Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198841 4.3 警告 EPiServer - EPiServer CMS の 管理インタフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1034 2012-02-10 15:04 2012-02-8 Show GitHub Exploit DB Packet Storm
198842 6 警告 EPiServer - EPiServer CMS における WebAdmins のアクセス権を取得される脆弱性 CWE-noinfo
情報不足
CVE-2012-1031 2012-02-10 15:04 2012-02-8 Show GitHub Exploit DB Packet Storm
198843 5 警告 OfficeSIP Communications - OfficeSIP Server におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-20
不適切な入力確認
CVE-2012-1008 2012-02-10 15:03 2012-02-8 Show GitHub Exploit DB Packet Storm
198844 2.1 注意 Foswiki - Foswiki の UI/Register.pm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1004 2012-02-10 15:02 2012-02-8 Show GitHub Exploit DB Packet Storm
198845 10 危険 Zakon Group - OpenConf における詳細不明な脆弱性 CWE-noinfo
情報不足
CVE-2012-1002 2012-02-10 15:01 2012-02-2 Show GitHub Exploit DB Packet Storm
198846 7.5 危険 Tube Ace - Tube Ace の mobile/search/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-1029 2012-02-10 15:00 2012-02-8 Show GitHub Exploit DB Packet Storm
198847 4.3 警告 Simple Groupware Solutions - SimpleGroupware の bin/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1028 2012-02-10 14:59 2012-02-2 Show GitHub Exploit DB Packet Storm
198848 7.5 危険 Johannes Ekberg - XRay CMS の login2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-1026 2012-02-10 14:15 2012-02-8 Show GitHub Exploit DB Packet Storm
198849 5 警告 Dream Property GmbH - Enigma2 Webinterface のファイルにおける絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2012-1025 2012-02-10 14:01 2012-02-8 Show GitHub Exploit DB Packet Storm
198850 5 警告 Dream Property GmbH - Enigma2 Webinterface のファイルにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2012-1024 2012-02-10 14:00 2012-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1051 5.3 MEDIUM
Network
level1 wbr-6012_firmware The LevelOne WBR-6012 router has an information disclosure vulnerability in its web application, which allows unauthenticated users to access a verbose system log page and obtain sensitive data, such… Update NVD-CWE-noinfo
CVE-2024-33603 2024-11-14 03:39 2024-10-30 Show GitHub Exploit DB Packet Storm
1052 5.9 MEDIUM
Network
level1 wbr-6012_firmware A vulnerability in the LevelOne WBR-6012 router's firmware version R0.40e6 allows sensitive information to be transmitted in cleartext via Web and FTP services, exposing it to network sniffing attack… Update CWE-319
Cleartext Transmission of Sensitive Information
CVE-2024-32946 2024-11-14 03:39 2024-10-30 Show GitHub Exploit DB Packet Storm
1053 7.0 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm: shmem: fix data-race in shmem_getattr() I got the following KCSAN report during syzbot testing: ============================… Update CWE-362
Race Condition
CVE-2024-50228 2024-11-14 03:38 2024-11-9 Show GitHub Exploit DB Packet Storm
1054 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential deadlock with newly created symlinks Syzbot reported that page_symlink(), called by nilfs_symlink(), trigge… Update CWE-667
 Improper Locking
CVE-2024-50229 2024-11-14 03:35 2024-11-9 Show GitHub Exploit DB Packet Storm
1055 - - - vditor v.3.9.8 and before is vulnerable to Arbitrary file read via a crafted data packet. Update - CVE-2024-39150 2024-11-14 03:35 2024-07-6 Show GitHub Exploit DB Packet Storm
1056 - - - A SQL injection vulnerability in /model/get_events.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the event_id parameter. Update - CVE-2024-33403 2024-11-14 03:35 2024-05-7 Show GitHub Exploit DB Packet Storm
1057 3.7 LOW
Network
- - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java… Update - CVE-2024-21012 2024-11-14 03:35 2024-04-17 Show GitHub Exploit DB Packet Storm
1058 7.8 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel bug due to missing clearing of checked flag Syzbot reported that in directory operations after nilfs2 detects … Update CWE-787
 Out-of-bounds Write
CVE-2024-50230 2024-11-14 03:31 2024-11-9 Show GitHub Exploit DB Packet Storm
1059 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table() modprobe iio-test-gts and rmmod it, then the following mem… Update CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2024-50231 2024-11-14 03:30 2024-11-9 Show GitHub Exploit DB Packet Storm
1060 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() In the ad9832_write_frequency() function, clk_get_… Update CWE-369
 Divide By Zero
CVE-2024-50233 2024-11-14 03:25 2024-11-9 Show GitHub Exploit DB Packet Storm