Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 4:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
194011 7.5 危険 advanced website creator - AWC の MySQL バックエンドにおける SQL インジェクションの脆弱性 - CVE-2007-1779 2012-06-26 15:46 2007-03-29 Show GitHub Exploit DB Packet Storm
194012 10 危険 eve-nuke - PHP-Nuke のEN-Forums モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1778 2012-06-26 15:46 2007-03-29 Show GitHub Exploit DB Packet Storm
194013 6.8 警告 designforjoomla - Joomla! 用の DesignForJoomla.com D4J eZine コンポーネントの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-1776 2012-06-26 15:46 2007-03-29 Show GitHub Exploit DB Packet Storm
194014 9.3 危険 ay system solutions - Ay System Solutions WCS の manage/javascript/formjavascript.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1771 2012-06-26 15:46 2007-03-29 Show GitHub Exploit DB Packet Storm
194015 10 危険 Esri - ESRI ArcGIS の giomgr におけるバッファオーバーフローの脆弱性 - CVE-2007-1770 2012-06-26 15:46 2007-03-29 Show GitHub Exploit DB Packet Storm
194016 7.8 危険 AOL - AOL の Deskbar.dll におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1767 2012-06-26 15:46 2007-03-29 Show GitHub Exploit DB Packet Storm
194017 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2007-1765 2012-06-26 15:46 2007-03-29 Show GitHub Exploit DB Packet Storm
194018 6 警告 FastStone Soft - FastStone Image Viewer におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1764 2012-06-26 15:46 2007-03-29 Show GitHub Exploit DB Packet Storm
194019 4.4 警告 Apache Software Foundation - Apache HTTP Server (httpd) の suexec における任意の UID/GID 所有のファイルを生成される脆弱性 - CVE-2007-1743 2012-06-26 15:46 2007-04-13 Show GitHub Exploit DB Packet Storm
194020 3.7 注意 Apache Software Foundation - Apache HTTP Server (httpd) の suexec における承認されていない操作を間違ったディレクトリで実行される脆弱性 - CVE-2007-1742 2012-06-26 15:46 2007-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1511 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: add more sanity checks to qdisc_pkt_len_init() One path takes care of SKB_GSO_DODGY, assuming skb->len is bigger than hdr_le… NVD-CWE-noinfo
CVE-2024-49948 2024-11-13 06:19 2024-10-22 Show GitHub Exploit DB Packet Storm
1512 7.5 HIGH
Network
- - A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause APICast to incorrectly authenticate a request. A malformed basic authentication header containing spec… CWE-863
 Incorrect Authorization
CVE-2024-10295 2024-11-13 06:15 2024-10-25 Show GitHub Exploit DB Packet Storm
1513 4.7 MEDIUM
Local
linux-pam linux-pam A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this… CWE-922
 Insecure Storage of Sensitive Information
CVE-2024-10041 2024-11-13 06:15 2024-10-23 Show GitHub Exploit DB Packet Storm
1514 - - - A flaw was found in the libreswan client plugin for NetworkManager (NetkworkManager-libreswan), where it fails to properly sanitize the VPN configuration from the local unprivileged user. In this con… CWE-94
Code Injection
CVE-2024-9050 2024-11-13 06:15 2024-10-22 Show GitHub Exploit DB Packet Storm
1515 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed If mgmt_index_removed is called while there are commands queued on cmd_… NVD-CWE-noinfo
CVE-2024-49951 2024-11-13 06:06 2024-10-22 Show GitHub Exploit DB Packet Storm
1516 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: avoid potential underflow in qdisc_pkt_len_init() with UFO After commit 7c6d2ecbda83 ("net: be more gentle about silly gso r… CWE-476
 NULL Pointer Dereference
CVE-2024-49949 2024-11-13 06:03 2024-10-22 Show GitHub Exploit DB Packet Storm
1517 9.8 CRITICAL
Network
eyecix jobsearch_wp_job_board Deserialization of Untrusted Data vulnerability in Eyecix JobSearch allows Object Injection.This issue affects JobSearch: from n/a through 2.5.9. CWE-502
 Deserialization of Untrusted Data
CVE-2024-47636 2024-11-13 05:52 2024-10-11 Show GitHub Exploit DB Packet Storm
1518 9.8 CRITICAL
Network
eyecix jobsearch_wp_job_board Missing Authorization vulnerability in eyecix JobSearch allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JobSearch: from n/a through 2.5.4. CWE-862
 Missing Authorization
CVE-2024-43929 2024-11-13 05:49 2024-11-2 Show GitHub Exploit DB Packet Storm
1519 8.8 HIGH
Network
eyecix jobsearch_wp_job_board Missing Authorization vulnerability in eyecix JobSearch allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JobSearch: from n/a through 2.5.4. CWE-862
 Missing Authorization
CVE-2024-43928 2024-11-13 05:49 2024-11-2 Show GitHub Exploit DB Packet Storm
1520 9.8 CRITICAL
Network
wpmanageninja fluent_support Missing Authorization vulnerability in WPManageNinja LLC Fluent Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fluent Support: from n/a through 1.8… CWE-862
 Missing Authorization
CVE-2024-47302 2024-11-13 05:40 2024-11-2 Show GitHub Exploit DB Packet Storm