Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
194361 9 危険 centrality communications - Centrality Communications A168 チップセットが実装する admin Web コンソールにおける重要な情報 (パスワードおよび設定データ) を取得される脆弱性 - CVE-2007-0528 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
194362 4.3 警告 Bitweaver - Bitweaver におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0526 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
194363 7.5 危険 grigoriadis - Nickolas Grigoriadis MiniWebsvr におけるバッファオーバーフローの脆弱性 - CVE-2007-0525 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
194364 10 危険 awffull - AWFFull の graphs.c におけるバッファオーバーフローの脆弱性 - CVE-2007-0510 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
194365 7.5 危険 bbclone - BBClone の lib/selectlang.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0508 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
194366 6 警告 Drupal - Drupal 用の Acidfree モジュールにおける任意の SQL コマンドを実行される脆弱性 - CVE-2007-0507 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
194367 6 警告 Drupal - Drupal 用の Project issue tracking モジュールにおけるアクセスコントロールモジュールを回避される脆弱性 - CVE-2007-0506 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
194368 8.5 危険 Drupal - Drupal 用の Project issue tracking モジュールにおける任意のコードを実行される脆弱性 - CVE-2007-0505 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
194369 7.5 危険 bradabra - Bradabra の include/includes.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0500 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
194370 7.5 危険 enthusiast - Enthusiast における SQL インジェクションの脆弱性 - CVE-2007-0484 2012-06-26 15:46 2007-01-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
271 - - - CRMEB <=5.4.0 is vulnerable to Incorrect Access Control. Users can bypass the front-end restriction of only being able to claim coupons once by capturing packets and sending a large number of data pa… New - CVE-2024-50653 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
272 - - - Gogs <=0.13.0 is vulnerable to Directory Traversal via the editFilePost function of internal/route/repo/editor.go. New - CVE-2024-44625 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
273 8.2 HIGH
Network
- - IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit … New CWE-611
XXE
CVE-2024-39726 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
274 - - - A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. Affected by this issue is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of … New CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow
CVE-2024-11248 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
275 - - - A vulnerability has been found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /oews/classes/Master.php… New CWE-79
CWE-94
Cross-site Scripting
Code Injection
CVE-2024-11247 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
276 5.3 MEDIUM
Network
- - A vulnerability in the web-based management interface of Cisco&nbsp;ECE could allow an unauthenticated, remote attacker to perform a username enumeration attack against an affected device. This vu… New CWE-204
 Response Discrepancy Information Exposure
CVE-2022-20633 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
277 6.1 MEDIUM
Network
- - A vulnerability in the web-based management interface of Cisco&nbsp;ECE could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of an affected device.… New - CVE-2022-20632 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
278 5.8 MEDIUM
Network
- - A vulnerability in the payload inspection for Ethernet Industrial Protocol (ENIP) traffic for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass c… New CWE-284
Improper Access Control
CVE-2021-34753 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
279 - - - A vulnerability in the CLI of Cisco&nbsp;FTD Software could allow an authenticated, local attacker with administrative privileges to execute arbitrary commands with root privileges on the underlying … New CWE-20
 Improper Input Validation 
CVE-2021-34752 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm
280 5.8 MEDIUM
Network
- - Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerabi… New CWE-693
 Protection Mechanism Failure
CVE-2021-1494 2024-11-16 02:15 2024-11-16 Show GitHub Exploit DB Packet Storm