Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 25, 2024, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198001	4.3	警告	JAMWiki	-	JAMWiki の Special:Login におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5054	2011-11-25 11:46	2010-04-1	Show	GitHub Exploit DB Packet Storm

198002	4.3	警告	The GetSimple Team	-	GetSimple CMS の admin/components.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5052	2011-11-25 11:45	2011-11-23	Show	GitHub Exploit DB Packet Storm

198003	4.3	警告	razorCMS	-	razorCMS の admin/core/admin_func.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5051	2011-11-25 11:44	2011-11-23	Show	GitHub Exploit DB Packet Storm

198004	4.3	警告	Zoho Corporation	-	ManageEngine ADManager Plus におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5050	2011-11-25 11:43	2011-11-23	Show	GitHub Exploit DB Packet Storm

198005	7.5	危険	Zabbix	-	Zabbix の events.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5049	2011-11-25 11:42	2011-11-23	Show	GitHub Exploit DB Packet Storm

198006	4.3	警告	JoomlaTune Joomla!	-	JoomlaTune JComments におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5048	2011-11-25 11:42	2011-11-23	Show	GitHub Exploit DB Packet Storm

198007	7.5	危険	V-EVA	-	V-EVA Press Release Script における任意の SQL コマンドを実行される脆弱性	CWE-89 SQLインジェクション	CVE-2010-5047	2011-11-25 11:41	2011-11-23	Show	GitHub Exploit DB Packet Storm

198008	4.3	警告	ecoCMS	-	ecoCMS の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5046	2011-11-25 11:40	2011-11-23	Show	GitHub Exploit DB Packet Storm

198009	7.5	危険	Alephsystem	-	CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5058	2011-11-25 10:14	2011-11-23	Show	GitHub Exploit DB Packet Storm

198010	7.5	危険	Alephsystem	-	CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5057	2011-11-25 10:13	2011-11-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 25, 2024, 8:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
91	8.8	HIGH Network	google	chrome	Inappropriate implementation in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Update	CWE-787 Out-of-bounds Write	CVE-2024-7535	2024-10-25 05:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

92	-		-	-	A mass assignment vulnerability exists in Pantera CRM versions 401.152 and 402.072. This flaw allows authenticated users to modify any user attribute, including roles, by injecting additional paramet… Update	-	CVE-2024-40531	2024-10-25 05:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

93	-		-	-	This High severity File Inclusion vulnerability was introduced in versions 9.0.0, 9.1.0, 9.2.0, 9.3.0, 9.4.0, 9.5.0 and 9.6.0 of Bamboo Data Center and Server. This File Inclusion vulnerability, wit… Update	-	CVE-2024-21687	2024-10-25 05:35	2024-07-17	Show	GitHub Exploit DB Packet Storm

94	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: send: fix buffer overflow detection when copying path to cache entry Starting with commit c0247d289e73 ("btrfs: send: anno… Update	CWE-120 Classic Buffer Overflow	CVE-2024-49869	2024-10-25 05:28	2024-10-22	Show	GitHub Exploit DB Packet Storm

95	7.0	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition In the svc_i3c_master_probe fun… Update	CWE-416 Use After Free	CVE-2024-49874	2024-10-25 05:27	2024-10-22	Show	GitHub Exploit DB Packet Storm

96	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Input: adp5589-keys - fix NULL pointer dereference We register a devm action to call adp5589_clear_config() and then pass the i2c… Update	CWE-476 NULL Pointer Dereference	CVE-2024-49871	2024-10-25 05:22	2024-10-22	Show	GitHub Exploit DB Packet Storm

97	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm/filemap: fix filemap_get_folios_contig THP panic Patch series "memfd-pin huge page fixes". Fix multiple bugs that occur when … Update	CWE-476 NULL Pointer Dereference	CVE-2024-49873	2024-10-25 05:22	2024-10-22	Show	GitHub Exploit DB Packet Storm

98	-		-	-	An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. By intercepting an HTTP request and changing the filename property in the download int… New	-	CVE-2024-45259	2024-10-25 05:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

99	-		-	-	EnGenius ENH1350EXT A8J-ENH1350EXT devices through 3.9.3.2_c1.9.51 allow (blind) OS Command Injection via shell metacharacters to the Ping or Speed Test utility. During the time of initial setup, the… New	-	CVE-2024-45242	2024-10-25 05:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

100	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nfsd: map the EBADMSG to nfserr_io to avoid warning Ext4 will throw -EBADMSG through ext4_readdir when a checksum error occurs, r… Update	CWE-354 Improper Validation of Integrity Check Value	CVE-2024-49875	2024-10-25 05:13	2024-10-22	Show	GitHub Exploit DB Packet Storm