Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195211	10	危険	Eaton	-	Eaton MGEOPS Network Shutdown Module における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2008-6816	2012-06-26 16:10	2009-05-28	Show	GitHub Exploit DB Packet Storm

195212	4	警告	シトリックス・システムズ	-	Citrix Web Interface for Java Application Servers のセッション切断機能におけるユーザの Web インターフェースセッションへのアクセス権を取得される脆弱性	CWE-Other その他	CVE-2008-6830	2012-06-26 16:10	2008-10-24	Show	GitHub Exploit DB Packet Storm

195213	7.5	危険	bookingcentre	-	Venalsur Booking Centre Booking System の admin/checklogin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6810	2012-06-26 16:10	2009-05-18	Show	GitHub Exploit DB Packet Storm

195214	7.5	危険	bookingcentre	-	Hotels Group の Venalsur Booking Centre Booking System の hotel_habitaciones.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6809	2012-06-26 16:10	2009-05-18	Show	GitHub Exploit DB Packet Storm

195215	6.8	警告	7-shop	-	7Shop の includes/imageupload.php における任意のファイルを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6806	2012-06-26 16:10	2009-05-12	Show	GitHub Exploit DB Packet Storm

195216	6.8	警告	DFLabs	-	DFLabs PTK の lib/file_content.php の get_file_type 関数における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6793	2012-06-26 16:10	2009-05-7	Show	GitHub Exploit DB Packet Storm

195217	5	警告	codewiz	-	GeekiGeeki の geekigeeki.py におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6786	2012-06-26 16:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

195218	6.8	警告	galaxyscripts	-	Mini File Host における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6785	2012-06-26 16:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

195219	10	危険	china-on-site	-	Flexcustomer の admin/install.php における任意の PHP コードが挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6761	2012-06-26 16:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

195220	6.8	警告	china-on-site	-	FlexPHPDirectory の add.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6750	2012-06-26 16:10	2009-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
51	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/sti: avoid potential dereference of error pointers The return value of drm_atomic_get_crtc_state() needs to be checked. To av… New	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2024-56776	2025-01-10 06:41	2025-01-9	Show	GitHub Exploit DB Packet Storm

52	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix handling of plane refcount [Why] The mechanism to backup and restore plane states doesn't maintain refcount,… New	CWE-415 CWE-401 Double Free Missing Release of Memory after Effective Lifetime	CVE-2024-56775	2025-01-10 06:37	2025-01-9	Show	GitHub Exploit DB Packet Storm

53	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: soc: imx8m: Probe the SoC driver as platform driver With driver_async_probe=* on kernel command line, the following trace is prod… New	NVD-CWE-noinfo	CVE-2024-56787	2025-01-10 06:28	2025-01-9	Show	GitHub Exploit DB Packet Storm

54	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a Fix the dtc warnings: arch/mips/boot/dts/loongson/ls7a-pch.dtsi:6… New	NVD-CWE-noinfo	CVE-2024-56785	2025-01-10 06:27	2025-01-9	Show	GitHub Exploit DB Packet Storm

55	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adding array index check to prevent memory corruption [Why & How] Array indices out of bound caused memory corru… New	CWE-787 Out-of-bounds Write	CVE-2024-56784	2025-01-10 06:25	2025-01-9	Show	GitHub Exploit DB Packet Storm

56	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level cgroup maximum depth is INT_MAX by default, there is a cgroup … New	CWE-617 Reachable Assertion	CVE-2024-56783	2025-01-10 06:24	2025-01-9	Show	GitHub Exploit DB Packet Storm

57	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: powerpc/prom_init: Fixup missing powermac #size-cells On some powermacs `escc` nodes are missing `#size-cells` properties, which … New	NVD-CWE-noinfo	CVE-2024-56781	2025-01-10 06:21	2025-01-9	Show	GitHub Exploit DB Packet Storm

58	-		-	-	Vaultwarden v1.32.5 was discovered to contain an authenticated reflected cross-site scripting (XSS) vulnerability via the component /api/core/mod.rs. New	-	CVE-2024-55226	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

59	-		-	-	An issue in the component src/api/identity.rs of Vaultwarden prior to v1.32.5 allows attackers to impersonate users, including Administrators, via a crafted authorization request. New	-	CVE-2024-55225	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

60	-		-	-	An HTML injection vulnerability in Vaultwarden prior to v1.32.5 allows attackers to execute arbitrary code via injecting a crafted payload into the username field of an e-mail message. New	-	CVE-2024-55224	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm