Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 17, 2024, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194271	7.5	危険	bradabra	-	Bradabra の include/includes.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0500	2012-06-26 15:46	2007-01-25	Show	GitHub Exploit DB Packet Storm

194272	7.5	危険	enthusiast	-	Enthusiast における SQL インジェクションの脆弱性	-	CVE-2007-0484	2012-06-26 15:46	2007-01-24	Show	GitHub Exploit DB Packet Storm

194273	6.8	警告	enthusiast	-	Enthusiast におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0483	2012-06-26 15:46	2007-01-24	Show	GitHub Exploit DB Packet Storm

194274	4.3	警告	アップル	-	Safari で使用される WebCore におけるクロスサイトスクリプティング攻撃を誘発される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-0478	2012-06-26 15:46	2007-01-25	Show	GitHub Exploit DB Packet Storm

194275	4.6	警告	Gentoo Linux	-	Gentoo Linux の gencert.sh スクリプトにおける任意のファイルを上書きされる脆弱性	-	CVE-2007-0476	2012-06-26 15:46	2007-01-23	Show	GitHub Exploit DB Packet Storm

194276	5	警告	アップル	-	Apple Software Update におけるフォーマットストリングの脆弱性	-	CVE-2007-0463	2012-06-26 15:46	2007-01-29	Show	GitHub Exploit DB Packet Storm

194277	10	危険	アップル	-	Mac OS X の Quicktime などの _GetSrcBits32ARGB 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0462	2012-06-26 15:46	2007-01-25	Show	GitHub Exploit DB Packet Storm

194278	5	警告	dazuko	-	Dazuko anti-virus helper モジュールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0461	2012-06-26 15:46	2007-01-23	Show	GitHub Exploit DB Packet Storm

194279	10	危険	CA Technologies	-	複数の CA 製品の LGSERVER.EXE におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-0449	2012-06-26 15:46	2007-01-23	Show	GitHub Exploit DB Packet Storm

194280	7.2	危険	シトリックス・システムズ	-	Citrix Presentation Server などの製品で使用される print provider ライブラリにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-0444	2012-06-26 15:46	2007-01-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 17, 2024, 12:17 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
141	-		-	-	Multiple Buffer overflows in the MMS Client in MZ Automation LibIEC61850 before commit ac925fae8e281ac6defcd630e9dd756264e9c5bc allow a malicious server to cause a stack-based buffer overflow via the… New	-	CVE-2024-45970	2024-11-16 04:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

142	-		-	-	NULL pointer dereference in the MMS Client in MZ Automation LibIEC1850 before commit 7afa40390b26ad1f4cf93deaa0052fe7e357ef33 allows a malicious server to Cause a Denial-of-Service via the MMS Initia… New	-	CVE-2024-45969	2024-11-16 04:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

143	-		-	-	The web interface in RSA NetWitness 11.7.2.0 allows Cross-Site Scripting (XSS) via the Where textbox on the Reports screen during new rule creation. New	-	CVE-2024-23169	2024-11-16 04:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

144	-		-	-	Incorrect access control in the account management function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticated users to alter user and administrator accounts credentials … Update	-	CVE-2023-43842	2024-11-16 04:35	2024-05-29	Show	GitHub Exploit DB Packet Storm

145	7.8	HIGH Local	amd	ryzen_ai_software	Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution. Update	NVD-CWE-noinfo	CVE-2024-21974	2024-11-16 04:20	2024-11-13	Show	GitHub Exploit DB Packet Storm

146	5.5	MEDIUM Local	amd	ryzen_ai_software	Improper validation of user input in the NPU driver could allow an attacker to provide a buffer with unexpected size, potentially leading to system crash. Update	NVD-CWE-noinfo	CVE-2024-21949	2024-11-16 04:20	2024-11-13	Show	GitHub Exploit DB Packet Storm

147	-		-	-	An issue in UltiMaker Cura v.4.41 and 5.8.1 and before allows a local attacker to execute arbitrary code via Inter-process communication (IPC) mechanism between Cura application and CuraEngine proces… New	-	CVE-2024-51330	2024-11-16 04:15	2024-11-16	Show	GitHub Exploit DB Packet Storm

148	-		-	-	An issue in kodbox v.1.52.04 and before allows a remote attacker to obtain sensitive information via the captcha feature in the password reset function. New	-	CVE-2024-51037	2024-11-16 04:15	2024-11-16	Show	GitHub Exploit DB Packet Storm

149	-		-	-	GLPI is a free asset and IT management software package. An authenticated user can perfom a SQL injection by changing its preferences. Upgrade to 10.0.17. New	CWE-89 SQL Injection	CVE-2024-45608	2024-11-16 04:15	2024-11-16	Show	GitHub Exploit DB Packet Storm

150	-		-	-	GLPI is a free asset and IT management software package. An unauthenticated user can provide a malicious link to a GLPI technician in order to exploit a reflected XSS vulnerability. Upgrade to 10.0.1… New	CWE-79 Cross-site Scripting	CVE-2024-43418	2024-11-16 04:15	2024-11-16	Show	GitHub Exploit DB Packet Storm