	2024-11-9 01:35	2024-11-8	Show	GitHub Exploit DB Packet Storm