Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Oct. 11, 2024, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195081 | 9.3 | 危険 | VideoLAN | - | VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3275 | 2012-03-27 18:42 | 2011-03-28 | Show | GitHub Exploit DB Packet Storm |
| 195082 | 4.3 | 警告 | Zoho Corporation | - | ZOHO ManageEngine ADSelfService Plus の Employee Search Engine におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3274 | 2012-03-27 18:42 | 2011-02-17 | Show | GitHub Exploit DB Packet Storm |
| 195083 | 5 | 警告 | Zoho Corporation | - | ZOHO ManageEngine ADSelfService Plus における任意のユーザアカウントへのアクセスを取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3273 | 2012-03-27 18:42 | 2011-02-17 | Show | GitHub Exploit DB Packet Storm |
| 195084 | 4.3 | 警告 | Zoho Corporation | - | ZOHO ManageEngine ADSelfService Plus の security-questions 実装における任意のユーザアカウントへのアクセスを取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3272 | 2012-03-27 18:42 | 2011-02-17 | Show | GitHub Exploit DB Packet Storm |
| 195085 | 6.8 | 警告 | IBM | - | IBM WAS の Integrated Solutions Console におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2010-3271 | 2012-03-27 18:42 | 2011-07-18 | Show | GitHub Exploit DB Packet Storm |
| 195086 | 6.8 | 警告 | シスコシステムズ | - | Cisco WebEx Meeting Center T27LB におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3270 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
| 195087 | 9.3 | 危険 | シスコシステムズ | - | Cisco WRF および ARF Player T27LB におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3269 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
| 195088 | 6.4 | 警告 | orbeon | - | Orbeon Forms の XForms サービスの xforms-server コンポーネントにおけるイントラネットサーバへ HTTP リクエストを送信される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3260 | 2012-03-27 18:42 | 2011-04-26 | Show | GitHub Exploit DB Packet Storm |
| 195089 | 5 | 警告 | シマンテック インテル |
- | Symantec Antivirus Corporate Edition などで使用される Intel AMS の GetStringAMSHandler 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3268 | 2012-03-27 18:42 | 2010-12-22 | Show | GitHub Exploit DB Packet Storm |
| 195090 | 6.5 | 警告 | ifdefined | - | BugTracker.NET における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-3267 | 2012-03-27 18:42 | 2010-12-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Oct. 10, 2024, 8:13 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 421 | 7.8 |
HIGH
Local |
- | - | Microsoft Office Remote Code Execution Vulnerability New |
CWE-426
Untrusted Search Path |
CVE-2024-43616 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 422 | 7.1 |
HIGH
Network |
- | - | Microsoft OpenSSH for Windows Remote Code Execution Vulnerability New |
CWE-73
External Control of File Name or Path |
CVE-2024-43615 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 423 | 5.5 |
MEDIUM
Local |
- | - | Microsoft Defender for Endpoint for Linux Spoofing Vulnerability New |
CWE-23
Relative Path Traversal |
CVE-2024-43614 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 424 | - | - | - | Directus is a real-time API and App dashboard for managing SQL database content. Access tokens from query strings are not redacted and are potentially exposed in system logs which may be persisted. T… New |
CWE-532
Inclusion of Sensitive Information in Log Files |
CVE-2024-47822 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm | |
| 425 | 6.9 |
MEDIUM
Network |
- | - | Power BI Report Server Spoofing Vulnerability New |
CWE-79
Cross-site Scripting |
CVE-2024-43612 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 426 | 8.8 |
HIGH
Network |
- | - | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability New |
CWE-20 CWE-122 Improper Input Validation Heap-based Buffer Overflow |
CVE-2024-43611 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 427 | 6.5 |
MEDIUM
Network |
- | - | Microsoft Office Spoofing Vulnerability New |
CWE-200
Information Exposure |
CVE-2024-43609 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 428 | 8.8 |
HIGH
Network |
- | - | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability New | - | CVE-2024-43608 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 429 | 8.8 |
HIGH
Network |
- | - | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability New |
CWE-122
Heap-based Buffer Overflow |
CVE-2024-43607 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 430 | 5.7 |
MEDIUM
Network |
- | - | Outlook for Android Elevation of Privilege Vulnerability New |
CWE-1220
Insufficient Granularity of Access Control |
CVE-2024-43604 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |