Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 2:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198341 7.5 危険 kylegilman - WordPress 用 Video Embed & Thumbnail Generator プラグインにおける任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1785 2012-03-22 17:47 2012-03-19 Show GitHub Exploit DB Packet Storm
198342 7.5 危険 OddNormality - MyJobList における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1784 2012-03-22 17:46 2012-03-19 Show GitHub Exploit DB Packet Storm
198343 7.8 危険 Saurabh Gupta - Tiny Server におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1783 2012-03-22 17:42 2012-03-19 Show GitHub Exploit DB Packet Storm
198344 5 警告 Joakim Nygard and Jacob Oettinger - Webgrind における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1790 2012-03-22 17:34 2012-03-19 Show GitHub Exploit DB Packet Storm
198345 4.3 警告 idevSpot - IDevSpot idev-BusinessDirectory におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1779 2012-03-22 17:33 2012-03-19 Show GitHub Exploit DB Packet Storm
198346 7.5 危険 CreateVision - CreateVision CMS の artykul_print.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1778 2012-03-22 17:32 2012-03-19 Show GitHub Exploit DB Packet Storm
198347 6.8 警告 Webfolio CMS - Webfolio CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1498 2012-03-22 17:25 2012-03-19 Show GitHub Exploit DB Packet Storm
198348 4.3 警告 NetMechanica - NetMechanica NetDecision の HTTP Server におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1465 2012-03-22 17:22 2012-03-19 Show GitHub Exploit DB Packet Storm
198349 5 警告 NetMechanica - NetMechanica NetDecision の Dashboard Server におけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-1464 2012-03-22 17:22 2012-03-19 Show GitHub Exploit DB Packet Storm
198350 6.8 警告 Contao - Contao の main.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1297 2012-03-22 17:18 2012-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 12:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1371 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: l2tp: prevent possible tunnel refcount underflow When a session is created, it sets a backpointer to its tunnel. When the session… NVD-CWE-noinfo
CVE-2024-49940 2024-11-13 22:26 2024-10-22 Show GitHub Exploit DB Packet Storm
1372 - - - A heap-based buffer over-read vulnerability was found in the X.org server's ProcAppleDRICreatePixmap() function. This issue occurs when byte-swapped length values are used in replies, potentially lea… - CVE-2024-31082 2024-11-13 22:15 2024-04-4 Show GitHub Exploit DB Packet Storm
1373 5.4 MEDIUM
Network 		umbraco umbraco_cms A vulnerability was found in Umbraco CMS 12.3.6. It has been classified as problematic. Affected is an unknown function of the file /Umbraco/preview/frame?id{} of the component Dashboard. The manipul… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2024-10761 2024-11-13 20:15 2024-11-4 Show GitHub Exploit DB Packet Storm
1374 - - - An issue was discovered in BSC Smart Contract 0x0506e571aba3dd4c9d71bed479a4e6d40d95c833. Attackers are able to perform state manipulation attacks by borrowing a large amount of money and then using … - CVE-2024-44445 2024-11-13 17:35 2024-09-17 Show GitHub Exploit DB Packet Storm
1375 6.5 MEDIUM
Network 		- - A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of ser… CWE-22
Path Traversal 		CVE-2024-9676 2024-11-13 17:15 2024-10-16 Show GitHub Exploit DB Packet Storm
1376 4.4 MEDIUM
Local 		- - A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to… CWE-22
Path Traversal 		CVE-2024-9675 2024-11-13 17:15 2024-10-10 Show GitHub Exploit DB Packet Storm
1377 - - - CWE-400: An Uncontrolled Resource Consumption vulnerability exists that could cause the device to become unresponsive resulting in communication loss when a large amount of IGMP packets is present in… CWE-400
 Uncontrolled Resource Consumption 		CVE-2024-9409 2024-11-13 14:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1378 - - - CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a potential arbitrary code execution after a successful Man-In-The-Middle attack… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2024-8938 2024-11-13 14:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1379 - - - CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a potential arbitrary code execution after a successful Man-In-The Middle attack… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2024-8937 2024-11-13 14:15 2024-11-13 Show GitHub Exploit DB Packet Storm
1380 - - - CWE-20: Improper Input Validation vulnerability exists that could lead to loss of confidentiality of controller memory after a successful Man-In-The-Middle attack followed by sending a crafted Modbus… CWE-20
 Improper Input Validation  		CVE-2024-8936 2024-11-13 14:15 2024-11-13 Show GitHub Exploit DB Packet Storm