Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 19, 2024, 2:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194221	10	危険	Coppermine Photo Gallery	-	CPG における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1414	2012-06-26 15:46	2007-03-12	Show	GitHub Exploit DB Packet Storm

194222	7.5	危険	gaziyapboz	-	GaziYapBoz Game Portal の kategori.asp における SQL インジェクションの脆弱性	-	CVE-2007-1410	2012-06-26 15:46	2007-03-10	Show	GitHub Exploit DB Packet Storm

194223	10	危険	edgewall	-	Trac における詳細不明な脆弱性	-	CVE-2007-1406	2012-06-26 15:46	2007-03-10	Show	GitHub Exploit DB Packet Storm

194224	10	危険	fish	-	FiSH の ExtractRnick 関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1397	2012-06-26 15:46	2007-03-10	Show	GitHub Exploit DB Packet Storm

194225	10	危険	flat chat	-	Flat Chat の startsession.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1394	2012-06-26 15:46	2007-03-10	Show	GitHub Exploit DB Packet Storm

194226	10	危険	geo soft	-	Magic CMS の mysave.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1393	2012-06-26 15:46	2007-03-10	Show	GitHub Exploit DB Packet Storm

194227	4.3	警告	dynaliens	-	dynaliens におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1390	2012-06-26 15:46	2007-03-10	Show	GitHub Exploit DB Packet Storm

194228	7.5	危険	dynaliens	-	dynaliens における認証を回避される脆弱性	-	CVE-2007-1389	2012-06-26 15:46	2007-03-10	Show	GitHub Exploit DB Packet Storm

194229	5	警告	アドビシステムズ Mozilla Foundation ネットスケープ Opera Software ASA	-	Adobe Reader の AcroPDF.DLL におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1377	2012-06-26 15:46	2007-03-9	Show	GitHub Exploit DB Packet Storm

194230	3.5	注意	Drupal	-	Drupal 用の Project issue tracking モジュールにおけるプライベートノードのコンテンツを読み取られる脆弱性	-	CVE-2007-1368	2012-06-26 15:46	2007-03-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 19, 2024, 1:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
461	-		-	-	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Manage User Access" page allows authenticated users to inject arb… Update	CWE-79 Cross-site Scripting	CVE-2024-49759	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

462	-		-	-	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. User with Admin role can add Notes to a device, the application did not properly sanitize the user input, when the ExampleP… Update	CWE-79 Cross-site Scripting	CVE-2024-49758	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

463	-		-	-	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the API-Access page allows authenticated users to inject arbitrary Jav… Update	CWE-79 Cross-site Scripting	CVE-2024-49754	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

464	7.5	HIGH Network	-	-	IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, and 6.1.0.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request c… Update	CWE-32	CVE-2024-41784	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

465	-		-	-	A vulnerability, which was classified as problematic, was found in code-projects Farmacia 1.0. Affected is an unknown function of the file /adicionar-cliente.php. The manipulation of the argument nom… Update	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2024-11246	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

466	-		-	-	A vulnerability, which was classified as critical, has been found in code-projects Farmacia 1.0. This issue affects some unknown processing of the file /editar-produto.php. The manipulation of the ar… Update	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-11245	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

467	-		-	-	A vulnerability classified as critical was found in code-projects Farmacia 1.0. This vulnerability affects unknown code of the file /editar-cliente.php. The manipulation of the argument id leads to s… Update	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-11244	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

468	4.3	MEDIUM Adjacent	-	-	A vulnerability in Cisco TelePresence CE and RoomOS could allow an unauthenticated, adjacent attacker to view sensitive information on an affected device. This vulnerability exists because the aff… Update	CWE-125 Out-of-bounds Read	CVE-2023-20094	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

469	6.7	MEDIUM Local	-	-	A vulnerability in Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to improper access c… Update	CWE-27 Path Traversal: 'dir/../../filename'	CVE-2023-20090	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

470	-		-	-	A vulnerability in Cisco IND could allow an authenticated, local attacker to read application data. This vulnerability is due to insufficient default file permissions that are applied to the appli… Update	-	CVE-2023-20039	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm