Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198961 5 警告 The Support Incident Tracker Project - Support Incident Tracker の translate.php における重要な情報を取得される脆弱性 CWE-noinfo
情報不足
CVE-2011-5075 2012-02-1 16:20 2011-11-13 Show GitHub Exploit DB Packet Storm
198962 6.8 警告 The Support Incident Tracker Project - Support Incident Tracker におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-5074 2012-02-1 16:18 2012-01-29 Show GitHub Exploit DB Packet Storm
198963 5.8 警告 The Support Incident Tracker Project - Support Incident Tracker におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5073 2012-02-1 16:18 2012-01-29 Show GitHub Exploit DB Packet Storm
198964 7.5 危険 The Support Incident Tracker Project - Support Incident Tracker における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-5072 2012-02-1 16:17 2012-01-29 Show GitHub Exploit DB Packet Storm
198965 7.5 危険 The Support Incident Tracker Project - Support Incident Tracker における任意の PHP コードを実行可能な言語ファイルに挿入される脆弱性 CWE-94
コード・インジェクション
CVE-2011-4337 2012-02-1 16:17 2011-11-13 Show GitHub Exploit DB Packet Storm
198966 7.5 危険 The Support Incident Tracker Project - Support Incident Tracker における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-5071 2012-02-1 16:16 2012-01-29 Show GitHub Exploit DB Packet Storm
198967 4.3 警告 The Support Incident Tracker Project - Support Incident Tracker におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5070 2012-02-1 16:16 2012-01-29 Show GitHub Exploit DB Packet Storm
198968 6 警告 The Support Incident Tracker Project - Support Incident Tracker の incident_attachments.php における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2011-5069 2012-02-1 16:15 2012-01-29 Show GitHub Exploit DB Packet Storm
198969 6.8 警告 The Support Incident Tracker Project - Support Incident Tracker におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-5068 2012-02-1 16:11 2012-01-29 Show GitHub Exploit DB Packet Storm
198970 4 警告 The Support Incident Tracker Project - Support Incident Tracker の move_uploaded_file.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-5067 2012-02-1 16:07 2012-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 5:14 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1101 5.9 MEDIUM
Network
level1 wbr-6012_firmware A vulnerability in the LevelOne WBR-6012 router's firmware version R0.40e6 allows sensitive information to be transmitted in cleartext via Web and FTP services, exposing it to network sniffing attack… CWE-319
Cleartext Transmission of Sensitive Information
CVE-2024-32946 2024-11-14 03:39 2024-10-30 Show GitHub Exploit DB Packet Storm
1102 7.0 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm: shmem: fix data-race in shmem_getattr() I got the following KCSAN report during syzbot testing: ============================… CWE-362
Race Condition
CVE-2024-50228 2024-11-14 03:38 2024-11-9 Show GitHub Exploit DB Packet Storm
1103 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential deadlock with newly created symlinks Syzbot reported that page_symlink(), called by nilfs_symlink(), trigge… CWE-667
 Improper Locking
CVE-2024-50229 2024-11-14 03:35 2024-11-9 Show GitHub Exploit DB Packet Storm
1104 - - - vditor v.3.9.8 and before is vulnerable to Arbitrary file read via a crafted data packet. - CVE-2024-39150 2024-11-14 03:35 2024-07-6 Show GitHub Exploit DB Packet Storm
1105 - - - A SQL injection vulnerability in /model/get_events.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the event_id parameter. - CVE-2024-33403 2024-11-14 03:35 2024-05-7 Show GitHub Exploit DB Packet Storm
1106 3.7 LOW
Network
- - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java… - CVE-2024-21012 2024-11-14 03:35 2024-04-17 Show GitHub Exploit DB Packet Storm
1107 7.8 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel bug due to missing clearing of checked flag Syzbot reported that in directory operations after nilfs2 detects … CWE-787
 Out-of-bounds Write
CVE-2024-50230 2024-11-14 03:31 2024-11-9 Show GitHub Exploit DB Packet Storm
1108 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table() modprobe iio-test-gts and rmmod it, then the following mem… CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2024-50231 2024-11-14 03:30 2024-11-9 Show GitHub Exploit DB Packet Storm
1109 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() In the ad9832_write_frequency() function, clk_get_… CWE-369
 Divide By Zero
CVE-2024-50233 2024-11-14 03:25 2024-11-9 Show GitHub Exploit DB Packet Storm
1110 9.8 CRITICAL
Network
level1 wbr-6012_firmware A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can forc… CWE-798
 Use of Hard-coded Credentials
CVE-2024-31151 2024-11-14 03:19 2024-10-30 Show GitHub Exploit DB Packet Storm