Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 8, 2024, 2:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198781 4.3 警告 The Tor Project - Tor におけるブリッジを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-4894 2011-12-27 11:06 2011-12-23 Show GitHub Exploit DB Packet Storm
198782 7.6 危険 The Tor Project - Tor におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2778 2011-12-27 11:04 2011-12-16 Show GitHub Exploit DB Packet Storm
198783 4.3 警告 The Tor Project - Tor におけるブリッジを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-2769 2011-12-27 11:01 2011-10-27 Show GitHub Exploit DB Packet Storm
198784 5.8 警告 The Tor Project - Tor における匿名化のためのプロパティを無効にされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2768 2011-12-27 10:54 2011-10-27 Show GitHub Exploit DB Packet Storm
198785 7.5 危険 PmWiki - PmWiki の PageListSort 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4453 2011-12-27 10:46 2011-11-11 Show GitHub Exploit DB Packet Storm
198786 - - The Support Incident Tracker Project - Support Incident Tracker に複数の脆弱性 - CVE-2011-3831
CVE-2011-3833
CVE-2011-5067
CVE-2011-5068
CVE-2011-5069
CVE-2011-5070 		2011-12-27 09:42 2011-12-5 Show GitHub Exploit DB Packet Storm
198787 9.3 危険 Sielco Sistemi - Sielco Sistemi Winlog PRO および Winlog Lite におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4037 2011-12-26 16:32 2011-12-22 Show GitHub Exploit DB Packet Storm
198788 5 警告 Moodle - Moodle の calendar/set.php における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4203 2011-12-26 16:32 2011-12-22 Show GitHub Exploit DB Packet Storm
198789 4.3 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4634 2011-12-26 16:31 2011-12-1 Show GitHub Exploit DB Packet Storm
198790 4.3 警告 The phpMyAdmin Project - phpMyAdmin の libraries/display_export.lib.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4780 2011-12-26 16:30 2011-12-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 8, 2024, 1:06 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
821 - - - code-projects.org Online Job Portal 1.0 is vulnerable to SQL Injection via /Employer/DeleteJob.php?JobId=1. Update - CVE-2023-41015 2024-11-6 06:35 2024-03-7 Show GitHub Exploit DB Packet Storm
822 - - - In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtable_cache_add kasprintf() returns a pointer to dynamically allocated memory which… Update - CVE-2023-52607 2024-11-6 06:35 2024-03-6 Show GitHub Exploit DB Packet Storm
823 - - - A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP request with chunked encoding, leading to resource exhaustion and denial of service (DoS). The server reads… Update - CVE-2024-22019 2024-11-6 06:35 2024-02-20 Show GitHub Exploit DB Packet Storm
824 - - - Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability. Update - CVE-2023-52381 2024-11-6 06:35 2024-02-18 Show GitHub Exploit DB Packet Storm
825 8.8 HIGH
Network 		esafenet cdg A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/policy/HookWhiteListService… Update CWE-89
SQL Injection 		CVE-2024-10500 2024-11-6 06:02 2024-10-30 Show GitHub Exploit DB Packet Storm
826 9.8 CRITICAL
Network 		draytek vigor3900_firmware In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the restore function. Update CWE-78
OS Command  		CVE-2024-51252 2024-11-6 05:54 2024-11-2 Show GitHub Exploit DB Packet Storm
827 - - - Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configur… Update - CVE-2023-6728 2024-11-6 05:35 2024-10-17 Show GitHub Exploit DB Packet Storm
828 - - - Fujian Kelixin Communication Command and Dispatch Platform <=7.6.6.4391 is vulnerable to SQL Injection via /client/get_gis_fence.php. Update - CVE-2024-45918 2024-11-6 05:35 2024-10-9 Show GitHub Exploit DB Packet Storm
829 - - - Apache Hadoop’s RunJar.run() does not set permissions for temporary directory by default. If sensitive data will be present in this file, all the other local users may be able to view the content. Th… Update CWE-269
 Improper Privilege Management 		CVE-2024-23454 2024-11-6 05:35 2024-09-25 Show GitHub Exploit DB Packet Storm
830 - - - HDF5 Library through 1.14.3 has a SEGV in H5A__close in H5Aint.c, resulting in the corruption of the instruction pointer. Update - CVE-2024-32607 2024-11-6 05:35 2024-05-15 Show GitHub Exploit DB Packet Storm