Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 28, 2024, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
197961	7.5	危険	wikiwebhelp	-	Wiki Web Help の handlers/getpage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4970	2011-12-9 14:44	2011-11-1	Show	GitHub Exploit DB Packet Storm

197962	7.5	危険	YPNinc	-	YPNinc JokeScript の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4972	2011-12-9 14:43	2011-11-1	Show	GitHub Exploit DB Packet Storm

197963	4.3	警告	Sourcefabric	-	Campsite の検索機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4973	2011-12-9 14:43	2011-11-1	Show	GitHub Exploit DB Packet Storm

197964	7.5	危険	BrotherScripts	-	Auto Dealer の info.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4974	2011-12-9 14:42	2011-11-1	Show	GitHub Exploit DB Packet Storm

197965	7.5	危険	Techjoomla	-	Joomla! 用の Techjoomla SocialAds における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4975	2011-12-9 14:41	2011-11-1	Show	GitHub Exploit DB Packet Storm

197966	4.3	警告	MetInfo	-	MetInfo の search/search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4976	2011-12-9 14:40	2011-11-1	Show	GitHub Exploit DB Packet Storm

197967	7.5	危険	Miniwork	-	Joomla! 用 Canteen コンポーネントの menu.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4977	2011-12-9 14:39	2011-11-1	Show	GitHub Exploit DB Packet Storm

197968	4.3	警告	Nicholas Berry	-	CANDID の image/view.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4978	2011-12-9 14:39	2011-11-1	Show	GitHub Exploit DB Packet Storm

197969	7.5	危険	Nicholas Berry	-	CANDID の image/view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4979	2011-12-9 14:38	2011-11-1	Show	GitHub Exploit DB Packet Storm

197970	7.5	危険	iScripts	-	iScripts ReserveLogic の packagedetails.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4980	2011-12-9 14:38	2011-11-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 29, 2024, 5:57 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
521	7.0	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: do not delay dst_entries_add() in dst_release() dst_entries_add() uses per-cpu data that might be freed at netns dismantle f… Update	NVD-CWE-noinfo	CVE-2024-50036	2024-10-26 00:41	2024-10-22	Show	GitHub Exploit DB Packet Storm

522	3.7	LOW Network	ibm	concert	IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the SameSite attribute. Update	NVD-CWE-Other	CVE-2024-43173	2024-10-26 00:40	2024-10-23	Show	GitHub Exploit DB Packet Storm

523	-		-	-	In ProtocolEmbmsSaiListAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband… New	-	CVE-2024-47019	2024-10-26 00:35	2024-10-25	Show	GitHub Exploit DB Packet Storm

524	-		-	-	In pmucal_rae_handle_seq_int of flexpmu_cal_rae.c, there is a possible out of bounds read due to a buffer overflow. This could lead to local information disclosure with no additional execution privil… New	-	CVE-2024-47018	2024-10-26 00:35	2024-10-25	Show	GitHub Exploit DB Packet Storm

525	-		-	-	there is a possible privilege escalation due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee… New	-	CVE-2024-47016	2024-10-26 00:35	2024-10-25	Show	GitHub Exploit DB Packet Storm

526	-		-	-	In ProtocolMiscHwConfigChangeAdapter::GetData() of protocolmiscadapter.cpp, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure with … New	-	CVE-2024-47015	2024-10-26 00:35	2024-10-25	Show	GitHub Exploit DB Packet Storm

527	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: gpio: amd8111: Fix PCI device reference count leak for_each_pci_dev() is implemented by pci_get_device(). The comment of pci_get_… Update	NVD-CWE-Other	CVE-2022-48973	2024-10-26 00:35	2024-10-22	Show	GitHub Exploit DB Packet Storm

528	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix rcuog wake-up from offline softirq After a CPU has set itself offline and before it eventually calls rcutree_report… Update	NVD-CWE-noinfo	CVE-2024-50032	2024-10-26 00:34	2024-10-22	Show	GitHub Exploit DB Packet Storm

529	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Stop the active perfmon before being destroyed When running `kmscube` with one or more performance monitors enabled via … Update	NVD-CWE-noinfo	CVE-2024-50031	2024-10-26 00:30	2024-10-22	Show	GitHub Exploit DB Packet Storm

530	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync This checks if the ACL connection remains valid as it could be destroyed … Update	CWE-416 Use After Free	CVE-2024-50029	2024-10-26 00:27	2024-10-22	Show	GitHub Exploit DB Packet Storm