Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198811 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバにおける権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0154 2012-02-20 18:30 2012-02-14 Show GitHub Exploit DB Packet Storm
198812 7.2 危険 マイクロソフト - Microsoft Windows の afd.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0148 2012-02-20 18:28 2012-02-14 Show GitHub Exploit DB Packet Storm
198813 7.2 危険 マイクロソフト - Microsoft Windows Server 2003 の afd.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0149 2012-02-20 18:27 2012-02-14 Show GitHub Exploit DB Packet Storm
198814 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6 から 9 におけるコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-0010 2012-02-20 18:24 2012-02-14 Show GitHub Exploit DB Packet Storm
198815 9.3 危険 マイクロソフト - Microsoft Internet Explorer 7 から 9 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0011 2012-02-20 18:22 2012-02-14 Show GitHub Exploit DB Packet Storm
198816 4.3 警告 マイクロソフト - Microsoft Internet Explorer 9 におけるデータを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-0012 2012-02-20 18:20 2012-02-14 Show GitHub Exploit DB Packet Storm
198817 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0155 2012-02-20 18:18 2012-02-14 Show GitHub Exploit DB Packet Storm
198818 4.3 警告 マイクロソフト - Microsoft SharePoint Foundation 2010 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0017 2012-02-20 18:16 2012-02-14 Show GitHub Exploit DB Packet Storm
198819 4.3 警告 マイクロソフト - Microsoft Office SharePoint の themeweb.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0144 2012-02-20 18:14 2012-02-14 Show GitHub Exploit DB Packet Storm
198820 4.3 警告 マイクロソフト - Microsoft Office SharePoint の wizardlist.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0145 2012-02-20 18:12 2012-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 4:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2791 - - - Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point manag… - CVE-2024-42509 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2792 - - - Tenda AC6 v2.0 V15.03.06.50 was discovered to contain a buffer overflow in the function 'formSetPPTPServer'. - CVE-2024-51116 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2793 4.3 MEDIUM
Network 		- - The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic Information Disclosure in all versions up to, and including, 4.5 via the CF7_get_post_var shortcode. This makes… CWE-200
Information Exposure 		CVE-2024-10084 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2794 - - - A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to an untrusted search path being utilized in the VRED Design application. Exploita… - CVE-2024-7995 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2795 - - - The cap-std project is organized around the eponymous `cap-std` crate, and develops libraries to make it easy to write capability-based code. cap-std's filesystem sandbox implementation on Windows bl… CWE-22
Path Traversal 		CVE-2024-51756 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2796 - - - Wasmtime is a fast and secure runtime for WebAssembly. Wasmtime's filesystem sandbox implementation on Windows blocks access to special device filenames such as "COM1", "COM2", "LPT0", "LPT1", and so… CWE-184
CWE-67
 Incomplete Blacklist 		CVE-2024-51745 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2797 - - - The AuthKit library for Remix provides convenient helpers for authentication and session management using WorkOS & AuthKit with Remix. In affected versions refresh tokens are logged to the console wh… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-51753 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2798 - - - The AuthKit library for Next.js provides convenient helpers for authentication and session management using WorkOS & AuthKit with Next.js. In affected versions refresh tokens are logged to the consol… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-51752 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2799 - - - Gitsign is a keyless Sigstore to signing tool for Git commits with your a GitHub / OIDC identity. gitsign may select the wrong Rekor entry to use during online verification when multiple entries are … CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2024-51746 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm
2800 - - - Osmedeus is a Workflow Engine for Offensive Security. Cross-site Scripting (XSS) occurs on the Osmedues web server when viewing results from the workflow, allowing commands to be executed on the serv… CWE-79
CWE-80
Cross-site Scripting
Basic XSS 		CVE-2024-51735 2024-11-7 03:17 2024-11-6 Show GitHub Exploit DB Packet Storm