Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194351	7.5	危険	drunken golem	-	Drunken:Golem Gaming Portal Alpha 2 の include/irc/phpIRC.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0572	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

194352	7.5	危険	asp news	-	ASP NEWS の news_detail.asp における SQL インジェクションの脆弱性	-	CVE-2007-0566	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

194353	7.5	危険	asp edge	-	ASP EDGE の user.asp における SQL インジェクションの脆弱性	-	CVE-2007-0560	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

194354	7.5	危険	CMS Made Simple	-	CMSimple の cmsimple/cms.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0551	2012-06-26 15:46	2007-01-29	Show	GitHub Exploit DB Packet Storm

194355	6.8	警告	212cafe	-	212cafeBoard の search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0550	2012-06-26 15:46	2007-01-29	Show	GitHub Exploit DB Packet Storm

194356	6.8	警告	212cafe	-	212cafeBoard の list3.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0549	2012-06-26 15:46	2007-01-29	Show	GitHub Exploit DB Packet Storm

194357	6.8	警告	212cafe	-	212cafeBoard の show.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0542	2012-06-26 15:46	2007-01-29	Show	GitHub Exploit DB Packet Storm

194358	4.3	警告	Drupal	-	Drupal 用の Project issue tracking におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0534	2012-06-26 15:46	2007-01-23	Show	GitHub Exploit DB Packet Storm

194359	5	警告	atozed software	-	Borland Delphi および Kylix の AToZed IntraWeb コンポーネントおよび IntraWeb におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0533	2012-06-26 15:46	2007-01-25	Show	GitHub Exploit DB Packet Storm

194360	7.5	危険	FreeWebshop	-	FreeWebShop の includes/login.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0531	2012-06-26 15:46	2007-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1621	7.1	HIGH Local	samsung	android	Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local attackers to launch privileged activities.	NVD-CWE-noinfo	CVE-2024-49401	2024-11-13 01:10	2024-11-6	Show	GitHub Exploit DB Packet Storm

1622	7.1	HIGH Local	samsung	android	Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege.	CWE-276 Incorrect Default Permissions	CVE-2024-34679	2024-11-13 01:09	2024-11-6	Show	GitHub Exploit DB Packet Storm

1623	4.6	MEDIUM Physics	samsung	android	Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to temporarily access to unlocked screen.	NVD-CWE-noinfo	CVE-2024-34675	2024-11-13 01:08	2024-11-6	Show	GitHub Exploit DB Packet Storm

1624	4.6	MEDIUM Physics	samsung	android	Improper access control in Contacts prior to SMR Nov-2024 Release 1 allows physical attackers to access data across multiple user profiles.	NVD-CWE-noinfo	CVE-2024-34674	2024-11-13 01:08	2024-11-6	Show	GitHub Exploit DB Packet Storm

1625	3.3	LOW Local	samsung	android	Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local attackers to make malicious apps appear as legitimate.	CWE-922 Insecure Storage of Sensitive Information	CVE-2024-34677	2024-11-13 01:07	2024-11-6	Show	GitHub Exploit DB Packet Storm

1626	5.5	MEDIUM Local	samsung	android	Use of implicit intent for sensitive communication in WlanTest prior to SMR Nov-2024 Release 1 allows local attackers to get sensitive information.	NVD-CWE-Other	CVE-2024-34680	2024-11-13 01:04	2024-11-6	Show	GitHub Exploit DB Packet Storm

1627	-		-	-	Improper Privilege Management vulnerability in Nomysoft Informatics Nomysem allows Collect Data as Provided by Users.This issue affects Nomysem: before 13.10.2024.	CWE-269 Improper Privilege Management	CVE-2024-8074	2024-11-13 00:48	2024-11-13	Show	GitHub Exploit DB Packet Storm

1628	-		-	-	The NVMe driver queue processing is vulernable to guest-induced infinite loops.	-	CVE-2024-51566	2024-11-13 00:48	2024-11-13	Show	GitHub Exploit DB Packet Storm

1629	-		-	-	The hda driver is vulnerable to a buffer over-read from a guest-controlled value.	-	CVE-2024-51565	2024-11-13 00:48	2024-11-13	Show	GitHub Exploit DB Packet Storm

1630	-		-	-	A guest can trigger an infinite loop in the hda audio driver.	-	CVE-2024-51564	2024-11-13 00:48	2024-11-13	Show	GitHub Exploit DB Packet Storm