Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 5, 2024, 12:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198631	7.5	危険	esoftpro	-	esoftpro Online Photo Pro の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4999	2011-12-9 14:21	2011-11-1	Show	GitHub Exploit DB Packet Storm

198632	7.5	危険	esoftpro	-	esoftpro Online Contact Manager の view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5001	2011-12-9 14:21	2011-11-1	Show	GitHub Exploit DB Packet Storm

198633	4.3	警告	Exponent CMS project	-	Exponent CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5002	2011-12-9 14:20	2011-11-1	Show	GitHub Exploit DB Packet Storm

198634	7.5	危険	Autartica	-	Joomla! 用の AutarTimonial コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5003	2011-12-9 14:20	2011-11-1	Show	GitHub Exploit DB Packet Storm

198635	4.3	警告	VideoWhisper.com	-	VideoWhisper PHP 2 Way Video Chat コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4971	2011-12-9 14:19	2011-11-2	Show	GitHub Exploit DB Packet Storm

198636	7.5	危険	OlyKit	-	OlyKit Swoopo Clone 2010 の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4997	2011-12-9 14:18	2011-11-2	Show	GitHub Exploit DB Packet Storm

198637	7.5	危険	Maulana Al Matien	-	ardeaCore PHP Framework におけるリモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-4998	2011-12-9 14:18	2011-11-2	Show	GitHub Exploit DB Packet Storm

198638	7.5	危険	Joe Pieruccini	-	MCLogin System の login/login_index.php におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5000	2011-12-9 14:17	2011-11-2	Show	GitHub Exploit DB Packet Storm

198639	7.5	危険	2daybiz	-	2daybiz Polls Script の searchvote.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5004	2011-12-9 14:16	2011-11-2	Show	GitHub Exploit DB Packet Storm

198640	4.3	警告	Rayzz	-	Rayzz Photoz の members/profileCommentsResponse.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5005	2011-12-9 14:15	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 5, 2024, 12:17 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
631	-		-	-	In the Linux kernel, the following vulnerability has been resolved: reiserfs: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent do…	-	CVE-2023-52591	2024-11-2 01:35	2024-03-6	Show	GitHub Exploit DB Packet Storm

632	-		-	-	A cross-site scripting (XSS) vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email parameter at /customer…	-	CVE-2023-49973	2024-11-2 01:35	2024-03-6	Show	GitHub Exploit DB Packet Storm

633	-		-	-	In nvram, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not ne…	-	CVE-2024-20033	2024-11-2 01:35	2024-03-4	Show	GitHub Exploit DB Packet Storm

634	-		-	-	In the Linux kernel, the following vulnerability has been resolved: x86/mm, kexec, ima: Use memblock_free_late() from ima_free_kexec_buffer() The code calling ima_free_kexec_buffer() runs long afte…	-	CVE-2023-52576	2024-11-2 01:35	2024-03-3	Show	GitHub Exploit DB Packet Storm

635	-		-	-	In the Linux kernel, the following vulnerability has been resolved: HID: sony: Fix a potential memory leak in sony_probe() If an error occurs after a successful usb_alloc_urb() call, usb_free_urb()…	-	CVE-2023-52529	2024-11-2 01:35	2024-03-3	Show	GitHub Exploit DB Packet Storm

636	-		-	-	If a website set a large custom cursor, portions of the cursor could have overlapped with the permission dialog, potentially resulting in user confusion and unexpected granted permissions. This vulne…	-	CVE-2024-1549	2024-11-2 01:35	2024-02-20	Show	GitHub Exploit DB Packet Storm

637	-		-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_codec: Fix leaking content of local_codecs The following memory leak can be observed when the controller supports …	-	CVE-2023-52518	2024-11-2 01:35	2024-03-3	Show	GitHub Exploit DB Packet Storm

638	-		-	-	In convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution priv…	-	CVE-2023-40085	2024-11-2 01:35	2024-02-17	Show	GitHub Exploit DB Packet Storm

639	9.8	CRITICAL Network	tenda	ac1206_firmware	A vulnerability was found in Tenda AC1206 up to 20241027. It has been classified as critical. This affects the function ate_Tenda_mfg_check_usb/ate_Tenda_mfg_check_usb3 of the file /goform/ate. The m…	CWE-787 Out-of-bounds Write	CVE-2024-10434	2024-11-2 01:32	2024-10-28	Show	GitHub Exploit DB Packet Storm

640	7.8	HIGH Local	ysoft	safeq	An issue was discovered in YSoft SAFEQ 6 before 6.0.72. Incorrect privileges were configured as part of the installer package for the Client V3 services, allowing for local user privilege escalation …	NVD-CWE-noinfo	CVE-2022-38176	2024-11-2 01:31	2022-09-7	Show	GitHub Exploit DB Packet Storm