Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 1, 2024, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198621	7.5	危険	Automattic Inc.	-	WordPress 用 Jetpack プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4673	2011-12-6 16:26	2011-12-2	Show	GitHub Exploit DB Packet Storm

198622	7.5	危険	Valid	-	Valid tiny-erp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4672	2011-12-6 16:25	2011-12-2	Show	GitHub Exploit DB Packet Storm

198623	7.5	危険	AdRotate Plugin	-	WordPress 用 AdRotate プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4671	2011-12-6 16:24	2011-12-2	Show	GitHub Exploit DB Packet Storm

198624	10	危険	Iron Mountain	-	Iron Mountain Connected Backup の Agent service における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2397	2011-12-6 16:22	2011-12-5	Show	GitHub Exploit DB Packet Storm

198625	6.4	警告	Widelands	-	Widelands の io/filesystem/filesystem.cc におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1932	2011-12-6 16:22	2011-12-5	Show	GitHub Exploit DB Packet Storm

198626	4.3	警告	Etomite Project	-	Etomite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4264	2011-12-6 12:01	2011-12-6	Show	GitHub Exploit DB Packet Storm

198627	7.5	危険	jonkemp	-	WordPress 用 WordPress Users プラグインの wp-users.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4669	2011-12-5 16:08	2011-12-2	Show	GitHub Exploit DB Packet Storm

198628	7.5	危険	IBM	-	IBM Tivoli Netcool/Reporter における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4668	2011-12-5 16:07	2011-12-2	Show	GitHub Exploit DB Packet Storm

198629	5	警告	Schneider Electric	-	Schneider Electric の複数の製品におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4036	2011-12-5 16:06	2011-10-24	Show	GitHub Exploit DB Packet Storm

198630	4.3	警告	Schneider Electric	-	Schneider Electric の複数の製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4035	2011-12-5 16:05	2011-10-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 1, 2024, 4:15 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
391	-		-	-	A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using URL paths in L7 traffic intentions could bypass HTTP request path-based access rules. New	-	CVE-2024-10005	2024-10-31 07:15	2024-10-31	Show	GitHub Exploit DB Packet Storm

392	0.0	NONE Physics	-	-	Rejected reason: Red Hat Product Security has come to the conclusion that this CVE is not needed. Update	-	CVE-2024-8421	2024-10-31 07:15	2024-10-1	Show	GitHub Exploit DB Packet Storm

393	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: dsa: improve shutdown sequence Alexander Sverdlin presents 2 problems during shutdown with the lan9303 driver. One is specif… Update	CWE-476 CWE-367 NULL Pointer Dereference Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2024-49998	2024-10-31 07:04	2024-10-22	Show	GitHub Exploit DB Packet Storm

394	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix error path in multi-packet WQE transmit Remove the erroneous unmap in case no DMA mapping was established The mult… Update	CWE-755 Improper Handling of Exceptional Conditions	CVE-2024-50001	2024-10-31 06:59	2024-10-22	Show	GitHub Exploit DB Packet Storm

395	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: static_call: Handle module init failure correctly in static_call_del_module() Module insertion invokes static_call_add_module() t… Update	CWE-755 Improper Handling of Exceptional Conditions	CVE-2024-50002	2024-10-31 06:57	2024-10-22	Show	GitHub Exploit DB Packet Storm

396	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() Syzkaller reported BUG as follows: BUG: sleeping f… Update	NVD-CWE-noinfo	CVE-2022-49033	2024-10-31 06:50	2024-10-22	Show	GitHub Exploit DB Packet Storm

397	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bna: adjust 'name' buf size of bna_tcb and bna_ccb structures To have enough space to write all possible sprintf() args. Currentl… Update	CWE-787 Out-of-bounds Write	CVE-2024-43839	2024-10-31 06:49	2024-08-17	Show	GitHub Exploit DB Packet Storm

398	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix napi_skb_cache_put warning After the commit bdacf3e34945 ("net: Use nested-BH locking for napi_alloc_cache.") was… Update	NVD-CWE-noinfo	CVE-2024-43835	2024-10-31 06:45	2024-08-17	Show	GitHub Exploit DB Packet Storm

399	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of page_pool_destroy() If the driver uses a page pool, it creates a page pool with page_pool_create… Update	NVD-CWE-noinfo	CVE-2024-43834	2024-10-31 06:44	2024-08-17	Show	GitHub Exploit DB Packet Storm

400	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix releasing unallocated memory in dereg MR flow For the case of IB_MR_TYPE_DM the mr does doesn't have a umem, even … Update	CWE-763 Release of Invalid Pointer or Reference	CVE-2021-47615	2024-10-31 06:40	2024-06-20	Show	GitHub Exploit DB Packet Storm