Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 11, 2024, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201211	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3132	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

201212	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3131	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

201213	9.3	危険	マイクロソフト	-	Microsoft Office Excel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3128	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

201214	9.3	危険	マイクロソフト	-	Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3127	2010-01-5 16:16	2009-11-10	Show	GitHub Exploit DB Packet Storm

201215	6.8	警告	アップルサイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカード OpenSSL Project レッドハット	-	OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2007-5135	2010-01-5 13:31	2007-10-12	Show	GitHub Exploit DB Packet Storm

201216	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

201217	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

201218	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

201219	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

201220	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 10, 2024, 8:13 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	-	-	-	A vulnerability classified as critical has been found in SourceCodester Online Veterinary Appointment System 1.0. Affected is an unknown function of the file /admin/categories/manage_category.php. Th… New	CWE-89 SQL Injection	CVE-2024-9818	2024-10-11 08:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

2	-	-	-	A vulnerability was found in code-projects Blood Bank System 1.0. It has been classified as critical. This affects an unknown part of the file /update.php. The manipulation of the argument name leads… New	CWE-89 SQL Injection	CVE-2024-9817	2024-10-11 08:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

3	-	-	-	Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves Cross-Site Scripting (XSS) on any Gradio server that allows file uploads. Authenticated users c… New	CWE-79 Cross-site Scripting	CVE-2024-47872	2024-10-11 08:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

4	-	-	-	Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves insecure communication between the FRP (Fast Reverse Proxy) client and server when Gradio's `sh… New	CWE-311 Missing Encryption of Sensitive Data	CVE-2024-47871	2024-10-11 08:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

5	-	-	-	Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a race condition in the `update_root_in_config` function, allowing an attacker to modify the `r… New	CWE-362 Race Condition	CVE-2024-47870	2024-10-11 08:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

6	-	-	-	Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a timing attack in the way Gradio compares hashes for the `analytics_dashboard` function. Since… New	CWE-203 Information Exposure Through Discrepancy	CVE-2024-47869	2024-10-11 08:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

7	-	-	-	Gradio is an open-source Python package designed for quick prototyping. This is a data validation vulnerability affecting several Gradio components, which allows arbitrary file leaks through the … New	CWE-200 Information Exposure	CVE-2024-47868	2024-10-11 08:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

8	-	-	-	Gradio is an open-source Python package designed for quick prototyping. This vulnerability is a lack of integrity check on the downloaded FRP client, which could potentially allow attackers to in… New	CWE-345 Insufficient Verification of Data Authenticity	CVE-2024-47867	2024-10-11 08:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

9	-	-	-	A vulnerability was found in Codezips Tourist Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/change-image.php. The manipulat… New	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9816	2024-10-11 07:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

10	-	-	-	A vulnerability has been found in Codezips Tourist Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/create-package.php. … New	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9815	2024-10-11 07:15	2024-10-11	Show	GitHub Exploit DB Packet Storm