Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 19, 2024, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194421 5 警告 Drupal - Drupal 用の Textimage モジュールにおける CAPTCHA テストを回避される脆弱性 - CVE-2007-0658 2012-06-26 15:46 2007-01-31 Show GitHub Exploit DB Packet Storm
194422 7.5 危険 alientrap - Nexuiz における任意のファイルを上書きされる脆弱性 - CVE-2007-0657 2012-06-26 15:46 2007-02-1 Show GitHub Exploit DB Packet Storm
194423 7.1 危険 アップル - Help Viewer におけるフォーマットストリングの脆弱性 - CVE-2007-0647 2012-06-26 15:46 2007-01-31 Show GitHub Exploit DB Packet Storm
194424 6.8 警告 アップル - iPhoto におけるフォーマットストリングの脆弱性 - CVE-2007-0645 2012-06-26 15:46 2007-01-31 Show GitHub Exploit DB Packet Storm
194425 7.1 危険 アップル - Apple Safari におけるフォーマットストリングの脆弱性 - CVE-2007-0644 2012-06-26 15:46 2007-01-31 Show GitHub Exploit DB Packet Storm
194426 7.5 危険 aztek forum - Aztek Forum の forum/load.php における SQL インジェクションの脆弱性 - CVE-2007-0598 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194427 5 警告 aztek forum - Aztek Forum における重要な情報を取得される脆弱性 - CVE-2007-0597 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194428 6 警告 aztek forum - Aztek Forum の index/main.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0596 2012-06-26 15:46 2007-01-30 Show GitHub Exploit DB Packet Storm
194429 4.3 警告 bloodshed software - Bloodshed Dev-C++ におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-0643 2012-06-26 15:46 2007-01-31 Show GitHub Exploit DB Packet Storm
194430 7.5 危険 galeria zdjec - Galeria Zdjec の zd_numer.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0637 2012-06-26 15:46 2007-01-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 19, 2024, 4:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2221 8.8 HIGH
Network 		newspack newspack Broken Access Control vulnerability in Automattic Newspack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Newspack: from n/a through 3.8.6. CWE-862
 Missing Authorization 		CVE-2024-43968 2024-11-9 05:43 2024-11-2 Show GitHub Exploit DB Packet Storm
2222 8.8 HIGH
Network 		lws affiliation Missing Authorization vulnerability in LWS LWS Affiliation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LWS Affiliation: from n/a through 2.3.4. CWE-862
 Missing Authorization 		CVE-2024-43962 2024-11-9 05:42 2024-11-2 Show GitHub Exploit DB Packet Storm
2223 9.8 CRITICAL
Network 		caseproof memberpress Missing Authorization vulnerability in Caseproof, LLC Memberpress allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Memberpress: from n/a through 1.11.34. CWE-862
 Missing Authorization 		CVE-2024-43956 2024-11-9 05:41 2024-11-2 Show GitHub Exploit DB Packet Storm
2224 5.3 MEDIUM
Network 		humhub humhub Generation of Error Message Containing Sensitive Information in HumHub GmbH & Co. KG - HumHub on Linux allows: Excavation (user enumeration).This issue affects all released HumHub versions: through 1… CWE-209
Information Exposure Through an Error Message 		CVE-2024-52043 2024-11-9 05:39 2024-11-6 Show GitHub Exploit DB Packet Storm
2225 8.1 HIGH
Network 		heateor super_socializer The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.13.68. This is due to … NVD-CWE-noinfo
CVE-2024-9946 2024-11-9 05:38 2024-11-6 Show GitHub Exploit DB Packet Storm
2226 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: firewire: core: fix invalid port index for parent device In a commit 24b7f8e5cd65 ("firewire: core: use helper functions for self… NVD-CWE-noinfo
CVE-2024-50113 2024-11-9 05:37 2024-11-6 Show GitHub Exploit DB Packet Storm
2227 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: x86/lam: Disable ADDRESS_MASKING in most cases Linear Address Masking (LAM) has a weakness related to transient execution as desc… NVD-CWE-noinfo
CVE-2024-50112 2024-11-9 05:36 2024-11-6 Show GitHub Exploit DB Packet Storm
2228 5.4 MEDIUM
Network 		futuriowp futurio_extra Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in FuturioWP Futurio Extra allows Stored XSS.This issue affects Futurio Extra: from n/a throu… CWE-79
Cross-site Scripting 		CVE-2024-50446 2024-11-9 05:35 2024-10-29 Show GitHub Exploit DB Packet Storm
2229 5.4 MEDIUM
Network 		merkulove selection_lite Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Merkulove Selection Lite allows Stored XSS.This issue affects Selection Lite: from n/a thr… CWE-79
Cross-site Scripting 		CVE-2024-50445 2024-11-9 05:35 2024-10-29 Show GitHub Exploit DB Packet Storm
2230 5.4 MEDIUM
Network 		cozythemes cozy_blocks Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CozyThemes Cozy Blocks allows Stored XSS.This issue affects Cozy Blocks: from n/a through … CWE-79
Cross-site Scripting 		CVE-2024-50441 2024-11-9 05:33 2024-10-29 Show GitHub Exploit DB Packet Storm