Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 11, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195011	4.3	警告	webassist	-	PowerStore の Products_Results.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3420	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

195012	7.5	危険	Haudenschilt	-	FCMS における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3419	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

195013	4.3	警告	NetArt Media	-	NetArt Media Car Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3418	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

195014	7.5	危険	eshtery.com	-	eshtery CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3404	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

195015	9.3	危険	クアルコム	-	QXDM における任意のコードを実行されるおよび DLL ハイジャック攻撃をされる脆弱性	CWE-Other その他	CVE-2010-3403	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

195016	9.3	危険	dm computer solutions	-	IDM Computer Solutions UltraEdit における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-3402	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

195017	10	危険	IBM	-	IBM Lotus Sametime Connect の Web コンテナ実装における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2010-3398	2012-03-27 18:42	2010-09-15	Show	GitHub Exploit DB Packet Storm

195018	9.3	危険	pgp	-	PGP Desktop における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-3397	2012-03-27 18:42	2010-09-15	Show	GitHub Exploit DB Packet Storm

195019	7.2	危険	kingsoftsecurity	-	Kingsoft Antivirus の kavfm.sys におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3396	2012-03-27 18:42	2010-09-15	Show	GitHub Exploit DB Packet Storm

195020	6.9	警告	texmacs	-	TeXmacsの texmacs スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3394	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 10, 2024, 8:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291	8.8	HIGH Network	google fedoraproject	chrome fedora	Use after free in WebProtect in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Update	CWE-416 Use After Free	CVE-2023-1533	2024-10-11 00:35	2023-03-22	Show	GitHub Exploit DB Packet Storm

292	8.8	HIGH Network	google fedoraproject	chrome fedora	Out of bounds read in GPU Video in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Update	CWE-125 Out-of-bounds Read	CVE-2023-1532	2024-10-11 00:35	2023-03-22	Show	GitHub Exploit DB Packet Storm

293	8.8	HIGH Network	google fedoraproject chromium	chrome fedora chromium	Use after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Update	CWE-416 Use After Free	CVE-2023-1531	2024-10-11 00:35	2023-03-22	Show	GitHub Exploit DB Packet Storm

294	4.9	MEDIUM Network	ibm	datastage	IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that can be read by a privileged user. IBM X-Force ID: 235060. Update	CWE-522 Insufficiently Protected Credentials	CVE-2022-38714	2024-10-11 00:32	2024-02-13	Show	GitHub Exploit DB Packet Storm

295	7.8	HIGH Local	microsoft	windows_10_1809 windows_server_2019 windows_server_2022 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_11_22h3 windows_11_23h2 windows_server_23h2<…	Microsoft Management Console Remote Code Execution Vulnerability Update	NVD-CWE-noinfo	CVE-2024-43572	2024-10-11 00:25	2024-10-9	Show	GitHub Exploit DB Packet Storm

296	-		-	-	A vulnerability classified as problematic has been found in D-Link DSL-2750U R5B017. This affects an unknown part of the component Port Forwarding Page. The manipulation of the argument PortMappingDe… New	CWE-79 Cross-site Scripting	CVE-2024-9792	2024-10-11 00:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

297	-		-	-	A vulnerability was found in LyLme_spage 1.9.5. It has been classified as critical. Affected is an unknown function of the file /admin/sou.php. The manipulation of the argument id leads to sql inject… New	CWE-89 SQL Injection	CVE-2024-9790	2024-10-11 00:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

298	-		-	-	In Progress Telerik Reporting versions prior to 2024 Q3 (18.2.24.924), a command injection attack is possible through improper neutralization of hyperlink elements. New	CWE-77 Command Injection	CVE-2024-7840	2024-10-11 00:15	2024-10-10	Show	GitHub Exploit DB Packet Storm

299	-		-	-	A vulnerability has been identified in Mendix Runtime V10 (All versions only if the basic authentication mechanism is used by the application), Mendix Runtime V10.12 (All versions only if the basic a… Update	CWE-204 Response Discrepancy Information Exposure	CVE-2023-49069	2024-10-11 00:15	2024-09-10	Show	GitHub Exploit DB Packet Storm

300	7.8	HIGH Local	microsoft	windows_11_23h2 windows_10_22h2 windows_11_22h2 windows_10_21h2 windows_11_21h2 windows_server_2022 windows_server_2019 windows_10_1809 windows_server_2022_23h2	Windows Kernel Elevation of Privilege Vulnerability Update	NVD-CWE-noinfo	CVE-2024-21338	2024-10-11 00:14	2024-02-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed