Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 8, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198701 6.8 警告 Mozilla Foundation - Bugzilla の post_bug.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-3668 2012-01-5 16:26 2011-11-20 Show GitHub Exploit DB Packet Storm
198702 6.8 警告 Mozilla Foundation - Bugzilla の User.offer_account_by_email の WebService メソッドにおける脆弱性 CWE-287
不適切な認証 		CVE-2011-3667 2012-01-5 16:23 2011-12-17 Show GitHub Exploit DB Packet Storm
198703 4.3 警告 Mozilla Foundation - Bugzilla におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3657 2012-01-5 16:21 2011-10-27 Show GitHub Exploit DB Packet Storm
198704 9.3 危険 Steve Baker - PLIB の util/ulError.cxx 内の ulSetError 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4620 2012-01-5 16:21 2011-12-31 Show GitHub Exploit DB Packet Storm
198705 1.2 注意 Celery - virtualenv の virtualenv.py における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-4617 2012-01-5 16:20 2011-12-31 Show GitHub Exploit DB Packet Storm
198706 7.5 危険 Novell - Novell XTier framework の HTTP サーバにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1710 2012-01-5 16:19 2011-12-31 Show GitHub Exploit DB Packet Storm
198707 4.3 警告 JJWDesign - PHP Booking Calendar の details_view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5045 2012-01-5 16:14 2011-12-30 Show GitHub Exploit DB Packet Storm
198708 7.2 危険 SopCast - SopCast における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5044 2012-01-5 16:13 2011-12-30 Show GitHub Exploit DB Packet Storm
198709 4.3 警告 Tomatosoft - TomatoSoft Free Mp3 Player におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5043 2012-01-5 16:12 2011-12-30 Show GitHub Exploit DB Packet Storm
198710 4.3 警告 gphemsley - SASHA の inc/lib/lib.base.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5042 2012-01-5 16:11 2011-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 9, 2024, 6:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
971 - - - A lock screen issue was addressed with improved state management. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. A person with physica… Update - CVE-2024-23289 2024-11-7 01:35 2024-03-8 Show GitHub Exploit DB Packet Storm
972 - - - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper() Return invalid error code -EINVAL for invalid… Update - CVE-2023-52585 2024-11-7 01:35 2024-03-6 Show GitHub Exploit DB Packet Storm
973 - - - In the Linux kernel, the following vulnerability has been resolved: net: stmmac: protect updates of 64-bit statistics counters As explained by a comment in <linux/u64_stats_sync.h>, write side of s… Update - CVE-2024-26690 2024-11-7 01:35 2024-04-4 Show GitHub Exploit DB Packet Storm
974 - - - In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: wpcm450: fix out of bounds write Write into 'pctrl->gpio_bank' happens before the check for GPIO index validity… Update - CVE-2023-52512 2024-11-7 01:35 2024-03-3 Show GitHub Exploit DB Packet Storm
975 - - - A reflected cross-site scripting (XSS) vulnerability in SocialMediaWebsite v1.0.1 allows attackers to inject malicious JavaScript into the web browser of a victim via the poll parameter in poll.php. Update - CVE-2024-26473 2024-11-7 01:35 2024-02-29 Show GitHub Exploit DB Packet Storm
976 6.5 MEDIUM
Local 		linuxfoundation
google 		yocto
android 		In imgsys, there is a possible system crash due to a mssing ptr check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploit… Update NVD-CWE-noinfo
CVE-2023-20800 2024-11-7 01:35 2023-08-7 Show GitHub Exploit DB Packet Storm
977 9.8 CRITICAL
Network 		carrcommunications rsvpmaker Unrestricted Upload of File with Dangerous Type vulnerability in David F. Carr RSVPMaker for Toastmasters allows Upload a Web Shell to a Web Server.This issue affects RSVPMaker for Toastmasters: from… Update CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-50531 2024-11-7 01:34 2024-11-4 Show GitHub Exploit DB Packet Storm
978 9.8 CRITICAL
Network 		esafenet cdg A vulnerability classified as critical has been found in ESAFENET CDG 5. This affects the function delPolicyAction of the file /com/esafenet/servlet/system/PolicyActionService.java. The manipulation … Update CWE-89
SQL Injection 		CVE-2024-10597 2024-11-7 01:28 2024-11-1 Show GitHub Exploit DB Packet Storm
979 5.3 MEDIUM
Network 		choplugins order_notification_for_telegram The Order Notification for Telegram plugin for WordPress is vulnerable to unauthorized test message sending due to a missing capability check on the 'nktgnfw_send_test_message' function in versions u… Update CWE-862
 Missing Authorization 		CVE-2024-9686 2024-11-7 01:19 2024-10-25 Show GitHub Exploit DB Packet Storm
980 3.6 LOW
Local 		chidiwilliams buzz A vulnerability classified as problematic was found in chidiwilliams buzz 1.1.0. This vulnerability affects the function download_model of the file buzz/model_loader.py. The manipulation leads to ins… Update CWE-377
 Insecure Temporary File 		CVE-2024-10372 2024-11-7 01:14 2024-10-25 Show GitHub Exploit DB Packet Storm