Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 8, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198161 4.3 警告 マイクロソフト - Microsoft Office SharePoint の wizardlist.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0145 2012-02-20 18:12 2012-02-14 Show GitHub Exploit DB Packet Storm
198162 9.3 危険 マイクロソフト - Microsoft Windows の msvcrt.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0150 2012-02-20 18:10 2012-02-14 Show GitHub Exploit DB Packet Storm
198163 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0019 2012-02-20 18:08 2012-02-14 Show GitHub Exploit DB Packet Storm
198164 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0020 2012-02-20 18:06 2012-02-14 Show GitHub Exploit DB Packet Storm
198165 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0136 2012-02-20 18:04 2012-02-14 Show GitHub Exploit DB Packet Storm
198166 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0137 2012-02-20 18:03 2012-02-14 Show GitHub Exploit DB Packet Storm
198167 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0138 2012-02-20 18:01 2012-02-14 Show GitHub Exploit DB Packet Storm
198168 9.3 危険 マイクロソフト - Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0014 2012-02-20 17:29 2012-02-14 Show GitHub Exploit DB Packet Storm
198169 9.3 危険 マイクロソフト - Microsoft .NET Framework における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0015 2012-02-20 17:27 2012-02-14 Show GitHub Exploit DB Packet Storm
198170 4.3 警告 シスコシステムズ - Cisco IronPort Encryption Appliance の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0340 2012-02-20 16:38 2012-02-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 8, 2024, 4:18 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
731 - - - Denial of service in PAM password rotation during the check-in process in Devolutions Server 2023.3.14.0 allows an authenticated user with specific PAM permissions to make PAM credentials unavailable… Update - CVE-2024-1901 2024-11-7 00:35 2024-03-6 Show GitHub Exploit DB Packet Storm
732 - - - In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() In nilfs_gccache_submit_read_data(), brelse(bh) is calle… Update - CVE-2023-52566 2024-11-7 00:35 2024-03-3 Show GitHub Exploit DB Packet Storm
733 - - - In the Linux kernel, the following vulnerability has been resolved: crypto: sun8i-ss - Fix memory leak of object d when dma_iv fails to map In the case where the dma_iv mapping fails, the return er… Update - CVE-2021-47057 2024-11-7 00:35 2024-03-1 Show GitHub Exploit DB Packet Storm
734 - - - In the Linux kernel, the following vulnerability has been resolved: i2c: sprd: fix reference leak when pm_runtime_get_sync fails The PM reference count is not expected to be incremented on return i… Update - CVE-2020-36780 2024-11-7 00:35 2024-02-28 Show GitHub Exploit DB Packet Storm
735 - - - A DOM based cross-site scripting (XSS) vulnerability in the component index.html of jstrieb/urlpages before commit 035b647 allows attackers to execute arbitrary Javascript via sending a crafted URL. Update - CVE-2024-26468 2024-11-7 00:35 2024-02-27 Show GitHub Exploit DB Packet Storm
736 - - - A privacy issue was addressed with improved handling of files. This issue is fixed in watchOS 10.1, macOS Sonoma 14.1, macOS Monterey 12.7.2, macOS Ventura 13.6.3, iOS 17.1 and iPadOS 17.1. An app ma… Update - CVE-2023-42834 2024-11-7 00:35 2024-02-21 Show GitHub Exploit DB Packet Storm
737 - - - An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c does not set NumVFs to PCI_SRIOV_TOTAL_VF, and thus interaction with hw/nvme/ctrl.c is mishandled. Update - CVE-2024-26328 2024-11-7 00:35 2024-02-19 Show GitHub Exploit DB Packet Storm
738 7.8 HIGH
Local 		google android In SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities via Settings due to a logic error in the code. This could lead to local escalation of privilege with no additi… Update NVD-CWE-noinfo
CVE-2023-21256 2024-11-7 00:35 2023-07-13 Show GitHub Exploit DB Packet Storm
739 - - - In the Linux kernel, the following vulnerability has been resolved: tcp: make sure init the accept_queue's spinlocks once When I run syz's reproduction C program locally, it causes the following is… Update - CVE-2024-26614 2024-11-7 00:35 2024-03-12 Show GitHub Exploit DB Packet Storm
740 8.8 HIGH
Network 		zohocorp manageengine_exchange_reporter_plus Zohocorp ManageEngine Exchange Reporter Plus versions 5718 and prior are vulnerable to authenticated SQL Injection in reports module. New CWE-89
SQL Injection 		CVE-2024-9459 2024-11-7 00:29 2024-11-5 Show GitHub Exploit DB Packet Storm