Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 8, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198831	7.5	危険	blue dragon	-	Php Blue Dragon の GetModuleConfig 関数における SQL インジェクションの脆弱性	-	CVE-2006-4961	2012-06-26 15:37	2006-09-23	Show	GitHub Exploit DB Packet Storm

198832	6.8	警告	blue dragon	-	Php Blue Dragon の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4960	2012-06-26 15:37	2006-09-23	Show	GitHub Exploit DB Packet Storm

198833	4.3	警告	Drupal	-	Drupal の Site Profile Directory におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4949	2012-06-26 15:37	2006-09-20	Show	GitHub Exploit DB Packet Storm

198834	6.8	警告	Drupal	-	Drupal の Search Keywords モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4947	2012-06-26 15:37	2006-09-20	Show	GitHub Exploit DB Packet Storm

198835	5.1	警告	cmsdevelopment	-	BCWB の include/startup.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4946	2012-06-26 15:37	2006-09-22	Show	GitHub Exploit DB Packet Storm

198836	5.1	警告	cardway	-	Cardway DigitalWebShop における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4945	2012-06-26 15:37	2006-09-22	Show	GitHub Exploit DB Packet Storm

198837	7.5	危険	boesch-it	-	ProgSys の includes/pear/Net/DNS/RR.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4944	2012-06-26 15:37	2006-09-22	Show	GitHub Exploit DB Packet Storm

198838	4.3	警告	esyndicat portal system	-	eSyndiCat Portal System の search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4923	2012-06-26 15:37	2006-09-20	Show	GitHub Exploit DB Packet Storm

198839	7.5	危険	ASP indir	-	TR の uye_profil.asp における SQL インジェクションの脆弱性	-	CVE-2006-4916	2012-06-26 15:37	2006-09-20	Show	GitHub Exploit DB Packet Storm

198840	2.6	注意	a.l-pifou	-	A.l-Pifou におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4914	2012-06-26 15:37	2006-09-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
701	-	-	-	In skia_alloc_func of SkDeflate.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges neede…	-	CVE-2024-43768	2025-01-3 10:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

702	-	-	-	In prepare_to_draw_into_mask of SkBlurMaskFilterImpl.cpp, there is a possible heap overflow due to improper input validation. This could lead to remote code execution with no additional execution pri…	-	CVE-2024-43767	2025-01-3 10:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

703	-	-	-	In onPrimaryClipChanged of ClipboardListener.java, there is a possible way to partially bypass lock screen. This could lead to local escalation of privilege with no additional execution privileges ne…	-	CVE-2024-43764	2025-01-3 10:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

704	-	-	-	In multiple locations, there is a possible way to avoid unbinding of a service from the system due to a logic error in the code. This could lead to local escalation of privilege with no additional ex…	-	CVE-2024-43762	2025-01-3 10:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

705	-	-	-	In resizeToAtLeast of SkRegion.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed…	-	CVE-2024-43097	2025-01-3 10:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

706	-	-	-	In DevmemValidateFlags of devicemem_server.c , there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with no additional execution privileg…	-	CVE-2024-43077	2025-01-3 10:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

707	-	-	-	A security issue was discovered in the LRA Coordinator component of Narayana. When Cancel is called in LRA, an execution time of approximately 2 seconds occurs. If Join is called with the same LRA ID…	-	CVE-2024-8447	2025-01-3 06:15	2025-01-3	Show	GitHub Exploit DB Packet Storm

708	-	-	-	Cross Site Scripting vulnerability in Audiocodes MP-202b v.4.4.3 allows a remote attacker to escalate privileges via the login page of the web interface.	-	CVE-2024-48197	2025-01-3 05:16	2025-01-3	Show	GitHub Exploit DB Packet Storm

709	-	-	-	A widget local file inclusion vulnerability in Trend Micro Apex One could allow a remote attacker to execute arbitrary code on affected installations. Please note: an attacker must first obtain th…	-	CVE-2024-52047	2025-01-3 05:16	2025-01-1	Show	GitHub Exploit DB Packet Storm

710	-	-	-	An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed.	-	CVE-2024-56520	2025-01-3 05:16	2024-12-27	Show	GitHub Exploit DB Packet Storm