Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 31, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202531 4.7 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の drivers/firewire/ohci.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-4138 2010-04-2 13:58 2009-12-16 Show GitHub Exploit DB Packet Storm
202532 4.9 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の fuse_direct_io 関数におけるサービス運用妨害 (DoS)の脆弱性 CWE-399
リソース管理の問題
CVE-2009-4021 2010-04-2 13:58 2009-11-25 Show GitHub Exploit DB Packet Storm
202533 4.9 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の arch/x86/ia32/ia32entry.S におけるレジスタ値を読み取られる脆弱性 CWE-200
情報漏えい
CVE-2009-2910 2010-04-2 13:56 2009-10-20 Show GitHub Exploit DB Packet Storm
202534 4.9 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の net/unix/af_unix.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2009-3621 2010-04-2 13:50 2009-10-22 Show GitHub Exploit DB Packet Storm
202535 4.9 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の tcf_fill_node 関数におけるカーネルメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2009-3612 2010-04-2 13:49 2009-10-19 Show GitHub Exploit DB Packet Storm
202536 7.8 危険 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の ipv6_hop_jumbo 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2007-4567 2010-04-2 13:48 2007-12-21 Show GitHub Exploit DB Packet Storm
202537 4.3 警告 株式会社アルマス - Compiere におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1333 2010-04-1 15:02 2010-04-1 Show GitHub Exploit DB Packet Storm
202538 2.6 注意 株式会社アルマス - Compiere におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1333 2010-04-1 15:02 2010-04-1 Show GitHub Exploit DB Packet Storm
202539 4.3 警告 PrettyBook - PrettyFormMail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1332 2010-04-1 15:01 2010-04-1 Show GitHub Exploit DB Packet Storm
202540 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
- 複数の Mozilla 製品の HTML パーサにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2009-1571 2010-04-1 13:51 2010-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 1, 2024, 6:01 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
801 8.8 HIGH
Network
fabianros blood_bank_management_system A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /file/cancel.php. The manipulation of th… Update CWE-89
SQL Injection
CVE-2024-10416 2024-10-30 05:21 2024-10-27 Show GitHub Exploit DB Packet Storm
802 8.8 HIGH
Network
fabianros blood_bank_management_system A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /file/delete.php. The manipulation of the … Update CWE-89
SQL Injection
CVE-2024-10417 2024-10-30 05:19 2024-10-27 Show GitHub Exploit DB Packet Storm
803 5.4 MEDIUM
Network
ninjateam gdpr_ccpa_compliance_\&_cookie_consent_banner The GDPR CCPA Compliance & Cookie Consent Banner plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions named ajaxUpdateSetting… Update CWE-862
 Missing Authorization
CVE-2024-5607 2024-10-30 05:08 2024-06-7 Show GitHub Exploit DB Packet Storm
804 7.6 HIGH
Physics
dell vostro_5625_firmware
vostro_5515_firmware
vostro_5415_firmware
vostro_3405_firmware
vostro_16_5635_firmware
vostro_15_3535_firmware
vostro_15_3525_firmware
vostro_15_3515_firmwar…
Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system. Update CWE-353
 Missing Support for Integrity Check
CVE-2023-32475 2024-10-30 05:04 2024-06-7 Show GitHub Exploit DB Packet Storm
805 5.4 MEDIUM
Network
pickplugins post_grid The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel – Combo Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tag' attribute in bloc… Update CWE-79
Cross-site Scripting
CVE-2024-1988 2024-10-30 04:54 2024-06-7 Show GitHub Exploit DB Packet Storm
806 7.5 HIGH
Network
qodeinteractive qi_addons_for_elementor The Qi Addons For Elementor plugin for WordPress is vulnerable to Remote File Inclusion in all versions up to, and including, 1.7.2 via the 'behavior' attributes found in the qi_addons_for_elementor_… Update CWE-706
 Use of Incorrectly-Resolved Name or Reference
CVE-2024-4887 2024-10-30 04:52 2024-06-7 Show GitHub Exploit DB Packet Storm
807 5.4 MEDIUM
Network
nayrathemes clever_fox The Clever Fox – One Click Website Importer by Nayra Themes plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'clever-fox-activate-theme… Update CWE-862
 Missing Authorization
CVE-2023-6876 2024-10-30 04:50 2024-06-7 Show GitHub Exploit DB Packet Storm
808 5.4 MEDIUM
Network
lightpress lightbox The WP jQuery Lightbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title’ attribute in all versions up to, and including, 1.5.4 due to insufficient input sanitization a… Update CWE-79
Cross-site Scripting
CVE-2024-5425 2024-10-30 04:49 2024-06-7 Show GitHub Exploit DB Packet Storm
809 5.3 MEDIUM
Network
themefarmer woocommerce_tools The WooCommerce Tools plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the woocommerce_tool_toggle_module() function in all versions up to,… Update CWE-862
 Missing Authorization
CVE-2024-1689 2024-10-30 04:49 2024-06-7 Show GitHub Exploit DB Packet Storm
810 5.4 MEDIUM
Network
nayrathemes clever_fox The Clever Fox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's info box block in all versions up to, and including, 25.2.0 due to insufficient input sanitization an… Update CWE-79
Cross-site Scripting
CVE-2024-1768 2024-10-30 04:44 2024-06-7 Show GitHub Exploit DB Packet Storm