Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 17, 2024, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194051	4.9	警告	Fabrice Bellard	-	QEMU における仮想マシンを停止される脆弱性	-	CVE-2007-1322	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

194052	7.8	危険	Digium	-	Asterisk におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2007-1306	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194053	7.8	危険	douran software technologies	-	DOURAN Software Technologies ISPUtil におけるユーザおよびリセラーデータを取得される脆弱性	-	CVE-2007-1300	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194054	7.5	危険	aj square	-	AJ Auction の subcat.php における SQL インジェクションの脆弱性	-	CVE-2007-1298	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194055	7.5	危険	aj square	-	AJDating の view_profile.php における SQL インジェクションの脆弱性	-	CVE-2007-1297	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194056	7.5	危険	aj square	-	AJ Classifieds の postingdetails.php における SQL インジェクションの脆弱性	-	CVE-2007-1296	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194057	7.5	危険	aj forum	-	AJ Forum の topic_title.php における SQL インジェクションの脆弱性	-	CVE-2007-1295	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194058	7.8	危険	DivX	-	DivXBrowserPlugin (npdivx32.dll) の特定の ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1294	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

194059	4.3	警告	マイクロソフトアドビシステムズ	-	Adobe RoboHelp および Adobe RoboHelp Server におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1280	2012-06-26 15:46	2007-05-8	Show	GitHub Exploit DB Packet Storm

194060	7.2	危険	アップルアドビシステムズ	-	Adobe Bridge の OS X 用アップデートのインストーラにおける権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2007-1279	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 17, 2024, 5:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221	6.4	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain access to sensitive… New	CWE-20 Improper Input Validation	CVE-2021-1482	2024-11-16 02:15	2024-11-16	Show	GitHub Exploit DB Packet Storm

222	4.3	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct Cypher query language injection attacks on an affe… New	CWE-943 Improper Neutralization of Special Elements in Data Query Logic	CVE-2021-1481	2024-11-16 02:15	2024-11-16	Show	GitHub Exploit DB Packet Storm

223	-		-	-	A vulnerability in the vDaemon service of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to cause a buffer overflow on an affected system, resulting in a denial … New	CWE-20 Improper Input Validation	CVE-2021-1466	2024-11-16 02:15	2024-11-16	Show	GitHub Exploit DB Packet Storm

224	5.0	MEDIUM Network	-	-	A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain restricted access to the configuration information of an … New	CWE-20 Improper Input Validation	CVE-2021-1464	2024-11-16 02:15	2024-11-16	Show	GitHub Exploit DB Packet Storm

225	4.3	MEDIUM Adjacent	-	-	A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the Cisco Discovery Protocol process… New	CWE-120 Classic Buffer Overflow	CVE-2022-20846	2024-11-16 02:15	2024-11-16	Show	GitHub Exploit DB Packet Storm

226	5.4	MEDIUM Network	rafelsanso	gmap_point_list	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Rafel Sansó Gmap Point List allows Stored XSS.This issue affects Gmap Point List: from n/a… Update	CWE-79 Cross-site Scripting	CVE-2024-51594	2024-11-16 02:15	2024-11-10	Show	GitHub Exploit DB Packet Storm

227	4.3	MEDIUM Network	github	enterprise_server	An information disclosure vulnerability was identified in GitHub Enterprise Server via attacker uploaded asset URL allowing the attacker to retrieve metadata information of a user who clicks on the U… Update	NVD-CWE-noinfo	CVE-2024-9539	2024-11-16 02:15	2024-10-12	Show	GitHub Exploit DB Packet Storm

228	4.8	MEDIUM Network	mendix	mendix	A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.16.0 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.12 (All versions < V10.12… Update	CWE-362 Race Condition	CVE-2024-50313	2024-11-16 02:12	2024-11-12	Show	GitHub Exploit DB Packet Storm

229	4.4	MEDIUM Local	lollms	lollms	A path traversal vulnerability exists in the api open_personality_folder endpoint of parisneo/lollms-webui. This vulnerability allows an attacker to read any folder in the personality_folder on the v… Update	CWE-23 Relative Path Traversal	CVE-2024-6985	2024-11-16 02:10	2024-10-12	Show	GitHub Exploit DB Packet Storm

230	5.4	MEDIUM Network	mysticalthemes	meta_store_elements	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in bnayawpguy Meta Store Elements allows DOM-Based XSS.This issue affects Meta Store Elements… Update	CWE-79 Cross-site Scripting	CVE-2024-51592	2024-11-16 02:04	2024-11-10	Show	GitHub Exploit DB Packet Storm