Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 19, 2024, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
194271 6.8 警告 aweb labs - aWeb Labs aWebNews における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-1247 2012-06-26 15:46 2007-03-3 Show GitHub Exploit DB Packet Storm
194272 7.5 危険 audins audiens - Audins Audiens における製品をアンインストールされる脆弱性 - CVE-2007-1243 2012-06-26 15:46 2007-03-3 Show GitHub Exploit DB Packet Storm
194273 7.5 危険 audins audiens - Audins Audiens の system/index.php における SQL インジェクションの脆弱性 - CVE-2007-1242 2012-06-26 15:46 2007-03-3 Show GitHub Exploit DB Packet Storm
194274 5.8 警告 audins audiens - Audins Audiens の setup.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1241 2012-06-26 15:46 2007-03-3 Show GitHub Exploit DB Packet Storm
194275 4.3 警告 Docebo - Docebo CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-1240 2012-06-26 15:46 2007-03-3 Show GitHub Exploit DB Packet Storm
194276 5 警告 bjsintay - sitex における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2007-1237 2012-06-26 15:46 2007-03-3 Show GitHub Exploit DB Packet Storm
194277 7.5 危険 bjsintay - sitex における任意の PHP コードをアップロードされる脆弱性 CWE-20
不適切な入力確認
CVE-2007-1235 2012-06-26 15:46 2007-03-3 Show GitHub Exploit DB Packet Storm
194278 4.3 警告 bjsintay - sitex におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-1234 2012-06-26 15:46 2007-03-3 Show GitHub Exploit DB Packet Storm
194279 10 危険 grok developments - Grok Developments NetProxy の接続ログファイル実装における不正な活動を実行される脆弱性 - CVE-2007-1225 2012-06-26 15:46 2007-03-2 Show GitHub Exploit DB Packet Storm
194280 5 警告 grok developments - Grok Developments NetProxy における URL フィルタを回避される脆弱性 - CVE-2007-1224 2012-06-26 15:46 2007-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 19, 2024, 4:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1461 5.9 MEDIUM
Network
level1 wbr-6012_firmware A vulnerability in the LevelOne WBR-6012 router's firmware version R0.40e6 allows sensitive information to be transmitted in cleartext via Web and FTP services, exposing it to network sniffing attack… CWE-319
Cleartext Transmission of Sensitive Information
CVE-2024-32946 2024-11-14 03:39 2024-10-30 Show GitHub Exploit DB Packet Storm
1462 7.0 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm: shmem: fix data-race in shmem_getattr() I got the following KCSAN report during syzbot testing: ============================… CWE-362
Race Condition
CVE-2024-50228 2024-11-14 03:38 2024-11-9 Show GitHub Exploit DB Packet Storm
1463 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential deadlock with newly created symlinks Syzbot reported that page_symlink(), called by nilfs_symlink(), trigge… CWE-667
 Improper Locking
CVE-2024-50229 2024-11-14 03:35 2024-11-9 Show GitHub Exploit DB Packet Storm
1464 - - - vditor v.3.9.8 and before is vulnerable to Arbitrary file read via a crafted data packet. - CVE-2024-39150 2024-11-14 03:35 2024-07-6 Show GitHub Exploit DB Packet Storm
1465 - - - A SQL injection vulnerability in /model/get_events.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the event_id parameter. - CVE-2024-33403 2024-11-14 03:35 2024-05-7 Show GitHub Exploit DB Packet Storm
1466 3.7 LOW
Network
- - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java… - CVE-2024-21012 2024-11-14 03:35 2024-04-17 Show GitHub Exploit DB Packet Storm
1467 7.8 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel bug due to missing clearing of checked flag Syzbot reported that in directory operations after nilfs2 detects … CWE-787
 Out-of-bounds Write
CVE-2024-50230 2024-11-14 03:31 2024-11-9 Show GitHub Exploit DB Packet Storm
1468 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table() modprobe iio-test-gts and rmmod it, then the following mem… CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2024-50231 2024-11-14 03:30 2024-11-9 Show GitHub Exploit DB Packet Storm
1469 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() In the ad9832_write_frequency() function, clk_get_… CWE-369
 Divide By Zero
CVE-2024-50233 2024-11-14 03:25 2024-11-9 Show GitHub Exploit DB Packet Storm
1470 9.8 CRITICAL
Network
level1 wbr-6012_firmware A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can forc… CWE-798
 Use of Hard-coded Credentials
CVE-2024-31151 2024-11-14 03:19 2024-10-30 Show GitHub Exploit DB Packet Storm